Fedora 24 Jenkins Update: Serious RCE Threat from Java Deserialization
fedora
March 5, 2017
Security fix for CVE-2016-9299
Summary
Jenkins is an award-winning, cross-platform, continuous integration and
continuous delivery application that increases your productivity. Use
Jenkins to build and test your software projects continuously making it
easier for developers to integrate changes to the project, and making it
easier for users to obtain a fresh build. It also allows you to
continuously deliver your software by providing powerful ways to define
your build pipelines and integrating with a large number of testing and
deployment technologies.
Update Information:
Security fix for CVE-2016-9299
Change Log
References
[ 1 ] Bug #1395172 - CVE-2016-9299 jenkins: Java deserialization flaw leads to RCE https://bugzilla.redhat.com/show_bug.cgi?id=1395172
Update Instructions
This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade jenkins' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html
PREVIOUS 
NEXT Severity
critical
Lowest
Low
Medium
High
Critical
Name: jenkins
Product: Fedora 24
Version: 1.651.3
Release: 2.fc24
Summary: An extendable open source continuous integration server
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!