Jenkins 2.185和前LTS2.176.1和前核心/src/main/java/hudson/mode/FilePramevalue.java允许带Job/Confit许可攻击者定义文件参数
https://access.redhat.com/errata/RHSA-2019:2503
https://access.redhat.com/errata/RHSA-2019:2548
https://jenkins.io/security/advisory/2019-07-17/#SECURITY-1424