This content has moved to
/blog/2012/03/06/critical-security-advisory-in-jenkins-core