This is a bugfix release with the following changes:
Fix an out-of-bounds read when applying patches that do not end with a newline.
Fix an out-of-bounds read when decoding specially crafted binary patches.
Fix an out-of-bounds read when receiving a specially crafted "OK" packet via the smarthttp transport.
Fix lifetime for parsed patches depending on the lifetime of the parsed buffe.
Several fixes when parsing and applying patches.
Fix computed patch IDs for patches that have no newline at end of file.
Fix applying patches to trees that add new files.
Do not read configuration from a user's home directory if running in a sandboxed environment.
Fix handling of nested ignore rules overriding wildcard unignores in parent directories.
Fix reference locks not being correctly honored on Unix systems.
Follow 308 redirects when fetching or pushing from remote repositories on Windows.
Fix a race when detaching the libgit2 library on Windows.
Update the "binary" gitattribute macro to match git's change to "-diff -merge -text -crlf".
Refuse to delete the HEAD reference.
Fixes for several memory leaks.
When fetching from an anonymous remote using a URL with authentication
information provided in the URL (eg https://foo:bar@example.com/repo
),
we would erroneously include the literal URL in the FETCH_HEAD file.
We now remove that to match git's behavior.
Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:
sudo dnf upgrade --refresh --advisory=FEDORA-2020-6cdd12689e
Please login to add feedback.
This update has been submitted for testing by pwalter.
This update's test gating status has been changed to 'waiting'.
This update's test gating status has been changed to 'ignored'.
This update has been pushed to testing.
This update's test gating status has been changed to 'greenwave_failed'.
This update's test gating status has been changed to 'ignored'.
This update can be pushed to stable now if the maintainer wishes
This update has been submitted for stable by bodhi.
This update has been pushed to stable.