Posted on 12-07-2023 06:09 AM
Today we are releasing a maintenance version of Jamf Pro.
Jamf Pro 11.1.1 fixes the following product issues:
Jamf Pro Server: Security Issues
Jamf Pro Server
Other Changes and Improvements
When a computer enrolls with a PreStage enrollment and the Jamf management account is also set to be created during enrollment, the jamf binary will create the account after the first user logs in. This helps avoid several potential issues that could cause user account creation to be skipped in Setup Assistant during Automated Device Enrollment.
For additional information on what's included in this release, review the release notes via the Jamf Learning Hub.
To access new versions of Jamf Pro, log into Jamf Account with your Jamf ID. The latest version is located in the Products section under Jamf Pro.
Cloud Upgrade Schedule
Your Jamf Pro server, including any free sandbox environments, will be updated to Jamf Pro 11.1.1 based on your hosted data region below. Review this guide if you need assistance identifying the Hosted Data Region of your Jamf Cloud instance.
Hosted Region | Begins | Ends |
ap-southeast-2 | 8 December at 1300 UTC | 8 December at 2200 UTC |
ap-northeast-1 | 8 December at 1500 UTC | 9 December at 0100 UTC |
eu-central-1 | 8 December at 2300 UTC | 9 December at 0900 UTC |
eu-west-2 | 9 December at 0000 UTC | 9 December at 0700 UTC |
us-east-1-sandbox/us-west-2-sandbox | 9 December at 0100 UTC | 9 December at 1100 UTC |
us-east-1 | 9 December at 0500 UTC | 9 December at 1800 UTC |
us-west-2 | 9 December at 0800 UTC | 9 December at 2100 UTC |
Do we know if CVE-2023-34055 affects 10.50.0? Or just 11.x?
@donmontalvoYes, the versions of spring-boot listed in CVE-2023-34055 would be present Jamf Pro 10.50 but the CVE wasn't created until after we had already shipped Jamf Pro 11.1.0, hence it being patched in Jamf Pro 11.1.1.