Merge branch 'tb/clone-local-symlinks' into maint-2.30 - user/sven/git.git

diff options

author	Taylor Blau <me@ttaylorr.com>	2023-01-25 14:58:38 -0500
committer	Johannes Schindelin <johannes.schindelin@gmx.de>	2023-02-06 09:09:14 +0100
commit	2c9a4c731010685b86559c06637aeef2ac5ea06e (patch)
tree	94ef671b634c0516c9643aa5e685ca31c0793453 /builtin/commit.c
parent	0227130244c007870c106fc613903d078730e45c (diff)
parent	bffc762f87ae8d18c6001bf0044a76004245754c (diff)

Merge branch 'tb/clone-local-symlinks' into maint-2.30

Resolve a security vulnerability (CVE-2023-22490) where `clone_local()` is used in conjunction with non-local transports, leading to arbitrary path exfiltration. * tb/clone-local-symlinks: dir-iterator: prevent top-level symlinks without FOLLOW_SYMLINKS clone: delay picking a transport until after get_repo_path() t5619: demonstrate clone_local() with ambiguous transport

Diffstat (limited to 'builtin/commit.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: