⚠️ GitLab Security Flaw (exploit) ⚠️... - Opensource - kbin.social

Linux, 1 month ago

⚠️ GitLab Security Flaw (exploit) ⚠️

No matter if you host your own copy of GitLab Software or use GitLab's servers directly, you should enable 2-step Verification - NOW (right now, do not wait). There is a current exploit that allows someone to hijack GitLab Accounts, who are not using 2-step verification.

#GitLab #OpenSource #Floss #Linux #Windows #Apple #Android #iOS #App

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Image

Image alternative text

arcadetoken, 1 month ago

@Linux Is there a ZDI or CVE ID that's dropped for it yet?

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Linux, 1 month ago

@arcadetoken Yes, here is the link to the news story (see URL). The vulnerability, tracked as CVE-2023-7028, carries a severity rating of 10 out of a possible 10. https://arstechnica.com/security/2024/05/0-click-gitlab-hijacking-flaw-under-active-exploit-with-thousands-still-unpatched/

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

+ ParadeGrotesque

ParadeGrotesque, 1 month ago

@Linux

10/10? Oooof...

@arcadetoken

reply

report

activity

copy /kbin url

copy original url

open original url

Loading...

Federation

Status:

Instances:

/m/opensource

Microblog (7543)

Thread

Linux

@Linux@sakurajima.social

Added: 1 month ago
Online: -
Boosts: 0

Magazine

Opensource

@opensource@kbin.social

This magazine is dedicated to discussions on open source software, hardware, and technology.

Whether you are a developer, a tech enthusiast, or simply interested in the philosophy of open source, this is the place for you.

Here you can share your knowledge, ask questions, and engage in discussions on topics such as open source programming languages, operating systems, hardware, and more.

From the benefits and challenges of open source to the latest developments and trends, this category covers a wide range of topics related to open source.

Created: 1 year ago
Owner: ernest
Subscribers: 6777
Online: -

Tags

#foss

Moderators

ernest

Active people

Related posts

This Brittanic child-wizard's device can be a fine defensive warrior's tool. #RaspberryPi #Linux #OpenSource https://cromwell-intl.com/open-source/raspberry-pi/openvas.html?s=mc

Show more

4 days ago to RaspberryPi

Python 3.12.3 came out a few days ago, and that means it's time for my favorite infrequently-run shell command: https://pypi.org/project/MOPUp/...

Show more

2 days ago to random

#Linux Weekly Roundup for June 9th, 2024: #Ubuntu Core 24, #NixOS adds #GNOME 46 and #KDE Plasma 6 support, KDE Frameworks 6.3, #VLC 3.0.21, Ubuntu 23.10 EOL approaching, Kali Linux 2024.2, Parrot OS 6.1, blendOS 4, CachyOS adds support for T2 Macs, #NVIDIA 550.90.07, and more...

Show more

2 days ago to linux

it’s a little disingenuous to refer to #LLMs as #opensource because you can really only open source an LLM in roughly the same way you open source a microprocessor — RISCV is open source, the plans for it anyway, but it still costs millions to riff off it and make your own custom version, same with LLMs. that’s not exactly...

Show more

4 days ago to LLMs

Related threads

GameCube HDMI Mod Is Now Available on github

Show more

1 month ago to retrogaming

MercuryAlloy - Automated Build Service for the Mercury Browser

Show more

3 months ago to opensource

Drupal Meets Symfony: A Match Made for API Innovation

Show more

2 months ago to drupal

Release Pioneer 2024-02-03

Show more

4 months ago to opensourcegames

Support Us