Uploaded image for project: 'Sourcetree For Mac'
  1. Sourcetree For Mac
  2. SRCTREE-3641

Update to a version of git that contains a fix for CVE-2016-2324 and CVE‑2016‑2315

    XMLWordPrintable

    Details

    • Last commented by user?:
      true

      Description

      As outlined in http://seclists.org/oss-sec/2016/q1/645 , we are potentially vulnerable to remote code execution (the actual bugs trigger heap overflow) as sourcetree for mac bundles version 2.6.4 of git.

      Update to a version of git that addresses CVE-2016-2324 and CVE‑2016‑2315 (git 2.4.11, 2.5.5, 2.6.6 and 2.7.4 all have the fix).

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                dblack David Black
                Participants:
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:
                  Last commented:
                  3 years, 15 weeks ago