CVE-2022-24826
Git LFS on Windows is affected by CVE-2022-24826 where, when a malicious repository contains a file with a base name "." and a file extension from PATHEXT and a conflicting executable name (e.g., git.exe, uname, cygpath.exe), Git LFS may cause an attacker-controlled binary in the current director...