Autogenerated HTML docs for v2.48.1-2-g75716

gitster · gitster · commit fc51d8c5be3c · 2025-01-14T09:49:00.000-08:00
diff --git a/RelNotes/2.40.4.txt b/RelNotes/2.40.4.txt
@@ -0,0 +1,5 @@
+Git v2.40.4 Release Notes
+=========================
+
+This release lets Git refuse to accept URLs that contain control
+sequences.  This addresses CVE-2024-50349 and CVE-2024-52006.
diff --git a/RelNotes/2.41.3.txt b/RelNotes/2.41.3.txt
@@ -0,0 +1,6 @@
+Git v2.41.3 Release Notes
+=========================
+
+This release merges up the fix that appears in v2.40.4 to address
+the security issues CVE-2024-50349 and CVE-2024-52006; see the
+release notes for that version for details.
diff --git a/RelNotes/2.42.4.txt b/RelNotes/2.42.4.txt
@@ -0,0 +1,6 @@
+Git v2.42.4 Release Notes
+=========================
+
+This release merges up the fix that appears in v2.40.4 and v2.41.3
+to address the security issues CVE-2024-50349 and CVE-2024-52006;
+see the release notes for these versions for details.
diff --git a/RelNotes/2.43.6.txt b/RelNotes/2.43.6.txt
@@ -0,0 +1,7 @@
+Git v2.43.6 Release Notes
+=========================
+
+This release merges up the fix that appears in v2.40.4, v2.41.3
+and v2.42.4 to address the security issues CVE-2024-50349 and
+CVE-2024-52006; see the release notes for these versions for
+details.
diff --git a/RelNotes/2.44.3.txt b/RelNotes/2.44.3.txt
@@ -0,0 +1,7 @@
+Git v2.44.3 Release Notes
+=========================
+
+This release merges up the fix that appears in v2.40.4, v2.41.3,
+v2.42.4 and v2.43.6 to address the security issues CVE-2024-50349
+and CVE-2024-52006; see the release notes for these versions
+for details.
diff --git a/RelNotes/2.45.3.txt b/RelNotes/2.45.3.txt
@@ -1,7 +1,12 @@
 Git v2.45.3 Release Notes
 =========================
 
-This primarily is to backport various small fixes accumulated on the
+This release merges up the fix that appears in v2.40.4, v2.41.3,
+v2.42.4, v2.43.6 and v2.44.3 to address the security issues
+CVE-2024-50349 and CVE-2024-52006; see the release notes for
+these versions for details.
+
+This version also backports various small fixes accumulated on the
 'master' front during the development towards Git 2.46, the next
 feature release.
 
diff --git a/RelNotes/2.46.3.txt b/RelNotes/2.46.3.txt
@@ -0,0 +1,6 @@
+Git v2.46.3 Release Notes
+=========================
+
+This release merges up the fix that appears in v2.40.4, v2.41.3, v2.42.4,
+v2.43.6, v2.44.3 and v2.45.3 to address the security issues CVE-2024-50349 and
+CVE-2024-52006; see the release notes for these versions for details.
diff --git a/RelNotes/2.47.2.txt b/RelNotes/2.47.2.txt
@@ -0,0 +1,7 @@
+Git v2.47.2 Release Notes
+=========================
+
+This release merges up the fix that appears in v2.40.4, v2.41.3,
+v2.42.4, v2.43.6, v2.44.3, v2.45.3 and v2.46.3 to address the
+security issues CVE-2024-50349 and CVE-2024-52006; see the release
+notes for these versions for details.
diff --git a/RelNotes/2.48.1.txt b/RelNotes/2.48.1.txt
@@ -0,0 +1,7 @@
+Git v2.48.1 Release Notes
+=========================
+
+This release merges up the fix that appears in v2.40.4, v2.41.3,
+v2.42.4, v2.43.6, v2.44.3, v2.45.3, v2.46.3, and v2.47.2 to address
+the security issues CVE-2024-50349 and CVE-2024-52006; see the release
+notes for these versions for details.
diff --git a/RelNotes/2.49.0.txt b/RelNotes/2.49.0.txt
@@ -0,0 +1,15 @@
+Git v2.49 Release Notes
+=======================
+
+UI, Workflows & Features
+------------------------
+
+
+Performance, Internal Implementation, Development Support etc.
+--------------------------------------------------------------
+
+
+Fixes since v2.48
+-----------------
+
+ * Other code cleanup, docfix, build fix, etc.
diff --git a/git-config.html b/git-config.html
@@ -3893,6 +3893,19 @@ <h3 id="_variables">Variables</h3>
 or https URL to be important. Defaults to false. See
 <a href="gitcredentials.html">gitcredentials(7)</a> for more information.</p>
 </dd>
+<dt class="hdlist1">credential.sanitizePrompt</dt>
+<dd>
+<p>By default, user names and hosts that are shown as part of the
+password prompt are not allowed to contain control characters (they
+will be URL-encoded by default). Configure this setting to <code>false</code> to
+override that behavior.</p>
+</dd>
+<dt class="hdlist1">credential.protectProtocol</dt>
+<dd>
+<p>By default, Carriage Return characters are not allowed in the protocol
+that is used when Git talks to a credential helper. This setting allows
+users to override this default.</p>
+</dd>
 <dt class="hdlist1">credential.username</dt>
 <dd>
 <p>If no username is set for a network authentication, use this username
