FreeBSD : jenkins -- multiple vulnerabilities (3350275d-cd5a-11e8-a7be-3497f683cb16)
High Nessus Plugin ID 118073
Synopsis
The remote FreeBSD host is missing one or more security-related updates.
Description
Jenkins Security Advisory : Description(Low) SECURITY-867 Path traversal vulnerability in Stapler allowed accessing internal data (Medium) SECURITY-1074 Arbitrary file write vulnerability using file parameter definitions (Medium) SECURITY-1129 Reflected XSS vulnerability (Medium) SECURITY-1162 Ephemeral user record was created on some invalid authentication attempts (Medium) SECURITY-1128 Ephemeral user record creation (Medium) SECURITY-1158 Session fixation vulnerability on user signup (Medium) SECURITY-765 Failures to process form submission data could result in secrets being displayed or written to logs
Solution
Update the affected packages.