对象已移动

可在此处找到该文档 GitHub rotates credentials following vulnerability discovery – New Self New Life
New Self New Life
No Result
View All Result
  • Home
  • Entertainment
  • Celebrity
  • Cinema
  • Music
  • Digital Lifestyle
  • Social Media
  • Softwares
  • Devices
  • Home
  • Entertainment
  • Celebrity
  • Cinema
  • Music
  • Digital Lifestyle
  • Social Media
  • Softwares
  • Devices
New Self New Life
No Result
View All Result
Home Softwares

GitHub rotates credentials following vulnerability discovery

by admin
2 years ago
in Softwares
GitHub rotates credentials following vulnerability discovery
Share on FacebookShare on Twitter


GitHub has rotated encryption keys following the invention of a vulnerability that might have enabled risk actors to steal credentials, the corporate revealed Tuesday.  

The Microsoft-owned agency stated it first grew to become conscious of the high-severity safety flaw tracked as CVE-2024-0200 on 26 December 2023. After investigating the problem and verifying there was no proof it had been exploited in assaults, GitHub moved swiftly to rotate probably uncovered keys the identical day as a precautionary measure.

The keys rotated embrace GitHub’s commit signing key together with buyer encryption keys used for delicate providers similar to GitHub Actions, GitHub Codespaces, and Dependabot. Customers counting on these keys might want to import the newly generated ones to keep away from potential disruption.

Whereas regarding, the vulnerability is mitigated by the necessity for an attacker to have an authenticated consumer account with organisation proprietor privileges logged into the focused GitHub Enterprise Server occasion, in line with GitHub’s head of safety Jacob DePriest. 

There isn’t any proof to date that the flaw has been exploited outdoors of inside testing.

GitHub stated “unsafe reflection” in GitHub Enterprise Server might result in reflection injection and in the end allow distant code execution in sure circumstances. The difficulty is mounted in lately launched patched variations 3.8.13, 3.9.8, 3.10.5 and three.11.3.  

Along with rotating keys, GitHub addressed one other high-severity vulnerability this week that might have allowed elevation of privilege. Tracked as CVE-2024-0507, the command injection flaw solely impacted GitHub Enterprise Server Administration Console customers with editor function privileges.

(Picture by Farhan Azam on Unsplash)

See additionally: Open supply wins concessions in new EU cyber legislation

Need to be taught extra about cybersecurity and the cloud from business leaders? Take a look at Cyber Safety & Cloud Expo happening in Amsterdam, California, and London. The great occasion is co-located with IoT Tech Expo and Digital Transformation Week.

Moreover, the upcoming Cloud Transformation Convention is a free digital occasion for enterprise and expertise leaders to discover the evolving panorama of cloud transformation. Guide your free digital ticket to discover the practicalities and alternatives surrounding cloud adoption.

Discover different upcoming enterprise expertise occasions and webinars powered by TechForge right here.

Tags: coding, CVE-2024-020, cyber safety, cybersecurity, git, github, hacking, infosec, programming, safety, vulnerability



Source link

Tags: credentialsDiscoveryGitHubrotatesvulnerability
Previous Post

Lexar ARMOR 700 and SL500 portable SSDs

Next Post

Suit of the Week: Cuyana

Related Posts

This week in AI dev tools: GPT-5, Claude Opus 4.1, and more (August 8, 2025)
Softwares

This week in AI dev tools: GPT-5, Claude Opus 4.1, and more (August 8, 2025)

by admin
August 9, 2025
RubyGems malware campaign steals passwords
Softwares

RubyGems malware campaign steals passwords

by admin
August 8, 2025
Will AI Replace Software Engineers? Detailed Overview
Softwares

Will AI Replace Software Engineers? Detailed Overview

by admin
August 6, 2025
How to Be the Leader Your Web Design Clients Need — Speckyboy
Softwares

How to Be the Leader Your Web Design Clients Need — Speckyboy

by admin
August 4, 2025
New tool offers direct lighting control for photographs using 3D scene modeling
Softwares

New tool offers direct lighting control for photographs using 3D scene modeling

by admin
August 3, 2025
Next Post
Suit of the Week: Cuyana

Suit of the Week: Cuyana

Galaxy S24 Series Announced With AI Features And Seven OS Upgrades

Galaxy S24 Series Announced With AI Features And Seven OS Upgrades

  • Trending
  • Comments
  • Latest
Acyan's "Ghost Town" EP Is Bass Music Storytelling at Its Most Ominous

Acyan's "Ghost Town" EP Is Bass Music Storytelling at Its Most Ominous

May 18, 2025
Chris Brown & Rihanna’s Relationship Timeline – Hollywood Life

Chris Brown & Rihanna’s Relationship Timeline – Hollywood Life

May 16, 2025
Ecca Vandal’s “CRUISING TO SELF SOOTHE” video is an ode to skate culture

Ecca Vandal’s “CRUISING TO SELF SOOTHE” video is an ode to skate culture

March 10, 2025
Amazon Forgot to Take the 2024 MacBook Air Off Sale After Their Big Spring Event

Amazon Forgot to Take the 2024 MacBook Air Off Sale After Their Big Spring Event

April 4, 2025
5 Minimal Sneakers Every Stylish Man Should Own

5 Minimal Sneakers Every Stylish Man Should Own

August 9, 2025
I Only Have More Questions After Another Bizarre Outing With The Harrigans

I Only Have More Questions After Another Bizarre Outing With The Harrigans

April 20, 2025
The Ultimate Guide to Samsung Galaxy Z Flip 7

The Ultimate Guide to Samsung Galaxy Z Flip 7

August 5, 2025
ONyc Launches on Kamino, Unlocking Real-World Yield and Collateral Utility in Solana DeFi

ONyc Launches on Kamino, Unlocking Real-World Yield and Collateral Utility in Solana DeFi

August 5, 2025
After a Summer of Chaos, OpenAI Strikes Back

After a Summer of Chaos, OpenAI Strikes Back

August 9, 2025
Zach Cregger’s WEAPONS is a Wickedly Twisted, Unpredictable Horror Ride — GeekTyrant

Zach Cregger’s WEAPONS is a Wickedly Twisted, Unpredictable Horror Ride — GeekTyrant

August 9, 2025
Aubrey Anderson-Emmons Reflects On Modern Family, Coming Out (Exclusive)

Aubrey Anderson-Emmons Reflects On Modern Family, Coming Out (Exclusive)

August 9, 2025
How to Ship Your Vehicle Across the USA: The Complete 2025 Guide

How to Ship Your Vehicle Across the USA: The Complete 2025 Guide

August 8, 2025
This week in AI dev tools: GPT-5, Claude Opus 4.1, and more (August 8, 2025)

This week in AI dev tools: GPT-5, Claude Opus 4.1, and more (August 8, 2025)

August 9, 2025
Google Finance redesign goes all in on AI, complete with a chatbot

Google Finance redesign goes all in on AI, complete with a chatbot

August 8, 2025
Rip Gerber Teams with Zoë Barry for an Unstoppable Mix of Love, Loss, and High-Speed Thrills in “Limited Speed”

Rip Gerber Teams with Zoë Barry for an Unstoppable Mix of Love, Loss, and High-Speed Thrills in “Limited Speed”

August 8, 2025
As AMC Networks Embraces AI, CEO Kristin Dolan Stresses It Is “Technology Play”, Not IP Surrender

As AMC Networks Embraces AI, CEO Kristin Dolan Stresses It Is “Technology Play”, Not IP Surrender

August 8, 2025
New Self New Life

Your source for entertainment news, celebrities, celebrity news, and Music, Cinema, Digital Lifestyle and Social Media and More !

Categories

  • Celebrity
  • Cinema
  • Devices
  • Digital Lifestyle
  • Entertainment
  • Music
  • Social Media
  • Softwares
  • Uncategorized

Recent Posts

  • After a Summer of Chaos, OpenAI Strikes Back
  • Zach Cregger’s WEAPONS is a Wickedly Twisted, Unpredictable Horror Ride — GeekTyrant
  • Aubrey Anderson-Emmons Reflects On Modern Family, Coming Out (Exclusive)
  • Home
  • Disclaimer
  • DMCA
  • Privacy Policy
  • Cookie Privacy Policy
  • Terms and Conditions
  • Contact us

Copyright © 2021 New Self New Life.
New Self New Life is not responsible for the content of external sites. slotsfree  creator solana token

No Result
View All Result
  • Home
  • Entertainment
  • Celebrity
  • Cinema
  • Music
  • Digital Lifestyle
  • Social Media
  • Softwares
  • Devices

Copyright © 2021 New Self New Life.
New Self New Life is not responsible for the content of external sites.

New Self New Life