Merge pull request #100 from priyawadhwa/jenkins

Update advisory for Jenkins CVE-2016-1000027
wolfi-dev · Jul 24, 2023 · 53e62ee · 53e62ee
2 parents 9e36c73 + 3858fdd
commit 53e62ee
Showing 1 changed file with 8 additions and 0 deletions.
diff --git a/jenkins.advisories.yaml b/jenkins.advisories.yaml
@@ -2,6 +2,14 @@ package:
   name: jenkins
 
 advisories:
+  CVE-2016-1000027:
+    - timestamp: 2023-07-21T14:56:46.359543-04:00
+      status: under_investigation
+    - timestamp: 2023-07-21T15:11:25.939734-04:00
+      status: not_affected
+      justification: vulnerable_code_not_in_execute_path
+      impact: Data serialization is performed by the Jenkins framework, nothing specific to this application.
+
   CVE-2023-24998:
     - timestamp: 2023-03-25T21:19:30.185258-04:00
       status: fixed