[Buildroot] [PATCH v1 1/2] package/git: bump version to 2.30.2
Peter Korsgaard
peter at korsgaard.com
Wed Mar 24 22:49:05 UTC 2021
>>>>> "Peter" == Peter Seiderer <ps.report at gmx.net> writes:
> Fix CVE-2021-21300:
> On case-insensitive file systems with support for symbolic links,
> if Git is configured globally to apply delay-capable clean/smudge
> filters (such as Git LFS), Git could be fooled into running
> remote code during a clone.
> For details see [1] and [2].
> [1] http://lkml.iu.edu/hypermail/linux/kernel/2102.1/01858.html
> [2] http://lkml.iu.edu/hypermail/linux/kernel/2103.1/02533.html
> Signed-off-by: Peter Seiderer <ps.report at gmx.net>
Committed to 2021.02.x, thanks.
For 2020.02.x and 2020.11.x I will instead bump to the corresponding
updates to the git series used there.
--
Bye, Peter Korsgaard
More information about the buildroot
mailing list