[JENKINS-59069] Security Issue in latest version - Jenkins Jira

Type: Bug
Resolution: Fixed
Priority: Critical
Component/s: gitlab-oauth-plugin
Labels:
- plugin
- security
Environment:
Jenkins v2.176.2

Similar Issues:
Powered by SuggestiMate

Show
URL:
https://wiki.jenkins.io/display/JENKINS/Gitlab+OAuth+Plugin
Released As:
1.5

I want to ask if these security issues addressed so far and planned on the roadmap?

https://wiki.jenkins.io/display/JENKINS/Gitlab+OAuth+Plugin

The current version of this plugin may not be safe to use. Please review the following warnings before use:

HTTP session fixation vulnerability
Open redirect vulnerability

Assignee:: Mohamed El Habib

Reporter:: Matthias Doering

Votes:: 2 Vote for this issue

Watchers:: 3 Start watching this issue

Created:: 2019-08-25 07:59

Updated:: 2022-01-30 23:07

Resolved:: 2022-01-30 23:07