Navigation

    论坛

    • Login
    • Categories
    • Recent
    • Tags
    • Popular

    GitHub出现重大安全bug

    综合交流
    2
    2
    72
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • admin
      admin last edited by admin

      昨天3月8日,GitHub发现重大安全问题,该bug会导致用户登录到别人账号上。GitHub官方称该问题存在不到2周时间,0.001%的会话受到影响,目前GitHub已通过使session失效,强制重新登陆,以保护用户帐户免受潜在严重安全漏洞的侵害。

      https://github.blog/2021-03-08-github-security-update-a-bug-related-to-handling-of-authenticated-sessions/
      https://www.bleepingcomputer.com/news/security/github-bug-caused-users-to-login-to-other-user-accounts/

      1 Reply Last reply Reply Quote 0
      • k1995
        k1995 last edited by

        😓,难怪今天上GitHub,要我重新登录。

        1 Reply Last reply Reply Quote 0
        • First post
          Last post