Lucene search
RedHatRHSA-2016:1206HistoryJun 06, 2016 - 6:57 p.m.
(RHSA-2016:1206) Moderate: jenkins security update
2016-06-0618:57:05
access.redhat.com
32
0.003 Low
EPSS
Percentile
67.9%
OpenShift Enterprise by Red Hat is the company’s cloud computing Platform-
as-a-Service (PaaS) solution designed for on-premise or private cloud
deployments.
Jenkins is a continuous integration server that monitors executions of
repeated jobs, such as building a software project or jobs run by cron.
Security Fix(es):
- The Jenkins continuous integration server has been updated to upstream
version 1.651.2 LTS that addresses a large number of security issues,
including open redirects, a potential denial of service, unsafe handling of
user provided environment variables and several instances of sensitive
information disclosure. (CVE-2016-3721, CVE-2016-3722, CVE-2016-3723,
CVE-2016-3724, CVE-2016-3725, CVE-2016-3726, CVE-2016-3727)
Refer to the changelog listed in the References section for a list of
changes.
This update includes the following image:
openshift3/jenkins-1-rhel7:1.651.2-4
All OpenShift Enterprise 3.2 users are advised to upgrade to the updated
package and image.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| RedHat | 7 | src | jenkins-plugin-openshift-pipeline | < 1.0.12-1.el7 | jenkins-plugin-openshift-pipeline-1.0.12-1.el7.src.rpm |
| RedHat | 7 | x86_64 | jenkins-plugin-openshift-pipeline | < 1.0.12-1.el7 | jenkins-plugin-openshift-pipeline-1.0.12-1.el7.x86_64.rpm |
| RedHat | 7 | noarch | jenkins | < 1.651.2-1.el7 | jenkins-1.651.2-1.el7.noarch.rpm |
| RedHat | 7 | src | jenkins | < 1.651.2-1.el7 | jenkins-1.651.2-1.el7.src.rpm |
Related
fedora
fedora
[SECURITY] Fedora 24 Update: jenkins-1.651.2-1.fc24
2016-05-21 20:52:11
[SECURITY] Fedora 23 Update: jenkins-1.625.3-4.fc23
2016-05-26 21:54:36
[SECURITY] Fedora 22 Update: jenkins-1.609.3-7.fc22
2016-05-26 22:20:29
nessus
nessus
FreeBSD : jenkins -- multiple vulnerabilities (e387834a-17ef-11e6-9947-7054d2909b71)
2016-05-12 00:00:00
RHEL 7 : jenkins (RHSA-2016:1206)
2018-12-04 00:00:00
Fedora 24 : jenkins (2016-fd6100dd68)
2016-07-14 00:00:00
openvas
openvas
Fedora Update for jenkins FEDORA-2016-9ba53cf8a2
2016-06-08 00:00:00
Fedora Update for jenkins FEDORA-2016-f7e7a6067d
2016-06-08 00:00:00
Fedora Update for jenkins FEDORA-2016-fd6100dd68
2016-06-08 00:00:00
freebsd
freebsd
jenkins -- multiple vulnerabilities
2016-05-11 00:00:00
redhat
redhat
veracode
veracode
Information Disclosure
2019-05-02 05:34:34
Denial Of Service (DoS)
2019-05-02 05:34:34
Denial Of Service (DoS)
2019-05-02 05:34:34
nvd
nvd
cvelist
cvelist
redhatcve
redhatcve
vulnrichment
vulnrichment
CVE-2016-3721
2016-05-17 00:00:00
cve
cve
osv
osv
Incorrect Authorization in Jenkins Core
2022-05-14 03:57:44
Missing permissions check in Jenkins Core
2022-05-14 03:57:44
Exposure of Sensitive Information in Jenkins Core
2022-05-14 03:57:45
github
github
Missing permissions check in Jenkins Core
2022-05-14 03:57:44
Exposure of Sensitive Information in Jenkins Core
2022-05-14 03:57:45
Incorrect Authorization in Jenkins Core
2022-05-14 03:57:44
ubuntucve
ubuntucve
prion
prion
packetstorm
packetstorm
DoorGets CMS 7.0 Open Redirect
2017-07-02 00:00:00
hackerone
hackerone
ownCloud: Outdated Jenkins server hosted at OwnCloud.org
2017-02-24 08:22:00