| delorie.com/archives/browse.cgi | search |
| X-Recipient: | archive-cygwin AT delorie DOT com |
| X-Original-To: | cygwin AT cygwin DOT com |
| Delivered-To: | cygwin AT cygwin DOT com |
| DMARC-Filter: | OpenDMARC Filter v1.4.1 sourceware.org 5135B3858C2C |
| Authentication-Results: | sourceware.org; |
| dmarc=none (p=none dis=none) header.from=dinwoodie.org | |
| Authentication-Results: | sourceware.org; spf=pass smtp.mailfrom=dinwoodie.org |
| Date: | Thu, 14 Apr 2022 14:01:21 +0100 |
| From: | Adam Dinwoodie <adam AT dinwoodie DOT org> |
| To: | cygwin AT cygwin DOT com |
| Subject: | [ANNOUNCEMENT] Security update: Git v2.35.3-1 |
| Message-Id: | <announce.20220414130121.czttrtehqw2ylwy6@lucy.dinwoodie.org> |
| MIME-Version: | 1.0 |
| X-Spam-Status: | No, score=-1.7 required=5.0 tests=BAYES_00, KAM_DMARC_STATUS, |
| KAM_NUMSUBJECT, SPF_HELO_NONE, SPF_PASS, TXREP, | |
| T_SCC_BODY_TEXT_LINE autolearn=no autolearn_force=no version=3.4.4 | |
| X-Spam-Checker-Version: | SpamAssassin 3.4.4 (2020-01-24) on |
| server2.sourceware.org | |
| X-BeenThere: | cygwin-announce AT cygwin DOT com |
| X-Mailman-Version: | 2.1.29 |
| X-Mailer: | Perl5 Mail::Internet v2.20 |
| X-BeenThere: | cygwin AT cygwin DOT com |
| List-Id: | General Cygwin discussions and problem reports <cygwin.cygwin.com> |
| List-Archive: | <https://cygwin.com/pipermail/cygwin/> |
| List-Post: | <mailto:cygwin AT cygwin DOT com> |
| List-Help: | <mailto:cygwin-request AT cygwin DOT com?subject=help> |
| List-Subscribe: | <https://cygwin.com/mailman/listinfo/cygwin>, |
| <mailto:cygwin-request AT cygwin DOT com?subject=subscribe> | |
| Reply-To: | cygwin AT cygwin DOT com |
| Sender: | "Cygwin" <cygwin-bounces+archive-cygwin=delorie DOT com AT cygwin DOT com> |
Version 2.35.3-1 of Git has been uploaded and should be coming soon to a mirror near you. This is an update to the latest upstream release; it contains two fixes, one improving the security of yesterday's security fix for CVE-2022-24765, and one improving the usability of that fix: > * The code that was meant to parse the new `safe.directory` > configuration variable was not checking what configuration > variable was being fed to it, which has been corrected. > > * '*' can be used as the value for the `safe.directory` variable to > signal that the user considers that any directory is safe. This update includes the following patches: - git - git-cvs - git-debuginfo - git-email - git-gui - gitk - git-p4 - git-svn As ever, the full upstream changelogs are available with the source package, or at: https://git.kernel.org/cgit/git/git.git/tree/Documentation/RelNotes https://github.com/git/git/tree/master/Documentation/RelNotes Enjoy! -- Problem reports: https://cygwin.com/problems.html FAQ: https://cygwin.com/faq/ Documentation: https://cygwin.com/docs.html Unsubscribe info: https://cygwin.com/ml/#unsubscribe-simple
| webmaster | delorie software privacy |
| Copyright © 2019 by DJ Delorie | Updated Jul 2019 |