Cloud Foundry Logo
blog single gear
Security Advisory

CVE-2018-1227: Concourse-dot-ci domain issue

CVE-2018-1227: Concourse-dot-ci Domain Issue

Severity

High/Advisory

Vendor

Concourse CI

Affected Products and Versions

Please see the notice available at https://pivotal.io/security/cve-2018-1227.

References

Description

The original domain for the Concourse CI (concourse-dot-ci) open source project has been registered by an unknown actor, and is therefore no longer the official website for Concourse CI. The new official domain is concourse-ci.org.

At approximately 4 am EDT on March 7, 2018 the Concourse OSS team began receiving reports that the Concourse domain was not responding. The Concourse OSS team discovered, upon investigation with both the original and the new domain registrars, that the originating domain registrar had made the domain available for purchase. This was done despite the domain being renewed by the Concourse OSS team through August 2018.

Mitigation

Please see the notice available at https://pivotal.io/security/cve-2018-1227.

Cloud Foundry Foundation Security Team Profile Image

Cloud Foundry Foundation Security Team, AUTHOR

SEE ALL ARTICLES