Gentoo Linux Security Advisory 202311-1 - A vulnerability has been discovered in GitPython where crafted input to Repo.clone_from can lead to code execution. Versions greater than or equal to 3.1.30 are affected.
05ebaac3493a23639af90b15a462c88bcaa4667fbad642e7a1d42bb71ec5611c
Ubuntu Security Notice 5968-1 - It was discovered that GitPython did not properly sanitize user inputs for remote URLs in the clone command. By injecting a maliciously crafted remote URL, an attacker could possibly use this issue to execute arbitrary commands on the host.
8f3a54575d7096992b3d3c81d82c2304712210afd399ea0e5c2c33f7df845437