Bug#688298: jenkins: Multiple security issues
James Page
james.page at ubuntu.com
Tue Sep 25 10:10:16 UTC 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Note that the jenkins package in Debian is not effected by:
CVE-2012-4440 jenkins XSS in Violations plugin
CVE-2012-4441 jenkins XSS in CI game plugin
These are problems in plugins which are not built as part of the
jenkins source package.
I have a fix from upstream for 1.447.2 - testing now.
- --
James Page
Ubuntu Core Developer
Debian Maintainer
james.page at ubuntu.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://www.enigmail.net/
iQIcBAEBCAAGBQJQYYMIAAoJEL/srsug59jDrBAQAMQC1TNbPRYxBb9kvzdMIZ1y
R/l2AEbXO8iQPnU5/8Dk/QviMtYZ0RcVea5bY7pn4YD1zXueGpQk4YGorN2zaAfK
OayVFsGySH1w9MioXxdtZnYeySA/Df2yV6cjeuLjxoSYmyDUotSDtaW9IFURMgwb
Xv5nKZeyH0W2jcy4GLl5ZGwhpVMBTkLFUGmp9lQtYTx3Q3lFOSUt1G47h7WoplAp
xXN1cHhKj6wU/IBu0fDwJ4bsb2e6X0GxW4Uhy64sZBUP4AB18+kk3e2iPeOVeCTJ
ySpqqj+7N+hzu8DiYVMSFXcdsYFOUPVTCESn2FDG2XSy0Jpmrj88jlDb0U2jqM1Y
yaz2v8TXzVGQjnuIwUx+l9XVzBQXl0VsuCVgqt/MGM1ijlt19aUE/1AZ6DpL/KWA
cjqetPkSjbYOCnOFKmr6TzvFdpkBnunkYgYQt2XWtK59s1l60eiWSHvfV0vDknNi
TvcSQl/OVDbaZQEEsJiFh5HRVTYkKEH339+76RZzwQI8l2FZpV4APnhl//fvGvBJ
mKj1pWPqIoF7GM/sfkNrvSK5Kh3m8AJdNNSJPWNzgxtRcGgZ57uw6hvNhTGY/Aaw
IAIEWCqEN+3kyanxqKH8KnKSLCGsPSf9eDUxSY0XIqgslwXv/rvRDgOXb/zKf90G
W3txjiK0N8p51IRMY7hs
=pxHM
-----END PGP SIGNATURE-----
More information about the pkg-java-maintainers
mailing list