rpms / perl-Git-Repository

Clone
Source Code
GIT

Files

f15 f16 f17 f18 f19 f20 f21 f22 f23 f24 f25 f26 f27 f28 f29 f30 f31 f32 f33 f34 f35 f36 f37 f38 f39 f40 main rawhide
  1.   f39
  2.   git-2.38.1-compatibility.patch
Blob Blame History Raw 
commit 4dc8dedb97891f37b9da2220e5740c65685b0906
Author: Jan Pazdziora <jpazdziora@redhat.com>
Date:   Mon Oct 31 17:26:00 2022 +0100

    Workaround change of behaviour in git 2.38.1 for CVE-2022-39253.
    
    By default, protocol.file.allow now defaults to user, preventing
    clones with symlinks.
    
    https://github.blog/2022-10-18-git-security-vulnerabilities-announced/#cve-2022-39253

diff --git a/t/21-submodule.t b/t/21-submodule.t
index 444029c..97374f8 100644
--- a/t/21-submodule.t
+++ b/t/21-submodule.t
@@ -44,6 +44,7 @@ $s->run( checkout => 'master', { quiet => 1 } );
 # now test adding a submodule
 my $r = test_repository(@init);
 $r->run(
+    ( Git::Repository->version_ge('2.38.1') ? ('-c', 'protocol.file.allow=always') : ()),
     submodule => add => $s->work_tree => 'sub',
     { env => { GIT_WORK_TREE => undef } }
 );
Powered by Pagure 5.13.3
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.