jenkins: CVE-2013-0158: remote code execution vulnerability
Miguel Landaeta
miguel at miguel.cc
Fri Apr 5 12:55:45 UTC 2013
On Fri, Apr 5, 2013 at 4:11 AM, Henri Salo <henri at nerv.fi> wrote:
> Is there something that I could help to get this bug fixed and closed? Please
> contact me in case you want any help.
Hi Henri,
The bug is already fixed in jenkins/1.480.2+dfsg-1~exp1. It was not
feasiable to backport the fix to the version available in testing
(1.447.2+dfsg-3) so unfortunately it was removed from the next stable
release.
AFAICT, the plan is to wait for 1.480.2+dfsg-1 to reach testing when
jessie development cycle begins and backport that release to wheezy.
Cheers,
--
Miguel Landaeta, miguel at miguel.cc
secure email with PGP 0x6E608B637D8967E9 available at http://keyserver.pgp.com/
"Faith means not wanting to know what is true." -- Nietzsche
More information about the pkg-java-maintainers
mailing list