**Name of the Vulnerable Software and Affected Versions:**

Git versions 2.43.7 through 2.50.1

**Description:**

Git is a distributed revision control system susceptible to a flaw in handling carriage return characters (`r`). Specifically, when writing configuration entries, trailing carriage returns are not properly quoted, leading to their loss when the configuration is read. When initializing a submodule, if the submodule path contains a trailing carriage return, the altered path is read, potentially causing the submodule to be checked out to an incorrect location. If a symlink exists pointing to the submodule hooks directory, and that directory contains an executable post-checkout hook, the script may be unintentionally executed. This can lead to remote code execution (RCE) when cloning malicious repositories with the `--recursive` flag on Unix-like systems.

**Recommendations:**

Git versions prior to 2.50.1 should be updated to version 2.50.1 or later to address this issue.