-
Bug
-
Resolution: Fixed
-
Major
copy-job checks CREATE on Jenkins root, when it only needs to do so on the actual target of the copy. Also it fails to check EXTENDED_READ on the source.
create-job also checks CREATE needlessly on root.
[JENKINS-22262] copy-job permission checks wrong
Status | Original: Open [ 1 ] | New: In Progress [ 3 ] |
Labels | Original: cli security | New: cli folders security |
Resolution | New: Fixed [ 1 ] | |
Status | Original: In Progress [ 3 ] | New: Resolved [ 5 ] |
Labels | Original: cli folders security | New: cli folders lts-candidate security |
Labels | Original: cli folders lts-candidate security | New: 1.554.1-fixed cli folders security |
Workflow | Original: JNJira [ 154343 ] | New: JNJira + In-Review [ 194879 ] |
Link | New: This issue relates to SECURITY-321 [ SECURITY-321 ] |
Code changed in jenkins
User: Jesse Glick
Path:
changelog.html
core/src/main/java/hudson/cli/CopyJobCommand.java
core/src/main/java/hudson/cli/CreateJobCommand.java
core/src/main/java/hudson/model/ItemGroupMixIn.java
test/src/test/java/hudson/cli/CopyJobCommandTest.java
test/src/test/java/hudson/cli/CreateJobCommandTest.java
http://jenkins-ci.org/commit/jenkins/8861563bd1e7fc28c5686f0dc9552529cfdfbf45
Log:
[FIXED JENKINS-22262] CopyJobCommand and CreateJobCommand were doing incorrect permission checks.
Compare: https://github.com/jenkinsci/jenkins/compare/aaa50018eef1...8861563bd1e7