This bug was fixed in the package jenkins - 1.409.1-0ubuntu4.2
---------------
jenkins (1.409.1-0ubuntu4.2) oneiric-security; urgency=low
* SECURITY UPDATE: Hash DoS vulnerability in parameter
handling (LP: #914628):
- Rebuild to pickup new versions of jenkins-executable-war and
libjenkins-winstone-java with require parameter handling fixes.
-
http://www.cloudbees.com/jenkins-advisory/jenkins-security-advisory-2012-01-10.cb
-- James Page <[email protected]> Fri, 27 Jan 2012 16:11:59 +0000
** Changed in: jenkins (Ubuntu Oneiric)
Status: In Progress => Fix Released
** Changed in: jenkins-executable-war (Ubuntu Oneiric)
Status: In Progress => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/914628
Title:
Hash DoS vulnerability in Jenkins core
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/jenkins/+bug/914628/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
