Bug#655553: jenkins-winstone: Hash DoS vulnerability in Jenkins core
James Page
james.page at ubuntu.com
Thu Jan 12 09:23:32 UTC 2012
Source: jenkins-winstone
Version: 0.9.10-jenkins-29+dfsg-1
Severity: normal
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Jenkin core suffers from the publicised Hash DoS vulnerability:
http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2012-01-10.cb
This requires new releases on jenkins-winstone and
jenkins-executable-war to resolve.
- -- System Information:
Debian Release: wheezy/sid
APT prefers unstable
APT policy: (500, 'unstable')
Architecture: amd64 (x86_64)
Kernel: Linux 3.2.0-8-generic (SMP w/8 CPU cores)
Locale: LANG=C, LC_CTYPE=en_GB.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)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=AH6O
-----END PGP SIGNATURE-----
More information about the pkg-java-maintainers
mailing list