Security Alerts & News
by Tymoteusz A. Góral

#1668 GitLab patches command execution vulnerability
Developers with GitLab this week fixed a critical vulnerability in the open source repository management software that could have led to command execution and allowed an authenticated user to gain access to sensitive application files, tokens, or secrets.

HackerOne cofounder Jobert Abma unearthed the vulnerability last week and reported it to the company through GitLab’s bug bounty program. GitLab addressed the issue (CVE-2016-9086) when it rolled out version 8.13.3 of the software late Wednesday.
Read more
#1673 security flaw places millions of websites at risk
#1672 Teen pleads guilty to creating DDoS tool used in 1.7 million attacks
#1671 Mirai botnet attackers are trying to knock an entire country offline
#1670 Cisco patches critical bugs in 900 series routers, prime home server
#1669 Outlook web access two-factor authentication bypass exists
#1668 GitLab patches command execution vulnerability
#1667 Cisco job applicants warned of potential mobile site data leak
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12