stable

FEDORA-2022-3759ebabd2 created by tmz 6 months ago for Fedora 35

Update to 2.35.3 (release notes)

This release addresses CVE-2022-24765. Per the release announcement:

On multi-user machines, Git users might find themselves unexpectedly in a Git worktree, e.g. when another user created a repository in C:\.git, in a mounted network drive or in a scratch space. Merely having a Git-aware prompt that runs git status (or git diff) and navigating to a directory which is supposedly not a Git worktree, or opening such a directory in an editor or IDE such as VS Code or Atom, will potentially run commands defined by that other user.

A broad "escape hatch" is available in cases where all the repositories you may enter are considered safe, regardless of their ownership. Quoting another release announcement:

* can be used as the value for the safe.directory variable to signal that the user considers that any directory is safe.

How to install

sudo dnf upgrade --refresh --advisory=FEDORA-2022-3759ebabd2

This update has been submitted for testing by tmz.

6 months ago

This update's test gating status has been changed to 'waiting'.

6 months ago

This update's test gating status has been changed to 'passed'.

6 months ago
User Icon imabug provided feedback 6 months ago
karma

This update has been pushed to testing.

6 months ago
User Icon bojan commented & provided feedback 6 months ago
karma

Works.

This update can be pushed to stable now if the maintainer wishes

6 months ago
User Icon filiperosset commented & provided feedback 6 months ago
karma

no regressions noted

karma
User Icon nedal provided feedback 6 months ago
karma
User Icon huembert provided feedback 5 months ago
karma

This update has been submitted for stable by tmz.

5 months ago

This update has been pushed to stable.

5 months ago

Please login to add feedback.

Metadata
Type
security
Severity
medium
Karma
6
Signed
Content Type
RPM
Test Gating
Settings
Unstable by Karma
-3
Stable by Karma
disabled
Stable by Time
disabled
Dates
submitted
6 months ago
in testing
6 months ago
in stable
5 months ago

Automated Test Results