CVE-2014-9390 affects git systems on case-insensitive filesystems, such as Windows and Mac OS. For more informations of CVE-2014-9390 please have a look at the git mailing list.

There are only two parts of SCM-Manager which are affected by CVE-2014-9390, the new import (introduced with SCM-Manager 1.43) and the fork-plugin. These problems are fixed with the version 1.44 of SCM-Manager. If you are running SCM-Manager on Windows or Mac OS, we highly recommend to update to the latest version of SCM-Manager.

If your git clients run on Windows or Mac OS, you have to update your git clients too.

Download latest version of SCM-Manager.

Leave a Reply

Your email address will not be published. Required fields are marked *