Follow
Remote code execution vulnerability fixed in Git, GitHub Desktop and Atom:
– CVE-2018-17456
Update to:
– Git v2.19.1 (resp. backports in v2.14.5, v2.15.3, v2.16.5, v2.17.2, and v2.18.1)
– GitHub Desktop 1.4.2 resp. 1.4.3-beta0
– Atom 1.31.2 resp. 1.32.0-beta3
#git #github #githubdesktop #vulnerability #atom #infosec #security #cybersecurity
Technical details and Proof of Concept:
https://gist.github.com/joernchen/38dd6400199a542bc9660ea563dcf2b6