[bug#55001] [PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765].

guix-patches

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[bug#55001] [PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765].

From:	Zhu Zihao
Subject:	[bug#55001] [PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765].
Date:	Tue, 19 Apr 2022 00:02:40 +0800
User-agent:	mu4e 1.6.10; emacs 27.2

Greg Hogan <code@greghogan.com> writes:

> Hi Zihao,
>
> Is this not a Windows-only vulnerability and bugfix release (also 
> CVE-2022-24767)?
>
> Greg
>
> On Mon, Apr 18, 2022 at 9:44 AM Zhu Zihao <all_but_last@163.com> wrote:
>
>  -- 
>  Retrieve my PGP public key:
>
>    gpg --recv-keys D47A9C8B2AE3905B563D9135BE42B352A9F6821F
>
>  Zihao

Hi.

https://www.phoronix.com/scan.php?page=news_item&px=Git-CVE-2022-24765

This article says "likely due to only affect Microsoft Windows". I
haven't test this CVE on *nix systems.

If it doesn't affect Guix systems, should I remove "[fixes
CVE-2022-24765]" in the git commit message or leave it there?

-- 
Retrieve my PGP public key:

  gpg --recv-keys D47A9C8B2AE3905B563D9135BE42B352A9F6821F

Zihao

signature.asc
Description: PGP signature

[Prev in Thread]

Current Thread

[Next in Thread]

[bug#55001] [PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765]., Zhu Zihao, 2022/04/18
- Message not available
  - [bug#55001] Acknowledgement ([PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765].), Zhu Zihao, 2022/04/18
    - [bug#55001] Acknowledgement ([PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765].), Greg Hogan, 2022/04/18
    - [bug#55001] gnu: git: Update to 2.36.0 [fixes CVE-2022-24765] Was: Acknowledgement ([PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765].), Zhu Zihao, 2022/04/19
    - [bug#55001] gnu: git: Update to 2.36.0 [fixes CVE-2022-24765] Was: Acknowledgement ([PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765].), Greg Hogan, 2022/04/19
    - [bug#55001] gnu: git: Update to 2.36.0 [fixes CVE-2022-24765] Was: Acknowledgement ([PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765].), Zhu Zihao, 2022/04/23
    - bug#55001: [PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765]., Mathieu Othacehe, 2022/04/27
- [bug#55001] [PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765]., Greg Hogan, 2022/04/18
  - [bug#55001] [PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765]., Zhu Zihao <=
    - [bug#55001] [PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765]., Maxime Devos, 2022/04/18

Prev by Date: [bug#54953] [PATCH] gnu: Add emacs-nano-theme
Next by Date: [bug#54953] (No Subject)
Previous by thread: [bug#55001] [PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765].
Next by thread: [bug#55001] [PATCH] gnu: git: Update to 2.35.2 [fixes CVE-2022-24765].
Index(es):
- Date
- Thread