ALSA-2026:7259

[ALSA-2026:7259] Important: git-lfs security update

Type:

security

Severity:

important

Release date:

2026-04-15

Description:

Git Large File Storage (LFS) replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server.  

Security Fix(es):  

  * net/url: Incorrect parsing of IPv6 host literals in net/url (CVE-2026-25679)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

References:

Updated packages listed below:

Architecture	Package	Checksum
aarch64	git-lfs-3.6.1-8.el9_7.aarch64.rpm	90180d9473c0b855252bb21304511147a170cdab87129ff73a235a549ad04a31
ppc64le	git-lfs-3.6.1-8.el9_7.ppc64le.rpm	22fd7c6f02db390a7ba072bfe2c67f7e77497a08af659aee0da547f65c9650f3
s390x	git-lfs-3.6.1-8.el9_7.s390x.rpm	cacb39fc97f3e923ccab751d7b28cc5e3b037c99c3b6069fadb7694b8e15c118
x86_64	git-lfs-3.6.1-8.el9_7.x86_64.rpm	2cd3deac3a02704b40950dfa1a601cc2fe9682f400c6de0b8b2f3633a47fd89e

Notes:

This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.