Bug#1012174: Inconsistent advice wrt security archive

2023-05-03 Thread Paul Gevers
Hi Richard, On 01-05-2023 16:26, Richard Lewis wrote: I dont think the 'errata' page above is in the release-notes repository (?) That's correct, but that's also why the original reporter filed the bug against both www.debian.org and release-notes. It lives here: https://salsa.debian.org/we

Re: Bug Report [critical]

2023-05-03 Thread Boyuan Yang
hi, 在 2023-05-03星期三的 01:50 +0600,ovix security写道: > Hi Team, > I have found a vulnerability in context to publicly > accessible Jenkins dashboard leaks user/employee data due to asynchPeople > people Enabled. > > Description: >  Due to the publicly exposed Jenkins Dashboard I was able to see > us