1
4
1
4
1
5
1
5
1
8
1
5
05 Jul '18
1
34
[Bug 1441542] New: XStream: DoS when unmarshalling void type [fedora-all]
by bugzilla@redhat.com 05 Jul '18
by bugzilla@redhat.com 05 Jul '18
05 Jul '18
1
16
02 Jul '18
1
1
2
13
[Bug 1315067] New: maven-project-info-reports-plugin-2.9 is available
by Red Hat Bugzilla 28 Jun '18
by Red Hat Bugzilla 28 Jun '18
28 Jun '18
2
3
1
3
24 Jun '18
1
1
2
31
2
65
[Bug 1550853] New: Some/ All subpackages of jackson-dataformat-csv are obeolsted by other packages
by bugzilla@redhat.com 22 Jun '18
by bugzilla@redhat.com 22 Jun '18
22 Jun '18
1
2
22 Jun '18
1
4
22 Jun '18
1
1
[Bug 1539635] New: Please retire jackson-dataformat-smile in rawhide
by bugzilla@redhat.com 22 Jun '18
by bugzilla@redhat.com 22 Jun '18
22 Jun '18
1
3
22 Jun '18
1
4
[Bug 1550854] New: Some/ All subpackages of jackson-dataformat-smile are obeolsted by other packages
by bugzilla@redhat.com 22 Jun '18
by bugzilla@redhat.com 22 Jun '18
22 Jun '18
1
2
[Bug 1540033] New: CVE-2017-8030 springframework: spring-framework: Improper URL path validation allows for bypassing of security checks on static resources [fedora-all]
by bugzilla@redhat.com 12 Jun '18
by bugzilla@redhat.com 12 Jun '18
12 Jun '18
1
4
[Bug 1557542] New: CVE-2018-1324 apache-commons-compress: Infinite loop via extra field parser in ZipFile and ZipArchiveInputStream classes
by bugzilla@redhat.com 12 Jun '18
by bugzilla@redhat.com 12 Jun '18
12 Jun '18
1
18
09 Jun '18
1
2
09 Jun '18
1
4
[Bug 1532497] New: CVE-2017-1000487 plexus-utils: Mishandled strings in Commandline class allow for command injection
by bugzilla@redhat.com 07 Jun '18
by bugzilla@redhat.com 07 Jun '18
07 Jun '18
1
17
1
3
[Bug 1508111] New: CVE-2016-5002 xmlrpc: XML external entity vulnerability SSRF via a crafted DTD [fedora-all]
by bugzilla@redhat.com 02 Jun '18
by bugzilla@redhat.com 02 Jun '18
02 Jun '18
1
16
[Bug 1508124] New: CVE-2016-5003 xmlrpc: Deserialization of untrusted Java object through <ex:serializable> tag [ fedora-all]
by bugzilla@redhat.com 02 Jun '18
by bugzilla@redhat.com 02 Jun '18
02 Jun '18
1
17
[Bug 1511366] New: CVE-2017-12197 libpam4j: Account check bypass [ fedora-all]
by bugzilla@redhat.com 29 May '18
by bugzilla@redhat.com 29 May '18
29 May '18
1
5
1
5
1
5
29 May '18
1
5
[Bug 1423759] New: jenkins-antisamy-markup-formatter-plugin: FTBFS in rawhide
by bugzilla@redhat.com 29 May '18
by bugzilla@redhat.com 29 May '18
29 May '18
1
5
29 May '18
1
5
29 May '18
1
5
29 May '18
1
5
[Bug 1423763] New: jenkins-external-monitor-job-plugin: FTBFS in rawhide
by bugzilla@redhat.com 29 May '18
by bugzilla@redhat.com 29 May '18
29 May '18
1
5
[Bug 1423764] New: jenkins-extras-memory-monitor: FTBFS in rawhide
by bugzilla@redhat.com 29 May '18
by bugzilla@redhat.com 29 May '18
29 May '18
1
5
1
5
29 May '18
1
5
29 May '18
1
5
1
5
29 May '18
1
5
29 May '18
1
5
29 May '18
1
5
29 May '18
1
5
[Bug 1423776] New: jenkins-matrix-project-plugin: FTBFS in rawhide
by bugzilla@redhat.com 29 May '18
by bugzilla@redhat.com 29 May '18
29 May '18
1
5
29 May '18
1
5
1
5
[Bug 1423779] New: jenkins-script-security-plugin: FTBFS in rawhide
by bugzilla@redhat.com 29 May '18
by bugzilla@redhat.com 29 May '18
29 May '18
1
5
29 May '18
1
5
[Bug 1423781] New: jenkins-ssh-credentials-plugin: FTBFS in rawhide
by bugzilla@redhat.com 29 May '18
by bugzilla@redhat.com 29 May '18
29 May '18
1
5
29 May '18
1
5
1
5
1
7
1
5
1
5
[Bug 1423917] New: mahout-collection-codegen-plugin: FTBFS in rawhide
by bugzilla@redhat.com 29 May '18
by bugzilla@redhat.com 29 May '18
29 May '18
1
5
29 May '18
1
5
1
7
1
5
1
7
29 May '18
1
5
[Bug 1423927] New: maven-project-info-reports-plugin: FTBFS in rawhide
by bugzilla@redhat.com 29 May '18
by bugzilla@redhat.com 29 May '18
29 May '18
1
5
1
5
29 May '18
1
5
29 May '18
1
5
29 May '18
2
10
29 May '18
1
5
1
5
[Bug 1220717] New: springframework-retry: tests throw org.springframework.beans.factory.NoSuchBeanDefinitionException
by Red Hat Bugzilla 29 May '18
by Red Hat Bugzilla 29 May '18
29 May '18
2
6
2
6
29 May '18
2
5
2
8
[Bug 1509010] New: $ZOOCFGDIR needs to be added to classpath for log4j.properties
by bugzilla@redhat.com 29 May '18
by bugzilla@redhat.com 29 May '18
29 May '18
1
2
29 May '18
2
3
[Bug 1395997] New: jenkins-extras-memory-monitor: FTBFS in Fedora Rawhide
by Red Hat Bugzilla 29 May '18
by Red Hat Bugzilla 29 May '18
29 May '18
2
2
2
6
2
4
2
5
2
3
[Bug 1548290] New: CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unitended exposure of resources [fedora-all]
by bugzilla@redhat.com 23 May '18
by bugzilla@redhat.com 23 May '18
23 May '18
1
12
[Bug 1548291] New: CVE-2018-1304 tomcat: Incorrect handling of empty string URL in security constraints can lead to unitended exposure of resources [epel-all]
by bugzilla@redhat.com 23 May '18
by bugzilla@redhat.com 23 May '18
23 May '18
1
7
2
5
[Bug 1565926] New: CVE-2018-1274 spring-data-commons: Unlimite path depths in PropertyPath.java allow remote attackers to cause a denial of service
by bugzilla@redhat.com 17 May '18
by bugzilla@redhat.com 17 May '18
17 May '18
1
4
[Bug 1565923] New: CVE-2018-1273 spring-data-commons: Improper neutralization of special elements allow remote attackers to execute code via crafted requests
by bugzilla@redhat.com 17 May '18
by bugzilla@redhat.com 17 May '18
17 May '18
1
5
[Bug 1418731] New: CVE-2017-2613 jenkins: User creation CSRF using GET by admins (SECURITY-406)
by bugzilla@redhat.com 15 May '18
by bugzilla@redhat.com 15 May '18
15 May '18
1
5
[Bug 1418711] New: CVE-2017-2602 jenkins: Pipeline metadata files not blacklisted in agent-to-master security subsystem (SECURITY-358)
by bugzilla@redhat.com 15 May '18
by bugzilla@redhat.com 15 May '18
15 May '18
1
6
[Bug 1529312] New: CVE-2017-17810 nasm: Segfault via mishandled macro calls in asm/preproc.c
by bugzilla@redhat.com 14 May '18
by bugzilla@redhat.com 14 May '18
14 May '18
1
4
[Bug 1524945] New: jenkins-plugin-script-security: Arbitrary file read vulnerability in Script Security Plugin (SECURITY-663 )
by bugzilla@redhat.com 14 May '18
by bugzilla@redhat.com 14 May '18
14 May '18
1
7
[Bug 1459158] New: CVE-2017-5664 tomcat: Security constrained bypass in error page mechanism
by bugzilla@redhat.com 14 May '18
by bugzilla@redhat.com 14 May '18
14 May '18
1
66
[Bug 1508129] New: CVE-2016-5004 xmlrpc: XSS in Content-Encoding HTTP header of xmlrpc
by bugzilla@redhat.com 14 May '18
by bugzilla@redhat.com 14 May '18
14 May '18
1
14
2
4
[Bug 1444759] New: CVE-2017-3523 mysql-connector-java: Connector/ J unspecified vulnerability (CPU Apr 2017)
by bugzilla@redhat.com 09 May '18
by bugzilla@redhat.com 09 May '18
09 May '18
1
17
[Bug 1444406] New: CVE-2017-3586 mysql-connector-java: Connector/ J unspecified vulnerability (CPU Apr 2017)
by bugzilla@redhat.com 09 May '18
by bugzilla@redhat.com 09 May '18
09 May '18
1
11
[Bug 1444407] New: CVE-2017-3589 mysql-connector-java: Connector/ J unspecified vulnerability (CPU Apr 2017)
by bugzilla@redhat.com 09 May '18
by bugzilla@redhat.com 09 May '18
09 May '18
1
15
09 May '18
2
39
[Bug 1538333] New: CVE-2018-5968 jackson-databind: unsafe deserialization due to incomplete blacklist ( incomplete fix for the CVE-2017-7525 and CVE-2017-17485) [fedora-all]
by bugzilla@redhat.com 08 May '18
by bugzilla@redhat.com 08 May '18
08 May '18
1
15
[Bug 1418717] New: CVE-2017-2606 jenkins: Internal API allowed access to item names that should not be visible ( SECURITY-380)
by bugzilla@redhat.com 08 May '18
by bugzilla@redhat.com 08 May '18
08 May '18
1
5