Details
-
Type:
Bug
-
Status: Closed (View Workflow)
-
Priority:
Critical
-
Resolution: Fixed
-
Component/s: postbuildscript-plugin
-
Labels:None
-
Environment:Jenkins ver. 2.46.1
-
Similar Issues:
Description
According to https://jenkins.io/security/advisory/2017-04-10/ this plugin suffers from arbitrary code execution vulnerability.
Code changed in jenkins
User: Daniel Spilker
Path:
docs/Home.md
docs/Migration.md
job-dsl-core/src/main/groovy/javaposse/jobdsl/dsl/helpers/publisher/PublisherContext.groovy
job-dsl-core/src/test/groovy/javaposse/jobdsl/dsl/helpers/publisher/PublisherContextSpec.groovy
http://jenkins-ci.org/commit/job-dsl-plugin/ef3a5831d774ef8597727ab7e9a5ef18904cf01e
Log:
Merge pull request #1097 from daspilker/
JENKINS-43637Un-deprecated support for the PostBuildScript plugin
Compare: https://github.com/jenkinsci/job-dsl-plugin/compare/465b8b79c22b...ef3a5831d774