{"id":485386,"date":"2024-06-19T07:46:38","date_gmt":"2024-06-19T06:46:38","guid":{"rendered":"https:\/\/blog.jetbrains.com\/?post_type=security&#038;p=485386"},"modified":"2024-06-19T07:46:43","modified_gmt":"2024-06-19T06:46:43","slug":"updates-for-security-issue-affecting-intellij-based-ides-2023-1-and-github-plugin","status":"publish","type":"security","link":"https:\/\/blog.jetbrains.com\/ko\/security\/2024\/06\/updates-for-security-issue-affecting-intellij-based-ides-2023-1-and-github-plugin\/","title":{"rendered":"IntelliJ \uae30\ubc18\uc758 IDE(2023.1+)\uc640 JetBrains GitHub \ud50c\ub7ec\uadf8\uc778\uc5d0 \uc601\ud5a5\uc744 \uc8fc\ub294 \ubcf4\uc548 \ubb38\uc81c\uc5d0 \ub300\ud55c \uc5c5\ub370\uc774\ud2b8"},"content":{"rendered":"<p>IntelliJ \ud50c\ub7ab\ud3fc\uc5d0\uc11c JetBrains <a href=\"https:\/\/plugins.jetbrains.com\/plugin\/13115-github\" target=\"_blank\" rel=\"noopener\">GitHub \ud50c\ub7ec\uadf8\uc778<\/a>\uc5d0 \uc601\ud5a5\uc744 \uc8fc\uc5b4 \ud0c0\uc0ac \uc0ac\uc774\ud2b8\uc5d0 \uc561\uc138\uc2a4 \ud1a0\ud070\uc744 \uc720\ucd9c\ud560 \uc218 \uc788\ub294 \uc0c8\ub85c\uc6b4 <a href=\"https:\/\/www.cve.org\/CVERecord?id=CVE-2024-37051\" target=\"_blank\" rel=\"noopener\">\ubcf4\uc548 \ubb38\uc81c<\/a>\uac00 \ubc1c\uacac\ub418\uc5c8\uc2b5\ub2c8\ub2e4. \uc774 \ubb38\uc81c\ub294 JetBrains GitHub \ud50c\ub7ec\uadf8\uc778\uc774 \ud65c\uc131\ud654, \uad6c\uc131 \ubc0f \uc0ac\uc6a9\ub418\ub294 2023.1 \uc774\uc0c1\uc758 \ubaa8\ub4e0 IntelliJ IDE\uc5d0 \uc601\ud5a5\uc744 \uc90d\ub2c8\ub2e4.<\/p>\n<p>\uc774\uc81c IntelliJ \ud50c\ub7ab\ud3fc 2023.1 \uc774\uc0c1\uc744 \uae30\ubc18\uc73c\ub85c \ud558\ub294 \ubaa8\ub4e0 IDE\uc5d0 \uc218\uc815\uc774 \ubc30\ud3ec\ub418\uc5b4 \ud574\ub2f9 \ubb38\uc81c\ub294 \ud574\uacb0\ub418\uc5c8\uc2b5\ub2c8\ub2e4.<\/p>\n<h2 class=\"wp-block-heading\">\uc218\uc815\ub41c \ubc84\uc804<\/h2>\n<ul>\n<li><strong>Aqua<\/strong>: 2024.1.2<\/li>\n<li><strong>CLion<\/strong>: 2023.1.7, 2023.2.4, 2023.3.5, 2024.1.3, 2024.2 EAP2<\/li>\n<li><strong>DataGrip<\/strong>: 2024.1.4<\/li>\n<li><strong>DataSpell<\/strong>: 2023.1.6, 2023.2.7, 2023.3.6, 2024.1.2<\/li>\n<li><strong>GoLand<\/strong>: 2023.1.6, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP3<\/li>\n<li><strong>IntelliJ IDEA<\/strong>: 2023.1.7, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP3<\/li>\n<li><strong>MPS<\/strong>: 2023.2.1, 2023.3.1, 2024.1 EAP2<\/li>\n<li><strong>PhpStorm<\/strong>: 2023.1.6, 2023.2.6, 2023.3.7, 2024.1.3, 2024.2 EAP3<\/li>\n<li><strong>PyCharm<\/strong>: 2023.1.6, 2023.2.7, 2023.3.6, 2024.1.3, 2024.2 EAP2<\/li>\n<li><strong>Rider<\/strong>: 2023.1.7, 2023.2.5, 2023.3.6, 2024.1.3<\/li>\n<li><strong>RubyMine<\/strong>: 2023.1.7, 2023.2.7, 2023.3.7, 2024.1.3, 2024.2 EAP4<\/li>\n<li><strong>RustRover<\/strong>: 2024.1.1<\/li>\n<li><strong>WebStorm<\/strong>: 2023.1.6, 2023.2.7, 2023.3.7, 2024.1.4<\/li>\n<\/ul>\n<p>\uc774\ubc88 \uc218\uc815\uc73c\ub85c JetBrains GitHub \ud50c\ub7ec\uadf8\uc778\ub3c4 \uc5c5\ub370\uc774\ud2b8\ub418\uc5c8\uc73c\uba70, \uc601\ud5a5\uc744 \ubc1b\uc740 \uc774\uc804 \ubc84\uc804\uc740 <a href=\"https:\/\/plugins.jetbrains.com\/\" target=\"_blank\" rel=\"noopener\" data-type=\"link\" data-id=\"https:\/\/plugins.jetbrains.com\/\">JetBrains Marketplace<\/a>\uc5d0\uc11c \uc81c\uac70\ub418\uc5c8\uc2b5\ub2c8\ub2e4.<\/p>\n<p>\uc544\uc9c1 \ucd5c\uc2e0 \ubc84\uc804\uc73c\ub85c \uc5c5\ub370\uc774\ud2b8\ud558\uc9c0 \uc54a\uc740 \uacbd\uc6b0 \uc5c5\ub370\uc774\ud2b8\ud560 \uac83\uc744 \uac15\ub825\ud558\uac8c \uad8c\uc7a5\ud569\ub2c8\ub2e4.<\/p>\n<h2 class=\"wp-block-heading\">\uc138\ubd80 \uc815\ubcf4<\/h2>\n<p>2024\ub144 5\uc6d4 29\uc77c\uc5d0 \ub2f9\uc0ac\ub294 IDE \ub0b4\uc5d0\uc11c \ud480 \ub9ac\ud018\uc2a4\ud2b8\uc5d0 \uc601\ud5a5\uc744 \uc904 \uc218 \uc788\ub294 \uc7a0\uc7ac\uc801\uc778 \ucde8\uc57d\uc810\uc5d0 \uad00\ud55c \uc678\ubd80 \ubcf4\uc548 \ubcf4\uace0\uc11c\ub97c \ubc1b\uc558\uc2b5\ub2c8\ub2e4. \ud2b9\ud788 \ud480 \ub9ac\ud018\uc2a4\ud2b8\uc5d0 \ud3ec\ud568\ub41c \uc545\uc758\uc801\uc778 \ucf58\ud150\uce20\uac00 GitHub\ub85c \uc804\uc1a1\ub418\uc5b4 IntelliJ \uae30\ubc18\uc758 IDE\uac00 \uc774\ub97c \ucc98\ub9ac\ud558\uac8c \ub418\uba74, \ud0c0\uc0ac \ud638\uc2a4\ud2b8\uc5d0 \uc561\uc138\uc2a4 \ud1a0\ud070\uc774 \ub178\ucd9c\ub420 \uc218 \uc788\uc5c8\uc2b5\ub2c8\ub2e4. \uc774 \ucde8\uc57d\uc810\uc5d0 \ud560\ub2f9\ub41c CVE ID\ub294 <a href=\"https:\/\/www.cve.org\/CVERecord?id=CVE-2024-37051\" target=\"_blank\" rel=\"noopener\">CVE-2024-37051<\/a>\uc785\ub2c8\ub2e4.<\/p>\n<p>\ub2f9\uc0ac\ub294 \uc774 \ubb38\uc81c\ub97c \ud3c9\uac00\ud558\uace0 \ud574\uacb0 \ubc29\uc548\uc744 \ub9cc\ub4dc\ub294 \ub3d9\uc2dc\uc5d0 GitHub\uc5d0\ub3c4 \uc5f0\ub77d\uc744 \ucde8\ud574 \ubb38\uc81c \uc644\ud654\ub97c \uc704\ud55c \uc9c0\uc6d0\uc744 \ubc1b\uc558\uc2b5\ub2c8\ub2e4. \uc601\ud5a5\uc744 \ucd5c\uc18c\ud654\ud558\uae30 \uc704\ud55c \uc774\ub7f0 \uc870\uce58\ub85c \uc778\ud574 \uc774\uc804 \ubc84\uc804\uc758 JetBrains IDE\uc5d0 \ud3ec\ud568\ub41c JetBrains GitHub \ud50c\ub7ec\uadf8\uc778\uc774 \uc608\uae30\uce58 \uc54a\uac8c \ub3d9\uc791\ud560 \uc218 \uc788\uc2b5\ub2c8\ub2e4.<\/p>\n<h2 class=\"wp-block-heading\">\uc0ac\uc6a9\uc790\uac00 \ucde8\ud574\uc57c \ud558\ub294 \uc870\uce58<\/h2>\n<p>\uc6b0\uc120 IDE\ub97c \ucd5c\uc2e0 \ubc84\uc804\uc73c\ub85c \uc5c5\ub370\uc774\ud2b8\ud560 \uac83\uc744 \uac15\ub825\ud558\uac8c \uad8c\uc7a5\ud569\ub2c8\ub2e4.<\/p>\n<p>\ub610\ud55c, IDE \ub0b4\uc5d0\uc11c GitHub \ud480 \ub9ac\ud018\uc2a4\ud2b8 \uae30\ub2a5\uc744 \ub9ce\uc774 \uc0ac\uc6a9\ud558\uc2e0 \uacbd\uc6b0 \ud50c\ub7ec\uadf8\uc778\uc774 \uc0ac\uc6a9 \uc911\uc778 GitHub \ud1a0\ud070\uc744 \ucde8\uc18c\ud558\ub294 \uac83\uc774 \uc88b\uc2b5\ub2c8\ub2e4. \ud50c\ub7ec\uadf8\uc778\uc774 OAuth \ud1b5\ud569 \uae30\ub2a5\uc774\ub098 \uac1c\uc778 \uc561\uc138\uc2a4 \ud1a0\ud070(PAT)\uc744 \uc0ac\uc6a9\ud560 \uc218 \uc788\uae30 \ub54c\ubb38\uc5d0 \ub458 \ub2e4 \ud655\uc778\ud558\uace0 \ud544\uc694\ud55c \uacbd\uc6b0 \ucde8\uc18c\ud558\uc138\uc694.<\/p>\n<ol>\n<li>OAuth \ud1b5\ud569 \uc124\uc815: <a href=\"https:\/\/github.com\/settings\/applications\" target=\"_blank\" rel=\"noopener\">Applications(\uc560\ud50c\ub9ac\ucf00\uc774\uc158)<\/a> \u2192 Authorized OAuth Apps(\uc778\uc99d\ub41c OAuth \uc571)\ub85c \uc774\ub3d9\ud55c \ub2e4\uc74c <strong><em>JetBrains IDE \ud1b5\ud569<\/em><\/strong> \uc560\ud50c\ub9ac\ucf00\uc774\uc158\uc758 \uc561\uc138\uc2a4\ub97c \ucde8\uc18c\ud558\uc138\uc694.<\/li>\n<li>\uac1c\uc778 \uc561\uc138\uc2a4 \ud1a0\ud070 \uc124\uc815: <a href=\"https:\/\/github.com\/settings\/tokens\" target=\"_blank\" rel=\"noopener\">Tokens(\ud1a0\ud070)<\/a> \ud398\uc774\uc9c0\ub85c \uc774\ub3d9\ud55c \ub2e4\uc74c \ud50c\ub7ec\uadf8\uc778\uc5d0 \ubc1c\ud589\ub41c \ud1a0\ud070\uc744 \uc0ad\uc81c\ud558\uc138\uc694. \ub514\ud3f4\ud2b8 \ud1a0\ud070 \uc774\ub984\uc740 <strong><em>IntelliJ IDEA GitHub integration plugin<\/em><\/strong>\uc774\uc9c0\ub9cc \uc0ac\uc6a9\uc790\uac00 \uc9c0\uc815\ud55c \uc774\ub984\uc77c \uc218\ub3c4 \uc788\uc2b5\ub2c8\ub2e4.<\/li>\n<\/ol>\n<p>\ud1a0\ud070\uc774 \ucde8\uc18c\ub41c \ud6c4\uc5d0\ub294 \ubaa8\ub4e0 \ud50c\ub7ec\uadf8\uc778 \uae30\ub2a5(Git \uc791\uc5c5 \ud3ec\ud568)\uc774 \ub3d9\uc791\ud558\uc9c0 \uc54a\uc73c\ubbc0\ub85c \ud50c\ub7ec\uadf8\uc778\uc744 \ub2e4\uc2dc \uc124\uc815\ud574\uc57c \ud569\ub2c8\ub2e4.<\/p>\n<p>\uc774 \ubb38\uc81c\ub85c \ubd88\ud3b8\uc744 \ub07c\uccd0 \ub4dc\ub824 \uc9c4\uc2ec\uc73c\ub85c \uc0ac\uacfc\ub4dc\ub9bd\ub2c8\ub2e4.<\/p>\n<p>\uac10\uc0ac\ud569\ub2c8\ub2e4.<\/p>\n<p><em>\uac8c\uc2dc\ubb3c \uc6d0\ubb38 \uc791\uc131\uc790<\/em><\/p>\n\n    <div class=\"about-author \">\n        <div class=\"about-author__box\">\n            <div class=\"row\">\n                <div class=\"about-author__box-img\">\n                    <img decoding=\"async\" src=\"https:\/\/secure.gravatar.com\/avatar\/?s=200&#038;r=g\" width=\"200\" height=\"200\" alt=\"\" loading=\"lazy\"  class=\"avatar avatar-200 wp-user-avatar wp-user-avatar-200 photo avatar-default\">\n                <\/div>\n                <div class=\"about-author__box-text\">\n                                                        <\/div>\n            <\/div>\n        <\/div>\n    <\/div>\n","protected":false},"author":964,"featured_media":485393,"comment_status":"closed","ping_status":"closed","template":"","categories":[],"tags":[91,655],"cross-post-tag":[6632,6637],"acf":[],"_links":{"self":[{"href":"https:\/\/blog.jetbrains.com\/ko\/wp-json\/wp\/v2\/security\/485386"}],"collection":[{"href":"https:\/\/blog.jetbrains.com\/ko\/wp-json\/wp\/v2\/security"}],"about":[{"href":"https:\/\/blog.jetbrains.com\/ko\/wp-json\/wp\/v2\/types\/security"}],"author":[{"embeddable":true,"href":"https:\/\/blog.jetbrains.com\/ko\/wp-json\/wp\/v2\/users\/964"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.jetbrains.com\/ko\/wp-json\/wp\/v2\/comments?post=485386"}],"version-history":[{"count":8,"href":"https:\/\/blog.jetbrains.com\/ko\/wp-json\/wp\/v2\/security\/485386\/revisions"}],"predecessor-version":[{"id":485416,"href":"https:\/\/blog.jetbrains.com\/ko\/wp-json\/wp\/v2\/security\/485386\/revisions\/485416"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/blog.jetbrains.com\/ko\/wp-json\/wp\/v2\/media\/485393"}],"wp:attachment":[{"href":"https:\/\/blog.jetbrains.com\/ko\/wp-json\/wp\/v2\/media?parent=485386"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.jetbrains.com\/ko\/wp-json\/wp\/v2\/categories?post=485386"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.jetbrains.com\/ko\/wp-json\/wp\/v2\/tags?post=485386"},{"taxonomy":"cross-post-tag","embeddable":true,"href":"https:\/\/blog.jetbrains.com\/ko\/wp-json\/wp\/v2\/cross-post-tag?post=485386"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}