Merge branch 'jk/fast-import-unsafe'
authorJohannes Schindelin <johannes.schindelin@gmx.de>
Thu, 3 Oct 2019 18:44:34 +0000 (20:44 +0200)
committerJohannes Schindelin <johannes.schindelin@gmx.de>
Wed, 4 Dec 2019 12:23:22 +0000 (13:23 +0100)
commita7b1ad3b05fd1dc03c3de12ea4f2d8118ad24e2c
tree9603df337bf43eec5d4998d44f5c3293661950d2
parentd0832b2847aa9669c09397c5639d7fe56abaf9fc
parenta52ed76142f6e8d993bb4c50938a408966eb2b7c
Merge branch 'jk/fast-import-unsafe'

The `--export-marks` option of `git fast-import` is exposed also via the
in-stream command `feature export-marks=...` and it allows overwriting
arbitrary paths.

This topic branch prevents the in-stream version, to prevent arbitrary
file accesses by `git fast-import` streams coming from untrusted sources
(e.g. in remote helpers that are based on `git fast-import`).

This fixes CVE-2019-1348.

Signed-off-by: Johannes Schindelin <johannes.schindelin@gmx.de>