Updated git packages fix security vulnerabilities
Publication date: 20 Jan 2025Modification date: 20 Jan 2025
Type: security
Affected Mageia releases : 9
CVE: CVE-2024-50349 , CVE-2024-52006
Description
Git does not sanitize URLs when asking for credentials interactively.
(CVE-2024-50349)
Newline confusion in credential helpers can lead to credential
exfiltration in git. (CVE-2024-52006)
References
SRPMS
9/core
- git-2.41.3-1.mga9