drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in Jenkins
Name: |
Ausführen beliebiger Kommandos in Jenkins |
|
ID: |
FEDORA-2016-f3b40fcbc3 |
|
Distribution: |
Fedora |
|
Plattformen: |
Fedora 24 |
|
Datum: |
Di, 17. Mai 2016, 22:33 |
|
Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3102 |
|
Applikationen: |
Jenkins |
|
Originalnachricht |
Name : jenkins Product : Fedora 24 Version : 1.651.1 Release : 1.fc24 URL : http://jenkins-ci.org Summary : An extendable open source continuous integration server Description : Jenkins is an award-winning, cross-platform, continuous integration and continuous delivery application that increases your productivity. Use Jenkins to build and test your software projects continuously making it easier for developers to integrate changes to the project, and making it easier for users to obtain a fresh build. It also allows you to continuously deliver your software by providing powerful ways to define your build pipelines and integrating with a large number of testing and deployment technologies.
------------------------------------------------------------------------------- - Update Information:
Security fix for CVE-2016-3102. Update to 1.651.1. Fix dangling symlink (rhbz#1330472) ------------------------------------------------------------------------------- - References:
[ 1 ] Bug #1326403 - CVE-2016-3102 jenkins: Groovy sandbox protection incomplete in Script Security Plugin (SECURITY-258) https://bugzilla.redhat.com/show_bug.cgi?id=1326403 ------------------------------------------------------------------------------- -
This update can be installed with the "yum" update program. Use su -c 'yum update jenkins' at the command line. For more information, refer to "Managing Software with yum", available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys ------------------------------------------------------------------------------- - _______________________________________________ package-announce mailing list package-announce@lists.fedoraproject.org http://lists.fedoraproject.org/admin/lists/package-announce@lists.fedoraproject.org
|
|
|
|