USN-3791-1: Git vulnerability
12 October 2018
Git could be made to run programs as your login if it recursively opened a malicious git repository.
- git - fast, scalable, distributed revision control system
It was discovered that git did not properly validate git submodule
urls or paths. A remote attacker could possibly use this to craft a
git repository that causes arbitrary code execution when recursive
operations are used.