2. 程式人生 > >Is it necessary to run the latest Git release?

Is it necessary to run the latest Git release?

阿新 發佈:2018-12-28
Make sure your distro provides security updates for git. For instance, CVE-2018-17456 (another RCE via submodules bug) was recently disclosed and patched in Debian Jessie (oldstable), even though jessie has git 2.1.x which may not be getting updates from git core developers.

Otherwise, old and new git interact really quite well. You'll miss out on new features, naturally. Because of reasons, I still make daily use of 1.8.2.2 and it's fine! (but only when interacting with trusted peers within my organization, that thing hasn't seen a security patch in a decade or so)

As for release notes, every release gets its own file here: https://github.com/git/git/tree/master/Documentation/RelNote... -- you'll get the highlights of major features by reading the x.y.0 release notes.

Git is not a hard build from source as such things go, but it leaves you to track security fixes on your own.

相關推薦

Is it necessary to run the latest Git release?

Make sure your distro provides security updates for git. For instance, CVE-2018-17456 (another RCE via submodules bug) was recently disclosed and patched

Ask HN: What is it like to run a VPN as a business?

Hello,I'm going to set up my own VPN on some cloud hosting provider, and I'm toying with the idea of turning it into a small business.Is there anything I n

Is it immoral to only spend 50% of the time at work productively?

I feel that people often make a big deal of somebody using 5 minutes of Facebook a day during the boss' time. I have the feeling that the average person on

Ask HN: Is it better to start a business in society or on the frontier?

I mean figuratively, of course.By "society" I mean how once something is invented legisliation gets put up all around it making it more difficult for upsta

Ask HN: Why is it harder to learn new things the older you get?

The older I get the harder it is for me to focus and to learn new things. It’s almost painful. I still learn a lot but it is not as seemless as it used t

Pytorch-Is it possible to forward a tensor through a model (only Variable works)?

array arrays 圖片 operation hat near aci efi HR In Pytorch 0.4, I can forward a tensor through a model which is the same as Variable. imp

You need tcl 8.5 or newer in order to run the Redis test.

You need tcl 8.5 or newer in order to run the Redis test. 安裝Redis,執行make test的時候出錯: You need tcl 8.5 or newer in order to run the Redis test make: *** [te

How to Install The Latest Eclipse in Ubuntu 16.04, 15.10?

How to Install The Latest Eclipse in Ubuntu 16.04, 15.10? 1. Install Java Don’t have Java installed? Search for and install OpenJDK Java 7 or

解決VM提示:VMware Workstation cannot connect to the virtual machine. Make sure you have rights to run the program, access all directories the program uses

問題: 在開啟虛擬機器的時候報: VMware Workstation cannot connect to the virtual machine. Make sure you have rights to run the program, access all directories the progr

開啟虛擬機器所報的錯誤:VMware Workstation cannot connect to the virtual machine. Make sure you have rights to run the program, access all directories the program

當我們開啟虛擬機器時出現錯誤: VMware Workstation cannot connect to the virtual machine. Make sure you have rights to run the program, access all directories the program

https://stackoverflow.com/questions/51751426/failed-to-run-the-da-platform-trial-vm

https://stackoverflow.com/questions/51751426/failed-to-run-the-da-platform-trial-vm   Try running kubectl get deployment daplatform-appmanager&

解決“Default Boot2Docker ISO is out-of-date, downloading the latest release...”

load tor doc crt iss info The efault ref 看GitHub大概是作者忘記給ISO加上頭了,根據裏面一個解決方案,做成博客,首先下載HexEditor,然後打開ISO,crtl+g去到offset為8032行的位置,,粘貼-v18.09.

Ask HN: Is it possible to beat Google?

I’m working on efficient neural architecture search, and I think I can provide an offering that’s more effective than Cloud automl. I want to open source t

Do you have what it takes to win the Artificial Intelligence Innovation Showcase?

Artificial Intelligence (AI) has been the Hot Topic for a while now. Everyone's writing about it breathlessly: it's the future of business, kicking nerdy d

Is AI Ready to Rule the Runway?

There are quite a few companies with Artificial Intelligence (AI) projects on the go -- some look promising, others gimmicky. I am going to check out some

Why is it OK to say you can’t do maths?

Mathematics staring us in the face in everyday life with Fibonacci numbers.Why is it okay to say you can’t do maths?Why is it not okay to say ‘I can’t read

Is AI Going to Transform the Design Industry?

AI has emerged as the mainstream trend in various industries. AI might excite us and terrify us at the same time. AI is widely unknown and experts are rese

Ask HN: Is it hard to get hired on F1 OPT?

not hard at all. usually you apply jobs and doing interviews on F1. Once landed a job, discuss a starting date with the employer and apply for opt, might t

Is it possible to smell music, or taste words?

Is it possible to smell music, or taste words?When R. listens to music, his mind generates colours that do not exist in the “real” world as perceived by “n

Ask HN: Is it reasonable to assume all skype calls are recorded by Microsoft?

There's been an uptick in privacy policy articles lately targeted at Google. At work we always joke about how Microsoft and the Gov. has access to all Skyp