update to 2.30.2

This release includes a fix for CVE-2021-21300¹. Release notes: https://github.com/git/git/raw/v2.30.2/Documentation/RelNotes/2.30.2.txt ¹ Per the 2.17.6 release notes on CVE-2021-21300: On case-insensitive file systems with support for symbolic links, if Git is configured globally to apply delay-capable clean/smudge filters (such as Git LFS), Git could be fooled into running remote code during a clone.
2021-03-09 13:51:47 -05:00 · 2021-03-09 13:51:47 -05:00 · 6eb7905679
commit 6eb7905679
parent e34350e16e
2 changed files with 7 additions and 4 deletions
--- a/git.spec
+++ b/git.spec
@ -96,8 +96,8 @@
 #global rcrev   .rc0

 Name:           git
-Version:        2.30.1
-Release:        3%{?rcrev}%{?dist}
+Version:        2.30.2
+Release:        1%{?rcrev}%{?dist}
 Summary:        Fast Version Control System
 License:        GPLv2
 URL:            https://git-scm.com/
@ -1070,6 +1070,9 @@ rmdir --ignore-fail-on-non-empty "$testdir"
 %{?with_docs:%{_pkgdocdir}/git-svn.html}

 %changelog
+* Tue Mar 09 2021 Todd Zullinger <tmz@pobox.com> - 2.30.2-1
+- update to 2.30.2 (CVE-2021-21300)
+
 * Tue Mar 02 2021 Todd Zullinger <tmz@pobox.com> - 2.30.1-3
 - use %%{gpgverify} macro to verify tarball signature

--- a/4
+++ b/4
@ -1,2 +1,2 @@
-SHA512 (git-2.30.1.tar.xz) = b3567d251c73807857f05f46cae3acb4e0d876590d122229c05509d5eb17fc3eee0ba97a1b2068070b399085f7a92aa2493c4833b98f65b8ef15fc279798caa3
-SHA512 (git-2.30.1.tar.sign) = 74f03e9b38fb33cfc8bf8d17ac108c769663acfd4b72c5fade4410b06b6c7c29479a82f58409ba780468f56e0ce24bc86f118e7f31060941067c34f02778f6e2
+SHA512 (git-2.30.2.tar.xz) = 4f7e1c30f8eee849d1febeda872d56c60c5d051a31726505a4c7bab11b274d3a2ab5588f910b7b49c5c0ec5228a18457f705c7b66e8bbdf809d3c75c59032b7e
+SHA512 (git-2.30.2.tar.sign) = 36aed3ddda7d60899970c63da7afd5e64a27d1a0998aaeabfcdb8f3865b5629f8b9b039cd3b23532d358b995bd700dfbe0624c48568ac102763498a1fc409b0c