Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[GHSA-r57f-7xw3-q2r9] Improper Authentication in Jenkins #3707

Closed
wants to merge 1 commit into from
Closed

[GHSA-r57f-7xw3-q2r9] Improper Authentication in Jenkins #3707

wants to merge 1 commit into from

Conversation

sunSUNQ
Copy link

@sunSUNQ sunSUNQ commented Feb 26, 2024

Updates

  • References

Comments
Add some patch links related to CVE-2017-1000354.

@github-actions github-actions bot changed the base branch from main to sunSUNQ/advisory-improvement-3707 February 26, 2024 13:30
@JonathanLEvans
Copy link

Hi @sunSUNQ, could you please explain how the new reference relates to the vulnerability?

@sunSUNQ
Copy link
Author

sunSUNQ commented Mar 5, 2024

The patch in 02d24053bdfeb219d2387a19885a60bdab510479 import java.util.logging.Logger in ClientAuthenticationCache.java, and then add test on LoggerRule in ClientAuthenticationCacheTest.java. I believe that the addition of test classes during patch submission is crucial to ensure the viability of the added code in the patch. Therefore, I consider the modifications made to test classes as an integral part of the patch.

@taladrane
Copy link
Collaborator

👋 This pull request has been marked as stale because it has been open with no activity. You can: comment on the issue or remove the stale label to hold stale off for a while, add the Keep label to hold stale off permanently, or do nothing. If you do nothing this pull request will be closed eventually by the stale bot. Please see CONTRIBUTING.md for more policy details.

@sunSUNQ sunSUNQ closed this Mar 21, 2024
@github-actions github-actions bot deleted the sunSUNQ-GHSA-r57f-7xw3-q2r9 branch March 21, 2024 01:21
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
Stale
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@sunSUNQ @JonathanLEvans @taladrane