stable

git-2.26.3-2.fc32

FEDORA-2021-ffd0b2108d created by tmz 3 years ago for Fedora 32

Security fix for CVE-2021-21300

A specially crafted repository that contains symbolic links as well as files using a clean/smudge filter such as Git LFS, may cause just-checked out script to be executed while cloning onto a case-insensitive file system such as NTFS, HFS+ or APFS. Note that clean/smudge filters have to be configured in advance, in the system-wide or global user configuration for this bug to be exploited.

This issue does not affect Fedora in default configurations.

For further details, please refer to the upstream advisory.

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2021-ffd0b2108d

This update has been submitted for testing by tmz.

3 years ago

This update's test gating status has been changed to 'ignored'.

3 years ago

This update's test gating status has been changed to 'waiting'.

3 years ago

This update's test gating status has been changed to 'ignored'.

3 years ago

This update has been pushed to testing.

3 years ago
karma
User Icon ersen provided feedback 3 years ago
karma

This update can be pushed to stable now if the maintainer wishes

3 years ago

This update has been submitted for stable by tmz.

3 years ago

This update has been pushed to stable.

3 years ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
2
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
14 days
Dates
submitted
3 years ago
in testing
3 years ago
in stable
3 years ago
BZ#1935158 CVE-2021-21300 git: remote code execution during clone operation on case-insensitive filesystems
0
0
BZ#1937166 CVE-2021-21300 git: remote code execution during clone operation on case-insensitive filesystems [fedora-all]
0
0

Automated Test Results