Jenkins Security Advisory SECURITY-87 notes: "This vulnerabily allows anonymous users to DoS Jenkins by causing thread exhaustion, even when the said instance is otherwise inaccessible to anonymous users."
Acknowledgements: Red Hat would like to thank the Jenkins project for reporting this issue. Upstream acknowledges Daniel Beck as the original reporter.
Public now: https://wiki.jenkins-ci.org/display/SECURITY/Jenkins+Security+Advisory+2014-10-01
This issue has been addressed in the following products: Red Hat OpenShift Enterprise 2.1 Via RHBA-2014:1630 https://rhn.redhat.com/errata/RHBA-2014-1630.html
This issue has been addressed in the following products: RHEL 7 Version of OpenShift Enterprise 3.1 Via RHSA-2016:0070 https://access.redhat.com/errata/RHSA-2016:0070