[java-sig-commits] [Bug 1501813] New: jenkins: Jenkins core bundled vulnerable version of the commons-fileupload library (SECURITY-490)

13 Oct 2017


      https://bugzilla.redhat.com/show_bug.cgi?id=1501813
Bug ID: 1501813
           Summary: jenkins: Jenkins core bundled vulnerable version of
                    the commons-fileupload library (SECURITY-490)
           Product: Security Response
         Component: vulnerability
          Keywords: Security
          Severity: high
          Priority: high
          Assignee: security-response-team@redhat.com
          Reporter: amaris@redhat.com
                CC: bleanhar@redhat.com, ccoleman@redhat.com,
                    dedgar@redhat.com, dmcphers@redhat.com,
                    java-sig-commits@lists.fedoraproject.org,
                    jgoulding@redhat.com, jkeck@redhat.com,
                    kseifried@redhat.com, mizdebsk@redhat.com,
                    msrb@redhat.com
Jenkins bundled a version of the commons-fileupload library with the
denial-of-service vulnerability known as CVE-2016-3092.
External References:
https://jenkins.io/security/advisory/2017-10-11/
-- 
You are receiving this mail because:
You are on the CC list for the bug.

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

[java-sig-commits] [Bug 1501813] New: jenkins: Jenkins core bundled vulnerable version of the commons-fileupload library (SECURITY-490)