Slackware-14.2 ChangeLog (2021-03-12)

Fri Mar 12 02:29:12 UTC 2021

  • patches/packages/git-2.17.6-i586-1_slack14.2.txz
    This update fixes a security issue:
    On case-insensitive file systems with support for symbolic links, if Git is
    configured globally to apply delay-capable clean/smudge filters (such as Git
    LFS), Git could be fooled into running remote code during a clone. Credit for
    finding and fixing this vulnerability goes to Matheus Tavares, helped by
    Johannes Schindelin.
    For more information, see:
    https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-21300
    (* Security fix *)
  • news/2021/03/12/slackware-14.2-changelog.txt
  • Last modified: 8 days ago
  • by Giuseppe Di Terlizzi