Bug#696816: jenkins: Security issues were found in Jenkins core
Salvatore Bonaccorso
carnil at debian.org
Fri Dec 28 14:44:33 UTC 2012
Hi
On Fri, Dec 28, 2012 at 01:17:46AM +0900, Nobuhiro Ban wrote:
> Package: jenkins
> Version: 1.447.2+dfsg-2
> Severity: grave
> Tags: security
>
> Dear Maintainer,
>
> The upstream vendor announced a security advisory, that is rated high severity.
>
> See: https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2012-11-20
Moritz requested CVE's for these three vulnerabilities[1].
CVE-2012-6072[2], CVE-2012-6073[3] and CVE-2012-6072[4] where
assigned.
Please also include the CVE (Common Vulnerabilities & Exposures) ids
in your changelog entry when fixing these.
[1]: http://www.openwall.com/lists/oss-security/2012/12/28/1
[2]: https://security-tracker.debian.org/tracker/CVE-2012-6072
[3]: https://security-tracker.debian.org/tracker/CVE-2012-6073
[4]: https://security-tracker.debian.org/tracker/CVE-2012-6074
Regards,
Salvatore
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 836 bytes
Desc: Digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-java-maintainers/attachments/20121228/f2de3d1a/attachment.pgp>
More information about the pkg-java-maintainers
mailing list