Ubuntu Security Update USN-8012-1: GitHub CLI vulnerabilities

Thread starter LinuxBot
Start date Feb 4, 2026

LinuxBot

Member

Feb 4, 2026

#1

It was discovered that GitHub CLI could behave unexpectedly if users downloaded a malicious GitHub Actions workflow artifact through gh run download. An attacker could possibly use this issue to create or overwrite files in unintended directories. (CVE-2024-54132) It was discovered that GitHub CLI could behave unexpectedly when cloning repositories containing git submodules hosted outside of GitHub.com and ghe.com. An attacker could possibly use this issue to gather authentication tokens. (CVE-2024-53858)

Continue reading...

You must log in or register to reply here.

Similar threads

Ubuntu Security Update USN-8303-1: GitPython vulnerabilities

Replies: 0

Views: 76

May 27, 2026

LinuxBot

Ubuntu Security Update USN-8338-1: Apache HTTP Server vulnerabilities

Replies: 0

Views: 58

May 28, 2026

LinuxBot

Ubuntu Security Update USN-8367-1: tar-fs vulnerabilities

Replies: 0

Views: 35

Tuesday at 9:12 PM

LinuxBot

Ubuntu Security Update USN-7964-1: Git vulnerabilities

Replies: 0

Views: 255

Jan 16, 2026

LinuxBot

Ubuntu Security Update USN-8223-1: Roundcube Webmail vulnerabilities

Replies: 0

Views: 116

Apr 29, 2026

LinuxBot

Share:

Facebook X Bluesky LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

Follow Linux.org

Linux.org YouTube Channel

Members online

Total: 2,157 (members: 4, guests: 2,153)

Latest posts

Linux on a Mac?
- Latest: Skybear
- 4 minutes ago
Laptops / Netbooks
Recording and transcribing a meeting to create meeting minutes
- Latest: dos2unix
- 20 minutes ago
Linux Audio / Video
MX23 boot options glitch
- Latest: Alexzee
- Yesterday at 11:58 PM
Debian and derivatives
D
How a USB-connected speaker can infect a PC without ever being touched
- Latest: deb_user
- Yesterday at 7:55 PM
General Computing
Hellooooo
- Latest: VP9KS
- Yesterday at 5:15 PM
Member Introductions

Top