Create
cancel
Showing results for 
Search instead for 
Did you mean: 
Sign up Log in

Git Buffer Overflow - CVE-2022-41903, CVE-2022-23521

Ashley Roberts March 5, 2023

We are using Bitbucket v8.1.0 and git version 2.35.1.windows.2, does anyone know where we can get GIT version v2.36.4? We have looked everywhere and can't find it.

1 answer

1 accepted

0 votes
Answer accepted
Harald Seyr
Rising Star
Rising Star
Rising Stars are recognized for providing high-quality answers to other users. Rising Stars receive a certificate of achievement and are on the path to becoming Community Leaders.
March 5, 2023

Hi @Ashley Roberts 

please check if Bitbucket Server Download Archives | Bitbucket contains a fix for your version. 

From Multiple Products Security Advisory - Git Buffer Overflow - CVE-2022-41903, CVE-2022-23521 | Atlassian Support | Atlassian Documentation, I guess there are no plans to provide a backport of the fixes to your old version. As I understand, this is not task of atlassian, but is in domain of the maintainers of git windows.

I strongly recommend to update to a current version since only those will be maintained and get security fixes.

Regards,

Harald

Suggest an answer

Log in or Sign up to answer
DEPLOYMENT TYPE
SERVER
VERSION
8.1.0
TAGS
AUG Leaders

Atlassian Community Events