Git exploit CVE-2024-32002 in Xcode

Developer Tools & Services Xcode
jthorel OP
Created Jun ’24
Replies 1
Boosts 0
Views 1.1k
Participants 3

The Xcode CLI bundled git version is 2.39.3 which is affected by a critical security flaw:

Recursive clones on case-insensitive filesystems that support symlinks are susceptible to Remote Code Execution

I can install, update and use git in the terminal from another source/path, but the Xcode app is still using the built-in Xcode CLI path which is still affected by this security flaw.

Will you update the git version in Xcode anytime soon?

Answered by DTS Engineer in 790043022

The best thing to do here is to open a bug report with this information, and then you can stay informed of its status in Feedback Assistant. Once you open the bug report, please post the FB number here for my reference.

If you have any questions about filing a bug report, take a look at Bug Reporting: How and Why?

Replies  1
Boosts  0
Views  1.1k
Participants  3
DTS Engineer OP
Apple
Jun ’24
Accepted Answer
Recommended

The best thing to do here is to open a bug report with this information, and then you can stay informed of its status in Feedback Assistant. Once you open the bug report, please post the FB number here for my reference.

If you have any questions about filing a bug report, take a look at Bug Reporting: How and Why?

0
Git exploit CVE-2024-32002 in Xcode
First post date Last post date
 
 
Q