CloudBees, Inc.

Jenkins OSS LTS 1.480.1

New Features

None

Resolved issues

Major JENKINS-7214

FilePath.validateAntFileMask too slow for /configure (issue 7214)

Major JENKINS-14667

java.io.InvalidClassException (issue 14667)

Major JENKINS-15226

Log recorders do not work reliably (issue 15226)

Major JENKINS-13336

Invalid JSON is produced during remote api operations when a changeSet contains duplicate keys. (issue 13336)

Major

Header manipulation (CrLf) – open redirect vulnerability in "j_acegi_security_check" (SECURITY-44)

Major JENKINS-15382

Memory exhaustion parsing large test stdio from Surefire (issue 15382)

Major

Persistence XSS vulnerability in build's decription (SECURITY-43)

Major

Header manipulation (CrLf) – open redirect vulnerability in Work Space (SECURITY-45)

Major JENKINS-15493

Excessive memory usage with large number of request threads

Major JENKINS-13202

Partial fix: if the platform cannot read symlinks during e.g. archiving, fall back to visiting them as plain files or directories.

Major JENKINS-15206

Displaying /people can consume huge resources

Major JENKINS-15277

Check view permissions before showing config page

Known issues

None