Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Distributed Git-LFS is out of date #200

Open
Corobi opened this issue Jan 18, 2025 · 1 comment
Open

Distributed Git-LFS is out of date #200

Corobi opened this issue Jan 18, 2025 · 1 comment

Comments

@Corobi
Copy link

Corobi commented Jan 18, 2025

The version in this repo is currently 3.3.0

Git LFS is now at 3.6.1 which contains important security fixes.
See: GHSA-q6r2-x2cc-vrp7
@mastercoms
Copy link
Member

mastercoms commented Jan 19, 2025
edited
Loading

https://github.com/ProjectBorealis/git-lfs

This fork needs updating. Also note that the executable is only used for lock/unlock. The system installation is used for fetches. However it does seem that this particular vulnerability is a potential issue for the plugin.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@mastercoms @Corobi