Semaphore 5.8.2

Semaphore 5.8.2 is a minor bug and vulnerability fix update to the software and an update to the Semaphore 5.8.1 release.

Important: We scan the Semaphore binaries daily for reported vulnerabilities. For a list of current reported issues and our proposed action, see CVE issues.

Refer to Semaphore-v5.8-4.Mar.2024.pdf for the bill of materials.

Installation Prerequisites

Prior to installing or upgrading to this version of Semaphore please be sure to review the Third-party software requirements (Linux) or Third-party software requirements (Windows) information as well as the general Plan your Semaphore Installation (Linux) or Plan your Semaphore Installation (Windows) information for installation server requirements.

External Vulnerability Issues Resolved

All vulnerabilities at the medium, high or critical CVSS 3.0 level have been removed. (There were no criticals.)

Semaphore Studio

Issues Resolved

• 20641 - Issue with last edit date not being updated
• 20666 - Cosmetic issue on “no licence” page
• 20693 - Issue with environment permissions if a username contains special characters
• 20883 - Issue with concurrent running of edit rules with plugin upload
• 20941 - Theoretical Issue fetching Cloud Token
• 20987 - Improve performance of KMM home page
• 21029 - Reduce size of SemaphoreWorkbench.log
• 21793 - Fix file traversal issue (only available to Semaphore Super Administrators)
• 21800 - Remove general command executor
• 21807 - Fix issue with KRT not properly displaying hierarchy