Come for the products,
stay for the community

The Atlassian Community can help you and your team get more value out of Atlassian products and practices.

Atlassian Community about banner
4,297,449
Community Members
 
Community Events
165
Community Groups

Is SourceTree affeceted by CVE-2022-24826 "Git LFS vulnerability" ?

Atlassian,

Is SourceTree affeceted by CVE-2022-24826 "Git LFS vulnerability" ?

4 answers

2 accepted

0 votes
Answer accepted

I questioned about this to Atlassian and got as below;

It is resolved by latest Git 2.36.0 and Git LFS v3.1.4 and in Sourcetree we have also updated and will be released with SourceTree 3.4.9.

0 votes
Answer accepted

And Bamboo for WIndows too?

0 votes
Vipin Yadav Atlassian Team Apr 28, 2022

It is resolved by latest Git 2.36.0 and Git LFS v3.1.4 and in Sourcetree we have also updated and will be released with SourceTree 3.4.9. 

Screenshot 2022-04-28 182004.png

Vipin,

Thank you.

Will Atlassian also release Bamboo for WIndows for CVE-2022-24826 like BAM-21284 and BAM-21267?

0 votes

Both applications use the git that is installed on the operating system that they are being run on.  You'll need to look at the version of git affected, not the applications.

Suggest an answer

Log in or Sign up to answer
TAGS
Community showcase
Published in Sourcetree

Bug Fix: Sourcetree for Windows authentication error when updating to app password

Hello Sourcetree users!!! With the recent removal of Bitbucket Cloud account passwords for app passwords (please see our Bitbucket Cloud community post for details on why we made this change for se...

61,668 views 127 27
Read article

Community Events

Connect with like-minded Atlassian users at free events near you!

Find an event

Connect with like-minded Atlassian users at free events near you!

Unfortunately there are no Community Events near you at the moment.

Host an event

You're one step closer to meeting fellow Atlassian users at your local event. Learn more about Community Events

Events near you