CVE-2024-51990 Information

Nov 08, 2024 cve

Description

jj or Jujutsu is a Git-compatible VCS written in rust. In affected versions specially crafted Git repositories can cause jj to write files outside the clone. This issue has been addressed in version 0.23.0. Users are advised to upgrade. Users unable to upgrade should avoid cloning repos from unknown sources.

Reference

https://github.com/martinvonz/jj/security/advisories/GHSA-88h5-6w7m-5w56

Share on: