对象已移动

可在此处找到该文档 GitHub Enterprise Server 3.13.3 tackles critical SAML vulnerability – New Self New Life
New Self New Life
No Result
View All Result
  • Home
  • Entertainment
  • Celebrity
  • Cinema
  • Music
  • Digital Lifestyle
  • Social Media
  • Softwares
  • Devices
  • Home
  • Entertainment
  • Celebrity
  • Cinema
  • Music
  • Digital Lifestyle
  • Social Media
  • Softwares
  • Devices
New Self New Life
No Result
View All Result
Home Softwares

GitHub Enterprise Server 3.13.3 tackles critical SAML vulnerability

by admin
11 months ago
in Softwares
GitHub Enterprise Server 3.13.3 tackles critical SAML vulnerability
Share on FacebookShare on Twitter


GitHub has launched Enterprise Server 3.13.3, addressing a number of safety vulnerabilities, together with a important flaw affecting cases utilizing SAML single sign-on. 

Alongside safety patches, the replace delivers bug fixes, minor characteristic enhancements, and modifications to the platform.

Essentially the most urgent problem tackled by this replace is a important vulnerability (CVE-2024-6800) impacting cases using SAML SSO with particular Id Suppliers (IdPs).

CVE-2024-6800 was found via GitHub’s Bug Bounty programme and will permit an attacker to forge a SAML response, doubtlessly granting them entry to person accounts with web site administrator privileges.

This launch additionally addresses two medium-severity vulnerabilities:

  • CVE-2024-7711: This vulnerability allowed attackers to change the title, assignees, and labels of points inside public repositories. Non-public and inner repositories remained unaffected.
  • CVE-2024-6337: Attackers may exploit this vulnerability to show problem content material from non-public repositories utilizing a GitHub App with particular learn and write permissions. It’s necessary to notice that this exploit required a person entry token and didn’t influence set up entry tokens.

Past safety fixes, 3.13.3 brings a number of notable modifications:

  • Enhanced visibility: Customers achieve elevated visibility into the state of gists, networks, and wikis with the addition of app state info throughout the spokesctl data output. Moreover, the spokesctl test command can now diagnose and infrequently rectify empty repository networks.
  • Improved stability and efficiency: A number of bug fixes goal points associated to hotpatching, configuration updates, and database migrations, leading to improved system stability.
  • Usability enhancements: Directors profit from extra granular management over the utmost object measurement inside repositories. Customers can now customise their hyperlink underline styling preferences throughout the accessibility settings.

Whereas this replace enhances safety and stability, GitHub acknowledges a number of recognized points outlined throughout the official launch notes. These embody potential errors throughout configuration runs, points with audit log information migration, and elevated reminiscence utilisation.

To evaluate the total record of modifications, please seek advice from the official launch notes on GitHub’s web site.

(Picture by Roman Synkevych)

See additionally: Unit 42 researchers uncover important GitHub Actions vulnerability

Need to be taught extra about cybersecurity and the cloud from trade leaders? Try Cyber Safety & Cloud Expo going down in Amsterdam, California, and London. The great occasion is co-located with different main occasions together with BlockX, Digital Transformation Week, IoT Tech Expo, and AI & Large Information Expo.

Discover different upcoming enterprise know-how occasions and webinars powered by TechForge right here.

Tags: coding, cybersecurity, improvement, enterprise server, git, github, infosec, programming, safety, vulnerability



Source link

Tags: 3.13.3CriticalenterpriseGitHubSAMLserverTacklesvulnerability
Previous Post

[Review] OPPO Reno12 Pro specs, AI features, and performance

Next Post

Odoo Website OpenPay Payment Acquirer

Related Posts

The hidden crisis behind AI’s promise: Why data quality became an afterthought
Softwares

The hidden crisis behind AI’s promise: Why data quality became an afterthought

by admin
July 31, 2025
Lazarus Group hackers increase open-source weaponisation
Softwares

Lazarus Group hackers increase open-source weaponisation

by admin
July 30, 2025
The Worst Career Advice Right Now: “Don’t Learn to Code” [Article]
Softwares

The Worst Career Advice Right Now: “Don’t Learn to Code” [Article]

by admin
August 1, 2025
Best AI Agents Development Companies in 2025
Softwares

Best AI Agents Development Companies in 2025

by admin
July 28, 2025
Minor update(3) for Vivaldi Android Browser 7.5
Softwares

Minor update(3) for Vivaldi Android Browser 7.5

by admin
July 27, 2025
Next Post
Odoo Website OpenPay Payment Acquirer

Odoo Website OpenPay Payment Acquirer

Slimmer And Stronger! HONOR Magic V3 Excels In Durability Tests

Slimmer And Stronger! HONOR Magic V3 Excels In Durability Tests

  • Trending
  • Comments
  • Latest
Critics And Fans Disagree On Netflix’s Controversial Fantasy Show With Near-Perfect RT Score

Critics And Fans Disagree On Netflix’s Controversial Fantasy Show With Near-Perfect RT Score

July 5, 2025
How well did you know Ozzy? Take this quiz – National

How well did you know Ozzy? Take this quiz – National

July 28, 2025
I Tried Calocurb For 90 Days. Here’s My Review.

I Tried Calocurb For 90 Days. Here’s My Review.

January 8, 2025
The hidden crisis behind AI’s promise: Why data quality became an afterthought

The hidden crisis behind AI’s promise: Why data quality became an afterthought

July 31, 2025
The Perfect Minimalist Summer Vacation Wardrobe For Men

The Perfect Minimalist Summer Vacation Wardrobe For Men

July 27, 2025
10 Hulu Miniseries That Are Absolutely Flawless (#1 Is The Best You’ve Never Seen)

10 Hulu Miniseries That Are Absolutely Flawless (#1 Is The Best You’ve Never Seen)

July 30, 2025
Why Fans Think Taylor Swift Was in Happy Gilmore 2 Alongside Travis Kelce

Why Fans Think Taylor Swift Was in Happy Gilmore 2 Alongside Travis Kelce

July 31, 2025
Epstein Accuser Who Spoke Out Against Prince Andrew & Bill Clinton Hit By A Bus — And Has Just 'Days To Live'

Donald Trump Admitted He Knew Epstein 'Stole' 16-Year-Old Virginia Giuffre But Did Nothing — Now Her Shocked Family Want Answers!

August 1, 2025
Itch.io starts reindexing free NSFW content

Itch.io starts reindexing free NSFW content

August 1, 2025
Behind the scenes of Warped Tour Long Beach 2025

Behind the scenes of Warped Tour Long Beach 2025

August 1, 2025
Foodie Media, Malaysian digital media platform with an F&B focus

Foodie Media, Malaysian digital media platform with an F&B focus

August 1, 2025
Netflix’s Latest Romance Adaptation Is a Time Machine to 2015 Christian Girl Autumn

Netflix’s Latest Romance Adaptation Is a Time Machine to 2015 Christian Girl Autumn

August 1, 2025
Epstein Accuser Who Spoke Out Against Prince Andrew & Bill Clinton Hit By A Bus — And Has Just 'Days To Live'

Donald Trump Admitted He Knew Epstein 'Stole' 16-Year-Old Virginia Giuffre But Did Nothing — Now Her Shocked Family Want Answers!

August 1, 2025
Reddit Posts Significant Revenue Increase in Q2

Reddit Posts Significant Revenue Increase in Q2

August 1, 2025
Tina Win’s “Try Anything” Introduces a Debut Built on Structure, Clarity, and Control

Tina Win’s “Try Anything” Introduces a Debut Built on Structure, Clarity, and Control

July 31, 2025
Why Bryan Kohberger’s Family Weren’t Witnesses

Why Bryan Kohberger’s Family Weren’t Witnesses

July 31, 2025
New Self New Life

Your source for entertainment news, celebrities, celebrity news, and Music, Cinema, Digital Lifestyle and Social Media and More !

Categories

  • Celebrity
  • Cinema
  • Devices
  • Digital Lifestyle
  • Entertainment
  • Music
  • Social Media
  • Softwares
  • Uncategorized

Recent Posts

  • Itch.io starts reindexing free NSFW content
  • Behind the scenes of Warped Tour Long Beach 2025
  • Foodie Media, Malaysian digital media platform with an F&B focus
  • Home
  • Disclaimer
  • DMCA
  • Privacy Policy
  • Cookie Privacy Policy
  • Terms and Conditions
  • Contact us

Copyright © 2021 New Self New Life.
New Self New Life is not responsible for the content of external sites. slotsfree  creator solana token

No Result
View All Result
  • Home
  • Entertainment
  • Celebrity
  • Cinema
  • Music
  • Digital Lifestyle
  • Social Media
  • Softwares
  • Devices

Copyright © 2021 New Self New Life.
New Self New Life is not responsible for the content of external sites.

New Self New Life