Get ready to patch Git servers, clients – nasty-looking bugs surface

Code dive A chap who found two serious security bugs in Git servers and clients has urged people to patch their software.

The flaws are present in Git pre-2.7.0, including the 1.9 and 1.7 branches, meaning the vulnerabilities have been lurking in version control tool for years.

These two programming blunders can be potentially exploited to execute malicious code on remote servers and clients. To do so, an attacker would have to craft a Git repository with a tree of files that have extremely long filenames, and then push the repo to a vulnerable server or let a vulnerable client pull it from the internet.

via Get ready to patch Git servers, clients – nasty-looking bugs surface • The Register.