Per the upstream release announcement¹, this release fixes "various security flaws, which allowed an attacker to overwrite arbitrary paths, remotely execute code, and/or overwrite files in the .git/ directory etc. See the release notes attached for the list for their descriptions and CVE identifiers." Refer to the 2.14.6 release notes² for details on these vulnerabilities. ¹ https://lore.kernel.org/git/xmqqr21cqcn9.fsf@gitster-ct.c.googlers.com/ ² https://www.kernel.org/pub/software/scm/git/docs/RelNotes/2.14.6.txt
2 lines
318 B
Text
2 lines
318 B
Text
SHA512 (git-2.21.1.tar.xz) = c4f1930effe4b7cddbdc3a5ea0f1503683089d5dfdae491dd7f752f35b655b31fbef569a993ef412962cf9c74a225eafe095f792d493f37b20789e5c643261a1
|
|
SHA512 (git-2.21.1.tar.sign) = c27dc5a4de9ee136cd5a97d7fca7349de7c94c18e809925584c6bf0df9e71325c4d6706f20cae9101d1a8eb437f45cf9d1b4c00689c116a9fba1e36e870ed345
|