Incorrect control flow in Jenkins Gradle Plugin breaks credentials masking in the build log

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked i.e., replaced with asterisks in the build log in some circumstances...

GHSA-PVJF-4HFG-WR84 Incorrect control flow in Jenkins Gradle Plugin breaks credentials masking in the build log

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked i.e., replaced with asterisks in the build log in some circumstances...

CVE-2023-39152

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked i.e., replaced with asterisks in the build log in some circumstances...

CVE-2023-39152

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked i.e., replaced with asterisks in the build log in some circumstances...

Design/Logic Flaw

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked i.e., replaced with asterisks in the build log in some circumstances...

CVE-2023-39152

The CVE-2023-39152 issue affects the Jenkins Gradle Plugin (version 2.8) due to an always-incorrect control flow implementation that may cause credentials to be emitted in plaintext instead of being masked in the build log under some circumstances. Public references in connected docs corroborate ...

CVE-2023-39152

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked i.e., replaced with asterisks in the build log in some circumstances...

CVE-2023-39152

Always-incorrect control flow implementation in Jenkins Gradle Plugin 2.8 may result in credentials not being masked i.e., replaced with asterisks in the build log in some circumstances...

PT-2023-26809 · Jenkins · Jenkins Gradle Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Gradle Plugin version 2.8 Description: The issue is related to an always-incorrect control flow implementation that may result in credentials not being masked in the build log under certain circumstances. Recommendations: For Jenkins...

Jenkins Gradle Plugin 安全漏洞

Jenkins and Jenkins Plugin are both Jenkins open source products.Jenkins is a software application . An open source automation server Jenkins provides hundreds of plugins to support building, deploying, and automating any project.Jenkins Plugin is a software application. A security vulnerability...

A Bootiful Podcast: Spring Framework and Spring Boot legend Stéphane Nicoll on a Bootiful Podcast

Hi, Spring fans! Welcome to another installment of A Bootiful Podcast! In this installment, Josh Long talk to Spring team legend Stéphane Nicoll @snicoll about Spring Boot, Apache Maven and Gradle, his journey to the Spring team, and so much more. This episode was recorded live from beautiful...

GHSA-HR8G-6V94-X4M9 vulnerabilities

Vulnerabilities for packages: druid, gradle, tez...

GHSA-HR8G-6V94-X4M9 vulnerabilities

Vulnerabilities for packages: elasticsearch, druid, gradle, tez...

CVE-2023-33201 vulnerabilities

Vulnerabilities for packages: elasticsearch, druid, gradle, tez...

CVE-2023-33201 vulnerabilities

Vulnerabilities for packages: druid, gradle, tez...

SUSE CVE-2023-35946

Gradle is a build tool with a focus on build automation and support for multi-language development. When Gradle writes a dependency into its dependency cache, it uses the dependency's coordinates to compute a file location. With specially crafted dependency coordinates, Gradle can be made to writ...

SUSE CVE-2023-35947

Gradle is a build tool with a focus on build automation and support for multi-language development. In affected versions when unpacking Tar archives, Gradle did not check that files could be written outside of the unpack location. This could lead to important files being overwritten anywhere the...

CVE-2023-35947

Gradle is a build tool with a focus on build automation and support for multi-language development. In affected versions when unpacking Tar archives, Gradle did not check that files could be written outside of the unpack location. This could lead to important files being overwritten anywhere the...

CVE-2023-35947

Gradle is a build tool with a focus on build automation and support for multi-language development. In affected versions when unpacking Tar archives, Gradle did not check that files could be written outside of the unpack location. This could lead to important files being overwritten anywhere the...

DEBIAN-CVE-2023-35947

Gradle is a build tool with a focus on build automation and support for multi-language development. In affected versions when unpacking Tar archives, Gradle did not check that files could be written outside of the unpack location. This could lead to important files being overwritten anywhere the...