Jenkins Deserialization of Untrusted Data Vulnerability - CVE-2017-1000355
Reference:
CVE-2017-1000355
Title:
Jenkins Deserialization of Untrusted Data Vulnerability
Overview:
Jenkins versions 2.56 and earlier as well as 2.46.1 LTS and earlier are vulnerable to an XStream: Java crash when trying to instantiate void/Void.