This update for git fixes the following issues:
Security issue fixed:
- CVE-2020-5260: With a crafted URL that contains a newline in it, the credential
helper machinery can be fooled to give credential information for a wrong host (bsc#1168930).
Non-security issue fixed:
git was updated to 2.26.0 for SHA256 support (bsc#1167890, jsc#SLE-11608):
- the xinetd snippet was removed
- the System V init script for the git-daemon was replaced by a systemd
service file of the same name.
git 2.26.0:
- 'git rebase' now uses a different backend that is based on the
'merge' machinery by default. The 'rebase.backend' configuration
variable reverts to old behaviour when set to 'apply'
- Improved handling of sparse checkouts
- Improvements to many commands and internal features
git 2.25.1:
- 'git commit' now honors advise.statusHints
- various updates, bug fixes and documentation updates
git 2.25.0:
- The branch description ('git branch --edit-description') has been
used to fill the body of the cover letters by the format-patch
command; this has been enhanced so that the subject can also be
filled.
- A few commands learned to take the pathspec from the standard input
or a named file, instead of taking it as the command line
arguments, with the '--pathspec-from-file' option.
- Test updates to prepare for SHA-2 transition continues.
- Redo 'git name-rev' to avoid recursive calls.
- When all files from some subdirectory were renamed to the root
directory, the directory rename heuristics would fail to detect that
as a rename/merge of the subdirectory to the root directory, which has
been corrected.
- HTTP transport had possible allocator/deallocator mismatch, which
has been corrected.
git 2.24.1:
- CVE-2019-1348: The --export-marks option of fast-import is
exposed also via the in-stream command feature export-marks=...
and it allows overwriting arbitrary paths (bsc#1158785)
- CVE-2019-1349: on Windows, when submodules are cloned...