Date: Tue, 20 Apr 2021 19:27:11 GMT From: Li-Wen Hsu <lwhsu@FreeBSD.org> To: ports-committers@FreeBSD.org, dev-commits-ports-all@FreeBSD.org, dev-commits-ports-main@FreeBSD.org Subject: git: 87da0092a49e - main - Document Jenkins Security Advisory 2021-04-20 Message-ID: <202104201927.13KJRBSg024810@gitrepo.freebsd.org>
next in thread | raw e-mail | index | archive | help
The branch main has been updated by lwhsu: URL: https://cgit.FreeBSD.org/ports/commit/?id=87da0092a49ead1ae480c19dbf76bea6e3996202 commit 87da0092a49ead1ae480c19dbf76bea6e3996202 Author: Li-Wen Hsu <lwhsu@FreeBSD.org> AuthorDate: 2021-04-20 19:23:55 +0000 Commit: Li-Wen Hsu <lwhsu@FreeBSD.org> CommitDate: 2021-04-20 19:26:54 +0000 Document Jenkins Security Advisory 2021-04-20 Sponsored by: The FreeBSD Foundation --- security/vuxml/vuln.xml | 31 +++++++++++++++++++++++++++++++ 1 file changed, 31 insertions(+) diff --git a/security/vuxml/vuln.xml b/security/vuxml/vuln.xml index 6f1e38ce51ad..e4c5eaec495d 100644 --- a/security/vuxml/vuln.xml +++ b/security/vuxml/vuln.xml @@ -76,6 +76,37 @@ Notes: * Do not forget port variants (linux-f10-libxml2, libxml2, etc.) --> <vuxml xmlns="http://www.vuxml.org/apps/vuxml-1">; + <vuln vid="e358b470-b37d-4e47-bc8a-2cd9adbeb63c"> + <topic>jenkins -- Denial of service vulnerability in bundled Jetty</topic> + <affects> + <package> + <name>jenkins</name> + <range><lt>2.286</lt></range> + </package> + <package> + <name>jenkins-lts</name> + <range><lt>2.277.3</lt></range> + </package> + </affects> + <description> + <body xmlns="http://www.w3.org/1999/xhtml">; + <p>Jenkins Security Advisory:</p> + <blockquote cite="https://www.jenkins.io/security/advisory/2021-04-20/">; + <h1>Description</h1> + <h5>(High) JENKINS-65280 / CVE-2021-28165</h5> + <p>Denial of service vulnerability in bundled Jetty</p> + </blockquote> + </body> + </description> + <references> + <url>https://www.jenkins.io/security/advisory/2021-04-20/</url>; + </references> + <dates> + <discovery>2021-04-20</discovery> + <entry>2021-04-20</entry> + </dates> + </vuln> + <vuln vid="56ba4513-a1be-11eb-9072-d4c9ef517024"> <topic>MySQL -- Multiple vulnerabilities</topic> <affects>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202104201927.13KJRBSg024810>