Debian
git package

git 1:2.35.2-1 source package in Debian

Changelog

git (1:2.35.2-1) unstable; urgency=medium

  * new upstream point release (see RelNotes/2.35.2.txt).
    * Addresses the security issue CVE-2022-24765: Git users might
      have found themselves unexpectedly in a Git worktree, e.g. when
      another user created a repository in `/tmp/.git`, in a mounted
      network drive or in a scratch space. Having a Git-aware prompt
      that runs `git status` (or `git diff`) and navigating to a
      directory which is supposedly not a Git worktree, or opening
      such a directory in an IDE with Git support such as VS Code,
      could then run commands specified by that other user.

      Thanks to 俞晨东 for discovering this vulnerability and
      Johannes Schindelin for the mitigation.

 -- Jonathan Nieder <email address hidden>  Tue, 12 Apr 2022 21:25:57 -0700

Upload details

Uploaded by:
Jonathan Nieder
Uploaded to:
Sid
Original maintainer:
Jonathan Nieder
Architectures:
any all
Section:
vcs
Urgency:
Medium Urgency

See full publishing history Publishing

Series Pocket Published Component Section

Builds

Downloads

File Size SHA-256 Checksum
git_2.35.2-1.dsc 2.8 KiB d6c6a3047c0bffa9ef116f4ec0524c61862e4d979a411839fd8cb1e72875137e
git_2.35.2.orig.tar.xz 6.6 MiB c73d0c4fa5dcebdb2ccc293900952351cc5fb89224bb133c116305f45ae600f3
git_2.35.2-1.debian.tar.xz 692.2 KiB 3b47625eccba3a02a0d404c5290f9c42c356f2bd881d866509cdff7cdfe4f967

No changes file available.

Binary packages built by this source