0001-submodule-helper-use-to-signal-end-of-clone-options.patch
0002-submodule-config-ban-submodule-urls-that-start-with-.patch
0003-submodule-config-ban-submodule-paths-that-start-with.patch
0004-fsck-detect-submodule-urls-starting-with-dash.patch
0005-fsck-detect-submodule-paths-starting-with-dash.patch
CVE-2018-19486.patch
CVE-2019-13xx/0001-t9300-drop-some-useless-uses-of-cat.patch
CVE-2019-13xx/0002-t9300-create-marks-files-for-double-import-marks-tes.patch
CVE-2019-13xx/0003-fast-import-tighten-parsing-of-boolean-command-line-.patch
CVE-2019-13xx/0004-fast-import-stop-creating-leading-directories-for-im.patch
CVE-2019-13xx/0005-fast-import-delay-creating-leading-directories-for-e.patch
CVE-2019-13xx/0006-fast-import-disallow-feature-export-marks-by-default.patch
CVE-2019-13xx/0007-fast-import-disallow-feature-import-marks-by-default.patch
CVE-2019-13xx/0008-clone-recurse-submodules-prevent-name-squatting-on-W.patch
CVE-2019-13xx/0009-mingw-disallow-backslash-characters-in-tree-objects-.patch
CVE-2019-13xx/0010-path.c-document-the-purpose-of-is_ntfs_dotgit.patch
CVE-2019-13xx/0011-submodule-reject-submodule.update-command-in-.gitmod.patch
CVE-2019-13xx/0012-fsck-reject-submodule.update-command-in-.gitmodules.patch
CVE-2019-13xx/0013-test-path-utils-offer-to-run-a-protectNTFS-protectHF.patch
CVE-2019-13xx/0014-is_ntfs_dotgit-only-verify-the-leading-segment.patch
CVE-2019-13xx/0015-mingw-fix-quoting-of-arguments.patch
CVE-2019-13xx/0016-path-safeguard-.git-against-NTFS-Alternate-Streams-A.patch
CVE-2019-13xx/0017-is_ntfs_dotgit-speed-it-up.patch
CVE-2019-13xx/0018-tests-add-a-helper-to-stress-test-argument-quoting.patch
CVE-2019-13xx/0019-path-also-guard-.gitmodules-against-NTFS-Alternate-D.patch
CVE-2019-13xx/0020-protect_ntfs-turn-on-NTFS-protection-by-default.patch
CVE-2019-13xx/0021-Disallow-dubiously-nested-submodule-git-directories.patch
CVE-2019-13xx/0022-quote-stress-test-accept-arguments-to-test-via-the-c.patch
CVE-2019-13xx/0023-t6130-t9350-prepare-for-stringent-Win32-path-validat.patch
CVE-2019-13xx/0024-quote-stress-test-allow-skipping-some-trials.patch
CVE-2019-13xx/0025-unpack-trees-let-merged_entry-pass-through-do_add_en.patch
CVE-2019-13xx/0026-quote-stress-test-offer-to-test-quoting-arguments-fo.patch
CVE-2019-13xx/0027-mingw-refuse-to-access-paths-with-trailing-spaces-or.patch
CVE-2019-13xx/0028-mingw-refuse-to-access-paths-with-illegal-characters.patch
CVE-2019-13xx/0029-mingw-handle-subst-ed-DOS-drives.patch
CVE-2020-5260-1.patch
CVE-2020-5260-2.patch
CVE-2020-5260-3.patch
CVE-2020-5260-4.patch
CVE-2020-11008-1.patch
CVE-2020-11008-2.patch
CVE-2020-11008-3.patch
CVE-2020-11008-4.patch
CVE-2020-11008-5.patch
CVE-2020-11008-6.patch
CVE-2020-11008-7.patch
CVE-2020-11008-8.patch
CVE-2020-11008-9.patch
CVE-2021-21300.patch
CVE-2021-40330.patch
CVE-2022-24765-1.patch
CVE-2022-24765-2-pre.patch
CVE-2022-24765-2.patch
CVE-2022-24765-3.patch
CVE-2022-24765-4.patch
CVE-2022-24765-5.patch
CVE-2022-24765-6.patch
CVE-2022-29187-1.patch
CVE-2022-29187-2.patch
CVE-2022-29187-3.patch
CVE-2022-29187-4.patch
CVE-2022-29187-5.patch
CVE-2022-29187-6.patch
CVE-2022-39253-1.patch
CVE-2022-39253-2.patch
CVE-2022-39253-3.patch
CVE-2022-39253-5.patch
CVE-2022-39253-6.patch
CVE-2022-39253-7.patch
CVE-2022-39253-8.patch
CVE-2022-39253-9.patch
CVE-2022-39253-10.patch
CVE-2022-39253-11.patch
CVE-2022-39253-12.patch
CVE-2022-39260-1.patch
CVE-2022-39260-2.patch
CVE-2022-39260-3.patch
CVE-2022-39260-4.patch
CVE_2022_23521_and_41903/0003-attr-fix-overflow-when-upserting-attribute-with-over.patch
CVE_2022_23521_and_41903/0004-attr-fix-out-of-bounds-read-with-huge-attribute-name.patch
CVE_2022_23521_and_41903/0005-attr-fix-integer-overflow-when-parsing-huge-attribut.patch
CVE_2022_23521_and_41903/0006-attr-fix-out-of-bounds-write-when-parsing-huge-numbe.patch
CVE_2022_23521_and_41903/0007-attr-fix-out-of-bounds-read-with-unreasonable-amount.patch
CVE_2022_23521_and_41903/0008-attr-fix-integer-overflow-with-more-than-INT_MAX-mac.patch
CVE_2022_23521_and_41903/0009-attr-harden-allocation-against-integer-overflows.patch
CVE_2022_23521_and_41903/0010-attr-fix-silently-splitting-up-lines-longer-than-204.patch
CVE_2022_23521_and_41903/0011-attr-ignore-attribute-lines-exceeding-2048-bytes.patch
CVE_2022_23521_and_41903/0012-attr-ignore-overly-large-gitattributes-files.patch
CVE_2022_23521_and_41903/0013-test-lib-add-prerequisite-for-64-bit-platforms.patch
CVE_2022_23521_and_41903/0014-pretty-fix-out-of-bounds-write-caused-by-integer-ove.patch
CVE_2022_23521_and_41903/0015-pretty-fix-out-of-bounds-read-when-left-flushing-wit.patch
CVE_2022_23521_and_41903/0016-pretty-fix-out-of-bounds-read-when-parsing-invalid-p.patch
CVE_2022_23521_and_41903/0017-pretty-fix-adding-linefeed-when-placeholder-is-not-e.patch
CVE_2022_23521_and_41903/0018-pretty-fix-integer-overflow-in-wrapping-format.patch
CVE_2022_23521_and_41903/0019-utf8-fix-truncated-string-lengths-in-utf8_strnwidth.patch
CVE_2022_23521_and_41903/0020-utf8-fix-returning-negative-string-width.patch
CVE_2022_23521_and_41903/0021-utf8-fix-overflow-when-returning-string-width.patch
CVE_2022_23521_and_41903/0022-utf8-fix-checking-for-glyph-width-in-strbuf_utf8_rep.patch
CVE_2022_23521_and_41903/0023-utf8-refactor-strbuf_utf8_replace-to-not-rely-on-pre.patch
CVE_2022_23521_and_41903/0024-pretty-restrict-input-lengths-for-padding-and-wrappi.patch
CVE_2022_23521_and_41903/adding_missing_function.patch
CVE_2023-22490_and_23946/0002-attr-adjust-a-mismatched-data-type.patch
CVE_2023-22490_and_23946/0003-t5619-demonstrate-clone_local-with-ambiguous-transpo.patch
CVE_2023-22490_and_23946/0004-clone-delay-picking-a-transport-until-after-get_repo.patch
CVE_2023-22490_and_23946/0006-apply-fix-writing-behind-newly-created-symbolic-link.patch
CVE_2023-22490_and_23946/0001-dir-iterator-refactor-state-machine-model.patch
CVE_2023-22490_and_23946/0001-dir-iterator-add-flags-parameter-to-dir_iterator_beg.patch
CVE_2023-22490_and_23946/some_pre_post_patch.patch
CVE_2023-22490_and_23946/0005-dir-iterator-prevent-top-level-symlinks-without-FOLL.patch
CVE-2023_25652_25815_29007/0022-apply-reject-overwrite-existing-.rej-symlink-if-it-e.patch
CVE-2023_25652_25815_29007/0024-gettext-avoid-using-gettext-if-the-locale-dir-is-not.patch
CVE-2023_25652_25815_29007/0025-config-avoid-fixed-sized-buffer-when-renaming-deleti.patch
CVE-2023_25652_25815_29007/0026-config.c-avoid-integer-truncation-in-copy_or_rename_.patch
CVE-2023_25652_25815_29007/0027-config.c-disallow-overly-long-lines-in-copy_or_renam.patch
