Dec 5, 2018 · Code execution through crafted URLs · Unauthenticated users can invalidate all sessions when running Jenkins with the built-in Winstone-Jetty ...

2018. Jenkins Security Advisory 2018-12-05. Affects Jenkins Core. Jenkins Security Advisory 2018-10-29. Affects Plugins: Pipeline: Groovy Script Security.

We just released security updates to Jenkins, versions 2.154 and LTS 2.150.1, that fix multiple security vulnerabilities.

Update Debian images to version 12.0 (bookworm). (Docker pull request 1687); Add last build status to job page. (pull 8129); Remove rebuilder plugin from the ...

Description: Disable security hardening related to Stapler routing for AbstractItem. Possibly unsafe, see 2018-12-05 security advisory. hudson.model ...

After applying this upgrade, Jenkins will migrate the user records to a slightly different storage format that uses a central index to map ...

What's new in 2.154 (2018-12-05). 94 sunny 0 cloudy 1 storm. Important security fixes. (security advisory). Report page issue · Creative Commons Attribution ...

2 (2018-10-10). 251 sunny 0 cloudy 11 storm Community ... Security hardening related to Stapler routing. (SECURITY-595 in the 2018-12-05 security advisory) ...

required rollback. What's new in 2.146 (2018-10-10). 77 sunny 1 cloudy 8 storm ... (SECURITY-595 in the 2018-12-05 security advisory); Security hardening ...