Skip to content

Avoid detected dubious ownership in repository at '/srv/mediawiki-staging' error

Ahmon Dancy requested to merge review/dancy/gitconfig-safe-directory into main

Work around a security backported to git deb 1:2.20.1-2+deb10u5. This is part of the relevant portion of the changelog (dated Tue, 13 Dec 2022 15:14:23 +0100)

  • CVE-2022-24765: Git not checking the ownership of directories in a local multi-user system when running commands specified in the local repository configuration. This allows the owner of the repository to cause arbitrary commands to be executed by other users who access the repository.
  • The above introduces new 'safe.directory' checks which may cause regressions: allow opt-out of such checks with 'safe.directory=*'

Change-Id: I39aceceedb3ae4f5d7e05aa9aae132107d706665

Merge request reports