Merge branch 'tb/config-copy-or-rename-in-file-injection' - git - Mirror of https://git.kernel.org/pub/scm/git/git.git/

diff options

author	Taylor Blau <me@ttaylorr.com>	2023-04-14 11:46:59 -0400
committer	Johannes Schindelin <johannes.schindelin@gmx.de>	2023-04-17 21:15:42 +0200
commit	528290f8c61222433a8cf02fb7cfffa8438432b4 (patch)
tree	e3512cac669507c04ca5378f215230b8e7b26a78 /compat/regex/regex_internal.c
parent	Merge branch 'avoid-using-uninitialized-gettext' (diff)
parent	config.c: disallow overly-long lines in `copy_or_rename_section_in_file()` (diff)
download	git-528290f8c61222433a8cf02fb7cfffa8438432b4.tar.gz git-528290f8c61222433a8cf02fb7cfffa8438432b4.zip

Merge branch 'tb/config-copy-or-rename-in-file-injection'

Avoids issues with renaming or deleting sections with long lines, where configuration values may be interpreted as sections, leading to configuration injection. Addresses CVE-2023-29007. * tb/config-copy-or-rename-in-file-injection: config.c: disallow overly-long lines in `copy_or_rename_section_in_file()` config.c: avoid integer truncation in `copy_or_rename_section_in_file()` config: avoid fixed-sized buffer when renaming/deleting a section t1300: demonstrate failure when renaming sections with long lines Signed-off-by: Taylor Blau <me@ttaylorr.com>

Diffstat (limited to 'compat/regex/regex_internal.c')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: