drucken bookmarks versenden konfigurieren admin pdf Sicherheit: Ausführen beliebiger Kommandos in jenkins-credentials-plugin
| Name: |
Ausführen beliebiger Kommandos in jenkins-credentials-plugin |
|
| ID: |
FEDORA-2016-f3b40fcbc3 |
|
| Distribution: |
Fedora |
|
| Plattformen: |
Fedora 24 |
|
| Datum: |
Di, 17. Mai 2016, 22:36 |
|
| Referenzen: |
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3102 |
|
| Applikationen: |
jenkins-credentials-plugin |
|
Originalnachricht |
Name : jenkins-credentials-plugin
Product : Fedora 24
Version : 1.27
Release : 1.fc24
URL : https://github.com/jenkinsci/credentials-plugin
Summary : Jenkins Credentials Plugin
Description :
This package provides Jenkins credentials plugin.
-------------------------------------------------------------------------------
-
Update Information:
Security fix for CVE-2016-3102. Update to 1.651.1. Fix dangling symlink
(rhbz#1330472)
-------------------------------------------------------------------------------
-
References:
[ 1 ] Bug #1326403 - CVE-2016-3102 jenkins: Groovy sandbox protection
incomplete in Script Security Plugin (SECURITY-258)
https://bugzilla.redhat.com/show_bug.cgi?id=1326403
-------------------------------------------------------------------------------
-
This update can be installed with the "yum" update program. Use
su -c 'yum update jenkins-credentials-plugin' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
http://lists.fedoraproject.org/admin/lists/package-announce@lists.fedoraproject.org
|
|
|
|
