This post has been republished via RSS; it originally appeared at: MSRC Security Update Guide.
[CVE-2025-27614](https://www.cve.org/CVERecord?id=CVE-2025-27614) is regarding a vulnerability in Gitk where a Git repository can be crafted in such a way that a user who has cloned the repository can be tricked into running any script supplied by the attacker by invoking `gitk filename`, where `filename` has a particular structure. MITRE created this CVE on their behalf. The documented Visual Studio updates incorporate updates in GitK which address this vulnerability. Please see [CVE-2025-27614](https://www.cve.org/CVERecord?id=CVE-2025-27614) for more information.
Opinions, tips, and news orbiting Microsoft