tmz / rpms / git

Forked from rpms/git 6 years ago
Clone
Source Code
GIT

4787e39 update to 2.36.0-rc2 (CVE-2022-24765)

Authored and Committed by tmz 2 years ago
raw patch tree parent
2 files changed. 7 lines added. 4 lines removed.
git.spec
file modified
+5 -2
sources
file modified
+2 -2 
    update to 2.36.0-rc2 (CVE-2022-24765)
    
    Regarding CVE-2022-24765, the release announcement says:
    
       On multi-user machines, Git users might find themselves
       unexpectedly in a Git worktree, e.g. when another user created a
       repository in `C:\.git`, in a mounted network drive or in a
       scratch space. Merely having a Git-aware prompt that runs `git
       status` (or `git diff`) and navigating to a directory which is
       supposedly not a Git worktree, or opening such a directory in an
       editor or IDE such as VS Code or Atom, will potentially run
       commands defined by that other user.
    
    The new `safe.directory` setting may be used in either the system or
    global configuration to list directories which git should consider safe
    even if they are owned by someone other than the current user.
    
    Release notes:
    https://github.com/git/git/raw/v2.36.0-rc2/Documentation/RelNotes/2.36.0.txt
file modified
+5 -2
file modified
+2 -2
Powered by Pagure 5.13.3
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.