CVE-2019-16555

Publication date

2019-12-17 14:40:47

Family

jenkins

State

PUBLISHED

Description

A user-supplied regular expression in Jenkins Build Failure Analyzer Plugin 1.24.1 and earlier was processed in a way that wasnt interruptible, allowing attackers to have Jenkins evaluate a regular expression without the ability to interrupt this process.