Tag Archives: Github

NTP and git client vulnerabilities

Git client vulnerabilities on case-insensitive filesystems: https://github.com/blog/1938-vulnerability-announced-update-your-git-clients NTPd vulnerabilities announced: http://www.kb.cert.org/vuls/id/852879 OSX and MS Windows users, start by updating your github apps and plugins and then your regular command-line git client. NTP fixes still pending for most platforms.

Rails exploit compromises GitHub, many sites vulnerable

I know patching massive and longstanding security holes doesn’t contribute to “developer fun”, but neither does living in a world where GitHub (and by extension every project that uses it) are vulnerable to direct exploitation: http://arstechnica.com/business/news/2012/03/hacker-commandeers-github-to-prove-vuln-in-ruby.ars One Russian coder (Egor … Continue reading