GitHub Upgrade – 2.20.9

The 2.20.9 update is a security update, fixing a CVE the GitHub software, as well a minor bug, and applying OS package upgrades.

Security Fixed

  • HIGH:¬†An improper access control vulnerability was identified in the GitHub Enterprise Server API that allowed an organization member to escalate permissions and gain access to unauthorized repositories within an organization.

Notable Bug Fixes

  • Internet-facing GitHub Enterprise Server instances could be indexed by search engines.

We will be applying the patch at 5:00 PM EST on June 4th.

https://sysnews.ncsu.edu/news/5ed6c563