amuck-landowner

Git vulnerability

SentinelTower

New Member
Hey,

Just giving a heads up for developers using GIT to access public repositories : a vulnerability has been found and can lead to arbitrary code to be run on the client machine if the latter uses a case insensitive file system.

It seems that the git tree can be crafted to fool the git client and make it overwrite the .git/config

Make sure you are up to date.

Github has made a post about it if you want more info : https://github.com/blog/1938-vulnerability-announced-update-your-git-clients
 
Top
amuck-landowner