Suggestions search

All statuses

Filter by:

With package: python312Packages.python-jenkins

Found 12 matching suggestions

View:

Compact

Detailed

Untriaged

Permalink CVE-2012-4438

created 2 months ago Activity log

Created suggestion 2 months ago

Jenkins main before 1.482 and LTS before 1.466.2 allows remote …

Jenkins main before 1.482 and LTS before 1.466.2 allows remote attackers with read access and HTTP access to Jenkins master to insert data and execute arbitrary code.

References

https://security-tracker.debian.org/tracker/CVE-2012-4438 x_transferredx_refsource_MISC
http://www.openwall.com/lists/oss-security/2012/09/21/2 x_transferredx_refsource_MISC
https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2012-4438 x_transferredx_refsource_CONFIRM
https://www.cloudbees.com/jenkins-security-advisory-2012-09-17 x_transferredx_refsource_MISC

Affected products

jenkins

==1.447.2

Matching in nixpkgs

pkgs.jenkins

Extendable open source continuous integration server

nixos-unstable 2.541.1
- nixpkgs-unstable 2.541.1
- nixos-unstable-small 2.541.1
nixos-25.11 2.541.1
- nixos-25.11-small 2.541.1
- nixpkgs-25.11-darwin 2.541.1

pkgs.jenkins-job-builder

Jenkins Job Builder is a system for configuring Jenkins jobs using simple YAML files stored in Git

nixos-unstable 6.4.2
- nixpkgs-unstable 6.4.2
- nixos-unstable-small 6.4.2
nixos-25.11 6.4.2
- nixos-25.11-small 6.4.2
- nixpkgs-25.11-darwin 6.4.2

pkgs.python312Packages.jenkinsapi

Python API for accessing resources on a Jenkins continuous-integration server

nixos-25.11 0.3.15
- nixos-25.11-small 0.3.15
- nixpkgs-25.11-darwin 0.3.15

pkgs.python313Packages.jenkinsapi

Python API for accessing resources on a Jenkins continuous-integration server

nixos-unstable 0.3.15
- nixpkgs-unstable 0.3.15
- nixos-unstable-small 0.3.15
nixos-25.11 0.3.15
- nixos-25.11-small 0.3.15
- nixpkgs-25.11-darwin 0.3.15

pkgs.python314Packages.jenkinsapi

Python API for accessing resources on a Jenkins continuous-integration server

nixos-unstable 0.3.15
- nixpkgs-unstable 0.3.15
- nixos-unstable-small 0.3.15

pkgs.python312Packages.python-jenkins

Python bindings for the remote Jenkins API

nixos-25.11 1.8.3
- nixos-25.11-small 1.8.3
- nixpkgs-25.11-darwin 1.8.3

pkgs.python313Packages.python-jenkins

Python bindings for the remote Jenkins API

nixos-unstable 1.8.3
- nixpkgs-unstable 1.8.3
- nixos-unstable-small 1.8.3
nixos-25.11 1.8.3
- nixos-25.11-small 1.8.3
- nixpkgs-25.11-darwin 1.8.3

pkgs.python314Packages.python-jenkins

Python bindings for the remote Jenkins API

nixos-unstable 1.8.3
- nixpkgs-unstable 1.8.3
- nixos-unstable-small 1.8.3

pkgs.python312Packages.jenkins-job-builder

Jenkins Job Builder is a system for configuring Jenkins jobs using simple YAML files stored in Git

nixos-25.11 6.4.2
- nixos-25.11-small 6.4.2
- nixpkgs-25.11-darwin 6.4.2

pkgs.python313Packages.jenkins-job-builder

Jenkins Job Builder is a system for configuring Jenkins jobs using simple YAML files stored in Git

nixos-unstable 6.4.2
- nixpkgs-unstable 6.4.2
- nixos-unstable-small 6.4.2
nixos-25.11 6.4.2
- nixos-25.11-small 6.4.2
- nixpkgs-25.11-darwin 6.4.2

pkgs.python314Packages.jenkins-job-builder

Jenkins Job Builder is a system for configuring Jenkins jobs using simple YAML files stored in Git

nixos-unstable 6.4.2
- nixpkgs-unstable 6.4.2
- nixos-unstable-small 6.4.2

Package maintainers

@coreyoconnor Corey O'Connor <coreyoconnor@gmail.com>
@NeQuissimus Tim Steinbach <tim@nequissimus.com>
@earldouglas James Earl Douglas <james@earldouglas.com>
@Bot-wxt1221 Bot-wxt1221 <3264117476@qq.com>
@drets Dmytro Rets <dmitryrets@gmail.com>
@de11n Elliot Cameron <nixpkgs-commits@deshaw.com>
@invokes-su Souvik Sen <nixpkgs-commits@deshaw.com>
@gador Florian Brandes <florian.brandes@posteo.de>
@despsyched Priyanshu Tripathi <priyanshu.tripathi@deshaw.com>

Untriaged

Permalink CVE-2024-9453

6.5 MEDIUM

CVSS version: 3.1
Attack vector (AV): NETWORK
Attack complexity (AC): LOW
Privileges required (PR): LOW
User interaction (UI): NONE
Scope (S): UNCHANGED
Confidentiality impact (C): HIGH
Integrity impact (I): NONE
Availability impact (A): NONE

created 9 months, 2 weeks ago Activity log

Created suggestion 9 months, 2 weeks ago

Jenkins-image: sensitive data disclosure when using openshift jenkins image

A vulnerability was found in Red Hat OpenShift Jenkins. The bearer token is not obfuscated in the logs and potentially carries a high risk if those logs are centralized when collected. The token is typically valid for one year. This flaw allows a malicious user to jeopardize the environment if they have access to sensitive information.

References

https://access.redhat.com/security/cve/CVE-2024-9453 vdb-entryx_refsource_REDHAT
RHBZ#2316231 issue-trackingx_refsource_REDHAT

Affected products

jenkins

openshift-sync-plugin

<1.1.0.818.v3883b_3b_df89a_

Matching in nixpkgs

pkgs.jenkins

Extendable open source continuous integration server

nixos-unstable 2.504.2
- nixpkgs-unstable 2.504.2
- nixos-unstable-small 2.504.2

pkgs.jenkins-job-builder

Jenkins Job Builder is a system for configuring Jenkins jobs using simple YAML files stored in Git

nixos-unstable 6.4.2
- nixpkgs-unstable 6.4.2
- nixos-unstable-small 6.4.2

pkgs.emacsPackages.jenkins

None

nixos-unstable 20200524.2016
- nixpkgs-unstable 20200524.2016
- nixos-unstable-small 20200524.2016

pkgs.emacsPackages.jenkins-watch

None

nixos-unstable 20121004.2326
- nixpkgs-unstable 20121004.2326
- nixos-unstable-small 20121004.2326

pkgs.python311Packages.jenkinsapi

Python API for accessing resources on a Jenkins continuous-integration server

nixos-unstable 0.3.13
- nixpkgs-unstable 0.3.13
- nixos-unstable-small 0.3.13

pkgs.python312Packages.jenkinsapi

Python API for accessing resources on a Jenkins continuous-integration server

nixos-unstable 0.3.14
- nixpkgs-unstable 0.3.14
- nixos-unstable-small 0.3.14

pkgs.python313Packages.jenkinsapi

Python API for accessing resources on a Jenkins continuous-integration server

nixos-unstable 0.3.14
- nixpkgs-unstable 0.3.14
- nixos-unstable-small 0.3.14

pkgs.emacsPackages.jenkinsfile-mode

None

nixos-unstable 20230525.2006
- nixpkgs-unstable 20230525.2006
- nixos-unstable-small 20230525.2006

pkgs.python311Packages.python-jenkins

Python bindings for the remote Jenkins API

nixos-unstable 1.8.2
- nixpkgs-unstable 1.8.2
- nixos-unstable-small 1.8.2

pkgs.python312Packages.python-jenkins

Python bindings for the remote Jenkins API

nixos-unstable 1.8.2
- nixpkgs-unstable 1.8.2
- nixos-unstable-small 1.8.2

pkgs.python311Packages.jenkins-job-builder

Jenkins Job Builder is a system for configuring Jenkins jobs using simple YAML files stored in Git

nixos-unstable 6.4.1
- nixpkgs-unstable 6.4.1
- nixos-unstable-small 6.4.1

pkgs.python312Packages.jenkins-job-builder

Jenkins Job Builder is a system for configuring Jenkins jobs using simple YAML files stored in Git

nixos-unstable 6.4.2
- nixpkgs-unstable 6.4.2
- nixos-unstable-small 6.4.2

Package maintainers

@coreyoconnor Corey O'Connor <coreyoconnor@gmail.com>
@earldouglas James Earl Douglas <james@earldouglas.com>
@NeQuissimus Tim Steinbach <tim@nequissimus.com>
@Bot-wxt1221 Bot-wxt1221 <3264117476@qq.com>
@invokes-su Souvik Sen <nixpkgs-commits@deshaw.com>
@drets Dmytro Rets <dmitryrets@gmail.com>
@de11n Elliot Cameron <nixpkgs-commits@deshaw.com>
@gador Florian Brandes <florian.brandes@posteo.de>