[Secure-testing-team] Bug#804522: jenkins: Unauthenticated remote code execution 0-day in Jenkins CLI

Moritz Muehlenhoff jmm at inutil.org
Mon Nov 9 07:54:47 UTC 2015

Previous message: [Secure-testing-team] Bug#804447: libsndfile: CVE-2014-9756: division by zero leading to denial of service in psf_fwrite()
Next message: [Secure-testing-team] Bug#804707: wpa: CVE-2015-5310: wpa_supplicant unauthorized WNM Sleep Mode GTK control
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Package: jenkins
Severity: grave
Tags: security
Justification: user security hole

Hi,
please see https://jenkins-ci.org/content/mitigating-unauthenticated-remote-code-execution-0-day-jenkins-cli

Cheers,
        Moritz

Previous message: [Secure-testing-team] Bug#804447: libsndfile: CVE-2014-9756: division by zero leading to denial of service in psf_fwrite()
Next message: [Secure-testing-team] Bug#804707: wpa: CVE-2015-5310: wpa_supplicant unauthorized WNM Sleep Mode GTK control
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Secure-testing-team mailing list