Skip to content

v2.40.1.vfs.0.0 (Security Release)
Compare
Choose a tag to compare
@github-actions github-actions released this 25 Apr 19:05
· 213 commits to vfs-2.40.0 since this release
v2.40.1.vfs.0.0
27f6460

Major Updates

This release includes the v2.40.1.windows.1 tag of Git for Windows to include the fixes for these security vulnerabilities: CVE-2023-25652, CVE-2023-29007, CVE-2023-25815, CVE-2023-29011, and CVE-2023-29012. See the GitHub blog for more details.

This version also includes an update to how prefetch pack-files are handled over the GVFS Protocol. The client is now more robust against an erroneous response from a cache server. This prevents invalid pack-files and pack-indexes from being stored in the shared object cache.

Pull Requests since v2.40.0.vfs.0.0

  • #571: Harden gvfs-helper to validate the packfiles in a multipart prefetch response
  • #568: Upgrade deprecated GitHub Actions in build-git-installers
Assets 7
Loading