GitHub Fixes Code Smuggling Vulnerability
Security updates have been released for GitHub and GitHub Enterprise Server to address a vulnerability allowing attackers with push rights to inject malicious code. The flaw enabled code smuggling via repository pushes.
Topics
Developing
- 862d Lorem ipsum dolor sit amet, consectetur adipiscing elit, sed do eiusmod tempor incididunt ut labore.
- 862d Duis aute irure dolor in reprehenderit in voluptate velit esse cillum dolore eu fugiat nulla pariatur.
- 862d Excepteur sint occaecat cupidatat non proident, sunt in culpa qui officia deserunt mollit anim id est.
- 862d Sed ut perspiciatis unde omnis iste natus error sit voluptatem accusantium doloremque laudantium.
Sources · 7 independent
Mastodon
“GitHub and GitHub Enterprise Server: Code smuggling via pushIn GitHub and GitHub Enterprise Server, attackers with push rights to repositories can inject malicious code. Updates fix this.”
Unlock the full story
Get a Pro subscription or above to see the live story progression and the full list of independent sources confirming each event as they happen.
Log in to upgrade