1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Apple patches vulnerable OS X Git version that put developers at risk

Discussion in 'CSO' started by RSS, May 5, 2016.

  1. RSS

    RSS New Member Member

    Apple has released a new version of its Xcode development tool in order to patch two critical vulnerabilities in the Git source code management client.

    The Git vulnerabilities, CVE‑2016‑2324 and CVE‑2016‑2315, have been known since mid-March and can be exploited when cloning a repository with a specially crafted file structure. This allows attackers to execute malicious code on systems where such cloning operations were initiated.

    ALSO: How to respond to ransomware threats

    Xcode is an integrated development environment (IDE) used by a large number of developers to write applications for OS X and iOS. It includes a package called the OS X Command Line Tools for Xcode that contains the open-source Git client.

    To read this article in full or to leave a comment, please click here

    Continue reading...
     

Share This Page