about summary refs log tree commit diff
path: root/third_party/git/Documentation/RelNotes/2.17.4.txt
diff options
context:
space:
mode:
Diffstat (limited to 'third_party/git/Documentation/RelNotes/2.17.4.txt')
-rw-r--r--third_party/git/Documentation/RelNotes/2.17.4.txt16
1 files changed, 0 insertions, 16 deletions
diff --git a/third_party/git/Documentation/RelNotes/2.17.4.txt b/third_party/git/Documentation/RelNotes/2.17.4.txt
deleted file mode 100644
index 7d794ca01af2..000000000000
--- a/third_party/git/Documentation/RelNotes/2.17.4.txt
+++ /dev/null
@@ -1,16 +0,0 @@
-Git v2.17.4 Release Notes
-=========================
-
-This release is to address the security issue: CVE-2020-5260
-
-Fixes since v2.17.3
--------------------
-
- * With a crafted URL that contains a newline in it, the credential
-   helper machinery can be fooled to give credential information for
-   a wrong host.  The attack has been made impossible by forbidding
-   a newline character in any value passed via the credential
-   protocol.
-
-Credit for finding the vulnerability goes to Felix Wilhelm of Google
-Project Zero.