FEDORA-2016-fd6100dd68 created by msrb 4 years ago for Fedora 24
stable

Security fix for CVE-2016-3721, CVE-2016-3722, CVE-2016-3723, CVE-2016-3724, CVE-2016-3725, CVE-2016-3726, CVE-2016-3727

How to install

sudo dnf upgrade --advisory=FEDORA-2016-fd6100dd68

This update has been submitted for testing by msrb.

4 years ago

This update has been pushed to testing.

4 years ago

This update has reached 3 days in testing and can be pushed to stable now if the maintainer wishes

4 years ago

This update has been submitted for stable by msrb.

4 years ago

This update has been pushed to stable.

4 years ago

Please login to add feedback.

Metadata
Type
security
Karma
0
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
3
Dates
submitted
4 years ago
in testing
4 years ago
in stable
4 years ago
BZ#1335415 CVE-2016-3721 jenkins: Arbitrary build parameters are passed to build scripts as environment variables (SECURITY-170)
0
0
BZ#1335416 CVE-2016-3722 jenkins: Malicious users with multiple user accounts can prevent other users from logging in (SECURITY-243)
0
0
BZ#1335417 CVE-2016-3723 jenkins: Information on installed plugins exposed via API (SECURITY-250)
0
0
BZ#1335418 CVE-2016-3724 jenkins: Encrypted secrets (e.g. passwords) were leaked to users with permission to read configuration (SECURITY-266)
0
0
BZ#1335420 CVE-2016-3725 jenkins: Regular users can trigger download of update site metadata (SECURITY-273)
0
0
BZ#1335421 CVE-2016-3726 jenkins: Open redirect to scheme-relative URLs (SECURITY-276)
0
0
BZ#1335422 CVE-2016-3727 jenkins: Granting the permission to read node configurations allows access to overall system configuration (SECURITY-281)
0
0
BZ#1335427 CVE-2016-3721 CVE-2016-3722 CVE-2016-3723 CVE-2016-3724 CVE-2016-3725 CVE-2016-3726 CVE-2016-3727 jenkins: various flaws [fedora-all]
0
0

Automated Test Results