[ALSA-2024:2699] Important: git-lfs security update
Type:
security
Severity:
important
Release date:
2024-05-09
Description:
Git Large File Storage (LFS) replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server. Security Fix(es): * golang: net/http, x/net/http2: unlimited number of CONTINUATION frames causes DoS (CVE-2023-45288,VU#421644.3) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.
References:
Updated packages listed below:
Architecture Package Checksum
aarch64 git-lfs-3.2.0-3.el8_9.aarch64.rpm f1580ef1ad186a00522af7d044e50dc3d9e142dd80bf0496228e786a348197c0
ppc64le git-lfs-3.2.0-3.el8_9.ppc64le.rpm 004b0f26b5a0a53280d7e3029022d84b27cdb541b66434c02fa6869634669516
s390x git-lfs-3.2.0-3.el8_9.s390x.rpm b184ab29026a5eccc8ee9880e8dcaf08e0f708d35691c8a8d8463cc084dcc418
x86_64 git-lfs-3.2.0-3.el8_9.x86_64.rpm de16d293719c2bab012172599d7f1efc33f1eb57b1501bf3e66b1f01bc3f8c46
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.