Skip to content

[3.19] main/git: security upgrade to 2.43.4

Furkan Mustafa requested to merge furkanmustafa/aports-dev:3.19-security/git into 3.19-stable
  • CVE-2024-32002 (Critical for case insensitive file systems with symlink support)
  • CVE-2024-32004 (High)
  • CVE-2024-32465 (High)
  • CVE-2024-32020 (Low)
  • CVE-2024-32021 (Low)

As always, it is best to avoid cloning repositories from untrusted sources.

More info; https://github.blog/2024-05-14-securing-git-addressing-5-new-vulnerabilities/

Upstream patched versions; v2.45.1 v2.44.1 v2.43.4 v2.42.2 v2.41.1 v2.40.2 v2.39.4

We probably should look into previous Alpine releases as well.

Merge request reports