Login
Newsletter
Werbung

Sicherheit: Ausführen beliebiger Kommandos in stapler
Aktuelle Meldungen Distributionen
Name: Ausführen beliebiger Kommandos in stapler
ID: FEDORA-2016-f3b40fcbc3
Distribution: Fedora
Plattformen: Fedora 24
Datum: Di, 17. Mai 2016, 22:38
Referenzen: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-3102
Applikationen: stapler

Originalnachricht

Name        : stapler
Product : Fedora 24
Version : 1.242
Release : 1.fc24
URL : http://stapler.kohsuke.org
Summary : Stapler Java web framework
Description :
Stapler is a library that "staples" your application objects to URLs,
making it easier to write web applications. The core idea of Stapler
is to automatically assign URLs for your objects, creating an intuitive
URL hierarchy.

-------------------------------------------------------------------------------
-
Update Information:

Security fix for CVE-2016-3102. Update to 1.651.1. Fix dangling symlink
(rhbz#1330472)
-------------------------------------------------------------------------------
-
References:

[ 1 ] Bug #1326403 - CVE-2016-3102 jenkins: Groovy sandbox protection
incomplete in Script Security Plugin (SECURITY-258)
https://bugzilla.redhat.com/show_bug.cgi?id=1326403
-------------------------------------------------------------------------------
-

This update can be installed with the "yum" update program. Use
su -c 'yum update stapler' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
-------------------------------------------------------------------------------
-
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
http://lists.fedoraproject.org/admin/lists/package-announce@lists.fedoraproject.org
Pro-Linux
Pro-Linux @Facebook
Neue Nachrichten
Werbung