Notice for GitKraken users with GitLab
Blog post from GitLab
A vulnerability was discovered in the Axosoft GitKraken software, affecting versions 7.6.0 to 8.0.0, due to a defect in the key generation package that could produce weak or duplicate SSH keys, potentially allowing unauthorized access to accounts or repositories on GitLab.com or self-managed instances. The issue, while not impacting GitLab.com or its projects, required immediate action from users who generated SSH keys with the affected versions between May 12, 2021, and September 27, 2021. GitKraken version 8.0.1, released on September 28, 2021, resolves this vulnerability, and affected users have been advised to revoke compromised keys, update to the latest software version, and generate new SSH keys to secure their accounts. Axosoft and GitLab have communicated with users to ensure the implementation of these protective measures, providing detailed instructions and support contacts for any inquiries.
No tracked trend matches for this post yet.
Use this post, company, and trend context to find content marketing opportunities, perform competitive analysis, or address product feature gaps via the Plushcap MCP server or the Plushcap API.