[JENKINS-17782] Internal stack traces exposed to users

Type: Bug
Resolution: Fixed
Priority: Major
Component/s: core
Labels:
- security

Similar Issues:
Powered by SuggestiMate

Show

If you trigger an uncaught error in Stapler, such as browsing /static/ prior to stapler 552aaab, the stack trace is displayed in the web browser. This is usually harmless but there could in principle be stack traces which expose internal details of value to an attacker. These should be suppressed.

relates to

JENKINS-60410 Suppress stack traces in core

Resolved

Assignee:: Kohsuke Kawaguchi

Reporter:: Jesse Glick

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2013-04-29 20:56

Updated:: 2020-06-11 17:22

Resolved:: 2013-04-30 00:15

Jenkins

Details

Description

Attachments

Issue Links

Activity

People

Dates