Projects / monotone / Releases / Minor security fixes

RSS All releases tagged Minor security fixes

  •  13 Mar 2006 03:56

Release Notes: This release only fixes a security problem. Previous versions of monotone contained a bug on case-insensitive filesystems whereby it was possible for a malicious committer to add a versioned file named, for instance, "mt/monotonerc". When checked out on Windows or Mac OS X, such a file would end up inside monotone's metadata directory ("MT"), and allow arbitrary code to be executed. Exposure is similar to that of habitually running "monotone update; make" without reviewing patches.

Screenshot

Project Spotlight

Dianara

A client for the pump.io social network.

Screenshot

Project Spotlight

asciidia

A program to create bitmaps from simple ASCII diagrams.