From daniel.schmidt at wyo.gov  Wed Apr 10 18:41:39 2024
From: daniel.schmidt at wyo.gov (Daniel Schmidt)
Date: Wed, 10 Apr 2024 13:41:39 -0500
Subject: [tac_plus] Vulnerability: tac_plus pre auth remote command execution
Message-ID: <CAOyMAKmLs7v7OGvmhWhSfOVE7WGYVKsujtgdZDwALYWXY5ds+A@mail.gmail.com>

https://github.com/facebook/tac_plus/security/advisories/GHSA-p334-5r3g-4vx3

Note: I am not qualified to have an opinion on this, I am only bringing it
up for discussion/notification

-- 

Wyoming Department of Enterprise Technology Services

Emerson Building, 2001 Capitol Avenue, Cheyenne, WY 82001


Daniel Schmidt
Network Engineer

  307-509-0286

  daniel.schmidt at wyo.gov <anna.jacknitsky1 at wyo.gov>

  ets.wyo.gov

  I?m in Cheyenne

-- 

E-Mail to and from me, in connection with the transaction 
of public 
business, is subject to the Wyoming Public Records 
Act and may be 
disclosed to third parties.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/tac_plus/attachments/20240410/367745a5/attachment.htm>