GitHub Enterprise Server Security Update Advisory (CVE-2024-0200)

Jan 24 2024

Overview

An update has been made available to fix vulnerabilities in GitHub Enterprise Server. Users of affected versions are advised to update to the latest version.

Affected Products

All versions of GitHub Enterprise Server 3.7 and earlier and all versions of 3.8.12, 3.9.7, 3.10.4, 3.11.2 and earlier

Resolved Vulnerabilities

Reflection injectionvulnerability inGitHub Enterprise Server (CVE-2024-0200)

Vulnerability Patches

Vulnerability patches have been made available. Users of all versions of GitHub Enterprise Server 3.7 and earlier and versions 3.8.12, 3.9.7, 3.10.4, 3.11.2 and earlier are advised to update to the latest vulnerability patches.

GitHub Enterprise Server 3.8.13, 3.9.8, 3.10.5, and 3.11.3

Referenced Sites

[1] Enterprise Server 3.10.5

https://docs.github.com/en/enterprise-server@3.10/admin/release-notes#3.10.5

[2] Enterprise Server 3.11.3

https://docs.github.com/en/enterprise-server@3.11/admin/release-notes#3.11.3

[3] Enterprise Server 3.8.13

https://docs.github.com/en/enterprise-server@3.8/admin/release-notes#3.8.13

[4] Enterprise Server 3.9.8

https://docs.github.com/en/enterprise-server@3.9/admin/release-notes#3.9.8

GitHub Enterprise Server Security Update Advisory (CVE-2024-0200)

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

MLflow and ClearML Platform Security Update Advisories (CVE-2023-6831, CVE-2023-6977, CVE-2023-6709, CVE-2023-6778)

GitLab CE/EE Product Security Update Advisory (CVE-2024-0402, CVE-2023-6159, CVE-2023-5933, CVE-2023-5612, CVE-2024-0456)

Overview

Affected Products

Resolved Vulnerabilities

Vulnerability Patches

Referenced Sites

Tags:

MLflow and ClearML Platform Security Update Advisories (CVE-2023-6831, CVE-2023-6977, CVE-2023-6709, CVE-2023-6778)

GitLab CE/EE Product Security Update Advisory (CVE-2024-0402, CVE-2023-6159, CVE-2023-5933, CVE-2023-5612, CVE-2024-0456)