Please follow our guidelines when reporting vulnerabilities, please see https://www.jenkins.io/security/ for details!
> Am 19.11.2022 um 20:50 schrieb Damir Suleymanov <[email protected]>: > > Hi, > I recently addressed vulnerability CVE-2019-1003061 in the CloudFormation > plugin (https://plugins.jenkins.io/jenkins-cloudformation-plugin/) > > Here's the PR that fixes it: > https://github.com/jenkinsci/jenkins-cloudformation-plugin/pull/58 > > Here's a PR to update the warning: > https://github.com/jenkins-infra/update-center2/pull/657 > > I tested this release on my production instance of Jenkins and I can see that > the secret is now encrypted. > > Thanks, > Damir. > > -- > You received this message because you are subscribed to the Google Groups > "Jenkins Developers" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected] > <mailto:[email protected]>. > To view this discussion on the web visit > https://groups.google.com/d/msgid/jenkinsci-dev/923b08db-b23c-4c22-a3d4-8705843db612n%40googlegroups.com > > <https://groups.google.com/d/msgid/jenkinsci-dev/923b08db-b23c-4c22-a3d4-8705843db612n%40googlegroups.com?utm_medium=email&utm_source=footer>. -- You received this message because you are subscribed to the Google Groups "Jenkins Developers" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/jenkinsci-dev/4D2F2BC0-0358-453C-A366-1A6D084D4311%40gmail.com.
