No, I'm still coordinating this and verifying the fix. Please give us a bit more time. It's almost there, but not quite there yet. Us being open-source means some of the stuff needs to go public before others, and there's inevitable time window while things are not completely ready to publicize.
As I wrote, please use the [email protected] alias for the discussion of security issues. 2013/1/7 Jerome Lacoste <[email protected]> > On Thursday, January 3, 2013 12:39:45 AM UTC+1, Kohsuke Kawaguchi wrote: > >> You are right, adding a paragraph or two about security issues in that >> Wiki page. >> > > It looks like the latest advisory wasn't published to the security list. > > > https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2013-01-04 > > Jerome > >> -- Kohsuke Kawaguchi
