Each section covers the upgrade from the previous LTS release, the section on 2.150.1 covers the upgrade from 2.138.4.
No notable changes requiring upgrade notes.
The security fixes in 2.150.2 require that security realms call SecurityListener#authenticated or SecurityListener#loggedIn after successful authentication.
If a security realm does not do either, sessions will be invalidated immediately, and users logged out again.
To disable this security fix when using a security realm that does not call SecurityListener, set the Java system property jenkins.security.seed.UserSeedProperty.disableUserSeed to true.
Affected plugins and their status is tracked on the Jenkins wiki.
| 2.150.1 and 2.138.4 were released on the same day. Please note that this upgrade guide only covers the upgrade from 2.138.4. See its upgrade guide for information related to upgrading from 2.138.3. |
No notable changes requiring upgrade notes.