Following the revelation of a pair of vulnerabilities, developers should upgrade their local Git installations. The most serious of the two weaknesses (CVE-2022-24765) has the ability to allow an attacker to run arbitrary instructions on the system.
The CVE-2022-24765 issue affects developers who use Git on Linux or macOS, but to a lesser extent. Patching is the best course of action in all circumstances, however there are a number of mitigations available, as stated in GitHub’s alert. Read More…