FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

jenkins -- multiple vulnerabilities

Affected packages
jenkins < 2.154
jenkins-lts < 2.138.3

Details

VuXML ID 3aa27226-f86f-11e8-a085-3497f683cb16
Discovery 2018-12-05
Entry 2018-12-05

Jenkins Security Advisory:

Description

(Critical) SECURITY-595

Code execution through crafted URLs

(Medium) SECURITY-904

Forced migration of user records

(Medium) SECURITY-1072

Workspace browser allowed accessing files outside the workspace

(Medium) SECURITY-1193

Potential denial of service through cron expression form validation

References

URL https://jenkins.io/security/advisory/2018-12-05/