Vulnerabilities

CVE-2022-24975

by Fred · 11/02/2022

The –mirror documentation for Git through 2.35.1 does not mention the availability of deleted content, aka the "GitBleed" issue. This could present a security risk if information-disclosure auditing processes rely on a clone operation without the –mirror option.

Date published : 2022-02-11

https://github.com/git/git/blob/2dc94da3744bfbbf145eca587a0f5ff480cc5867/Documentation/git-clone.txt#L185-L191

GitBleed – Finding Secrets in Mirrored Git Repositories – CVE-2022-24975

Similar

Tags: Cybersecurity Alert