FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

jenkins -- multiple vulnerabilities

Affected packages
jenkins < 2.186
jenkins-lts < 2.176.2

Details

VuXML ID df3db21d-1a4d-4c78-acf7-4639e5a795e0
Discovery 2019-07-17
Entry 2019-07-17

Jenkins Security Advisory:

Description

(Medium) SECURITY-1424 / CVE-2019-10352

Arbitrary file write vulnerability using file parameter definitions

(High) SECURITY-626 / CVE-2019-10353

CSRF protection tokens did not expire

(Medium) SECURITY-534 / CVE-2019-10354

Unauthorized view fragment access

References

CVE Name CVE-2019-10352
CVE Name CVE-2019-10353
CVE Name CVE-2019-10354
URL https://jenkins.io/security/advisory/2019-07-17/