[JENKINS-59069] Security Issue in latest version - Jenkins Jira

XML

Word

Printable

Details

Type: Bug
Status: In Review (View Workflow)
Priority: Critical
Resolution: Unresolved
Component/s: gitlab-oauth-plugin
Labels:
- plugin
- security
Environment:
Jenkins v2.176.2

Similar Issues:

Show
URL:
https://wiki.jenkins.io/display/JENKINS/Gitlab+OAuth+Plugin

Description

I want to ask if these security issues addressed so far and planned on the roadmap?

https://wiki.jenkins.io/display/JENKINS/Gitlab+OAuth+Plugin

The current version of this plugin may not be safe to use. Please review the following warnings before use:

HTTP session fixation vulnerability
Open redirect vulnerability

Attachments

Activity

People

Assignee:: Mohamed El Habib

Reporter:: Matthias Doering

Votes:: 2 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: 2019-08-25 07:59

Updated:: 2020-04-02 08:14