JetBrains IntelliJ是一个集成开发环境(IDE)平台,由JetBrains公司开发并维护,支持Java、Kotlin、Scala、Groovy、Python、JavaScript、TypeScript、Go、Rust等多种编程语言。
鉴于漏洞危害较大,嘉诚安全提醒相关用户尽快更新至安全版本,避免引发漏洞相关的网络安全事件。
IntelliJ IDE 2023.1及更高版本,其中启用并配置了JetBrains GitHub插件
Aqua:2024.1.2
CLion:2023.1.7, 2023.2.4, 2023.3.5, 2024.1.3, 2024.2 EAP2
DataGrip:2024.1.4
DataSpell:2023.1.6, 2023.2.7, 2023.3.6, 2024.1.2
GoLand:2023.1.6, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP3
IntelliJ IDEA:2023.1.7, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP3
MPS:2023.2.1, 2023.3.1, 2024.1 EAP2
PhpStorm:2023.1.6, 2023.2.6, 2023.3.7, 2024.1.3, 2024.2 EAP3
PyCharm:2023.1.6, 2023.2.7, 2023.3.6, 2024.1.3, 2024.2 EAP2
Rider:2023.1.7, 2023.2.5, 2023.3.6, 2024.1.3
RubyMine:2023.1.7, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP4
RustRover:2024.1.1
WebStorm:2023.1.6, 2023.2.7, 2023.3.7, 2024.1.4
下载链接:
https://www.jetbrains.com/
参考链接:
https://www.jetbrains.com/privacy-security/issues-fixed/
https://blog.jetbrains.com/security/2024/06/updates-for-security-issue-affecting-intellij-based-ides-2023-1-and-github-plugin/
https://www.bleepingcomputer.com/news/security/jetbrains-warns-of-intellij-ide-bug-exposing-github-access-tokens/
原文始发于微信公众号(嘉诚安全):【漏洞通告】JetBrains IntelliJ IDE信息泄露漏洞安全风险通告
- 左青龙
- 微信扫一扫
-
- 右白虎
- 微信扫一扫
-
评论