USN-5871-2: Git regression
2 March 2023
USN-5871-1 caused a regression.
Releases
Packages
- git - fast, scalable, distributed revision control system
Details
USN-5871-1 fixed vulnerabilities in Git. A backport fixing
part of the vulnerability in CVE-2023-22490 was required.
This update fix this for Ubuntu 18.04 LTS.
Original advisory details:
It was discovered that Git incorrectly handled certain repositories.
An attacker could use this issue to make Git uses its local
clone optimization even when using a non-local transport.
(CVE-2023-22490)
Update instructions
The problem can be corrected by updating your system to the following package versions:
Ubuntu 18.04
In general, a standard system update will make all the necessary changes.
References
Related notices
- USN-5871-1: git-arch, git-all, git-el, git-mediawiki, git-email, git-gui, git-core, git-daemon-sysvinit, git-svn, gitk, git-daemon-run, git-cvs, git, git-doc, gitweb, git-man