Name of the Vulnerable Software and Affected Versions meta-git versions all

Description The issue is related to Command Injection, where the package fails to sanitize input and passes it directly to an exec call. This may allow attackers to execute arbitrary code in the system. The clone command is specifically vulnerable through the branch name.

Recommendations Consider using an alternative package until a fix is made available.