summaryrefslogtreecommitdiff
path: root/Documentation/RelNotes
diff options
context:
space:
mode:
authorJunio C Hamano <gitster@pobox.com>2017-09-22 14:47:41 +0900
committerJunio C Hamano <gitster@pobox.com>2017-09-22 14:47:41 +0900
commit9752ad0bb79f680bca48db7adc45338b298304b0 (patch)
treebd2422eee9e0d10902ccc4cb63aa2756ba4eaf90 /Documentation/RelNotes
parent65c9d4bd7bcb3f087b56b659423c82a034ecacbd (diff)
downloadgit-9752ad0bb79f680bca48db7adc45338b298304b0.tar.gz
Signed-off-by: Junio C Hamano <gitster@pobox.com>
Diffstat (limited to 'Documentation/RelNotes')
-rw-r--r--Documentation/RelNotes/2.12.5.txt17
1 files changed, 17 insertions, 0 deletions
diff --git a/Documentation/RelNotes/2.12.5.txt b/Documentation/RelNotes/2.12.5.txt
new file mode 100644
index 0000000000..8fa73cfce7
--- /dev/null
+++ b/Documentation/RelNotes/2.12.5.txt
@@ -0,0 +1,17 @@
+Git v2.12.5 Release Notes
+=========================
+
+Fixes since v2.12.4
+-------------------
+
+ * "git cvsserver" no longer is invoked by "git daemon" by default,
+ as it is old and largely unmaintained.
+
+ * Various Perl scripts did not use safe_pipe_capture() instead of
+ backticks, leaving them susceptible to end-user input. They have
+ been corrected.
+
+Credits go to joernchen <joernchen@phenoelit.de> for finding the
+unsafe constructs in "git cvsserver", and to Jeff King at GitHub for
+finding and fixing instances of the same issue in other scripts.
+