I am new to sourcetree, I was checking it before installing it and I read about the command injection issue. I've also checked the question in this link:
I would like to know if this: SourceTreeSetup-188.8.131.52
is the latest and has the issue solved?
Thanks for your reply, I am really glad to hear.
I have one last question though: according to: https://www.cvedetails.com/vulnerability-list.php?vendor_id=3578
the version effected was 2.5c and prior, the one in SourceTree offical site is 184.108.40.206. This is confusing since 2.0 is prior to 2.5?
Thanks in advance,
Hi! For official information regarding the vulnerability, my recommendation is that you check our official source. You can find it at SourceTree Security Advisory.
Note that the site you linked is not even differentiating between Mac and Windows versions. Whilst this is not mentioned in that website, they're probably referring to the Mac version of SourceTree (which is currently 2.5.2).
Hope this clears your concerns :)
This community is celebrating its one-year anniversary and Atlassian co-founder Mike Cannon-Brookes has all the feels.Read more
Supported Platforms macOS Sourcetree has a lot to offer and, like many developer tools, finding and using it all can be a challenge, especially for a new user. Everyone might not love ...
Connect with like-minded Atlassian users at free events near you!Find a group
Connect with like-minded Atlassian users at free events near you!
Unfortunately there are no AUG chapters near you at the moment.Start an AUG
You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs