GitLab

log in, to register, window-3938430.jpg

GitLab issues security update for Critical hard-coded password vulnerability (CVE-2022-1162)

GitLab has issued a security update to address a Critical vulnerability CVE-2022-1162 where static passwords were inadvertently set during OmniAuth-based registration.

GitLab issues security update for Critical hard-coded password vulnerability (CVE-2022-1162) Read More »

GnuTLS patches TLS vulnerability that could cause MITM attack

The GNU Transport Layer Security Library (GnuTLS) patched a vulnerability hidden in code for nearly two years. The issue applies to a flaw in how TLS 1.3 session resumption works without a master key. As a result, an attacker could exploit and launch man-in-the-middle (MITM) attacks.

GnuTLS patches TLS vulnerability that could cause MITM attack Read More »

Git tool patches serious vulnerabilities

repository hosting services GitHub, GitLab and Microsoft VSTS were all impacted by a serious vulnerability that could lead to arbitrary code execution when a developer uses a malicious repository, Threatpost reports. Each of the hosting services patched the bug on Tuesday.

Git tool patches serious vulnerabilities Read More »