[ANNOUNCEMENT] Security update: Git v2.30.2-1

Adam Dinwoodie adam@dinwoodie.org
Wed Mar 10 11:24:13 GMT 2021


Version 2.30.2-1 of Git has been uploaded and should be coming soon to
a mirror near you.

This update fixes CVE-2021-21300: On case-insensitive file systems
with support for symbolic links, if Git is configured globally to
apply delay-capable clean/smudge filters (such as Git LFS), Git could
be fooled into running remote code during a clone.

This update includes the following packages:

- git
- git-cvs
- git-debuginfo
- git-email
- git-gui
- gitk
- git-p4
- git-svn

This is an update to the latest upstream release.

For a full list of the upstream changes in this release, please refer to
the upstream changelogs:

https://git.kernel.org/cgit/git/git.git/tree/Documentation/RelNotes
https://kernel.googlesource.com/pub/scm/git/git.git/+/master/Documentation/RelNotes/
https://github.com/git/git/tree/master/Documentation/RelNotes

Enjoy!


More information about the Cygwin mailing list