Open Megagyger opened 2 months ago
This is concerning. Please tell no-one about it so that we can calm down again
My company has a hard dependency on this project. Was just notified of this exploit today. I was able to reproduce it by doing the following:
Please fix. Thx
Let's contribute helpfully to this open source project instead of putting more stress on the maintainer and letting some xz-situation happen. I will add:
Posting this as critical. I managed to exploit this vulnerability this morning