Kugadzirisa kuburitswa kweiyo yakagoverwa sosi control system Git 2.30.2, 2.17.6, 2.18.5, 2.19.6, 2.20.5, 2.21.4, 2.22.5, 2.23.4, 2.24.4, 2.25.5, 2.26.3, 2.27.1. zvakabudiswa .2.28.1, 2.29.3, 2021 uye 21300, iyo yakagadzirisa kusagadzikana (CVE-2.15-XNUMX) inobvumira kushandiswa kwekodhi kure paunenge uchibatanidza repository yeanorwisa uchishandisa "git clone" murairo. Zvese zvinoburitswa zveGit kubvira vhezheni XNUMX zvinokanganiswa.
ΠΡΠΎΠ±Π»Π΅ΠΌΠ° ΠΏΡΠΎΡΠ²Π»ΡΠ΅ΡΡΡ ΠΏΡΠΈ ΠΈΡΠΏΠΎΠ»ΡΠ·ΠΎΠ²Π°Π½ΠΈΠΈ ΠΎΡΠ»ΠΎΠΆΠ΅Π½Π½ΡΡ ΠΎΠΏΠ΅ΡΠ°ΡΠΈΠΉ checkout, ΠΊΠΎΡΠΎΡΡΠ΅ ΠΏΡΠΈΠΌΠ΅Π½ΡΡΡΡΡ Π² Π½Π΅ΠΊΠΎΡΠΎΡΡΡ ΡΠΈΠ»ΡΡΡΠ°Ρ ΠΎΡΠΈΡΡΠΊΠΈ, Π½Π°ΠΏΡΠΈΠΌΠ΅Ρ, Π½Π°ΡΡΡΠ°ΠΈΠ²Π°Π΅ΠΌΡΡ Π² Git LFS. ΠΠΊΡΠΏΠ»ΡΠ°ΡΠ°ΡΠΈΡ ΡΡΠ·Π²ΠΈΠΌΠΎΡΡΠΈ Π²ΠΎΠ·ΠΌΠΎΠΆΠ½Π° ΡΠΎΠ»ΡΠΊΠΎ Π² ΡΠ°ΠΉΠ»ΠΎΠ²ΡΡ ΡΠΈΡΡΠ΅ΠΌΠ°Ρ , Π½Π΅ ΡΠ°Π·Π»ΠΈΡΠ°ΡΡΠΈΡ ΡΠ΅Π³ΠΈΡΡΡ ΡΠΈΠΌΠ²ΠΎΠ»ΠΎΠ², Π½ΠΎ ΠΏΠΎΠ΄Π΄Π΅ΡΠΆΠΈΠ²Π°ΡΡΠΈΡ ΡΠΈΠΌΠ²ΠΎΠ»ΠΈΡΠ΅ΡΠΊΠΈΠ΅ ΡΡΡΠ»ΠΊΠΈ, ΡΠ°ΠΊΠΈΡ ΠΊΠ°ΠΊ NTFS, HFS+ ΠΈ APFS (Ρ.Π΅. Π½Π° ΠΏΠ»Π°ΡΡΠΎΡΠΌΠ°Ρ Windows ΠΈ macOS).
Senzira yekuchengetedza, unogona kudzima symlink process mugit nekumhanyisa "git config -global core.symlinks nhema", kana kudzima tsigiro yekusefa uchishandisa murairo "git config -show-scope -get-regexp 'filter\.. * \.process'". Inokurudzirwawo kudzivirira cloning unverified repositories.
Source: opennet.ru
