https://bugzilla.novell.com/show_bug.cgi?id=821505
https://bugzilla.novell.com/show_bug.cgi?id=821505#c1
Andreas Stieger changed:
What |Removed |Added
----------------------------------------------------------------------------
Priority|P5 - None |P3 - Medium
Status|NEW |ASSIGNED
CC| |security-team@suse.de
AssignedTo|dmueller@suse.com |Andreas.Stieger@gmx.de
--- Comment #1 from Andreas Stieger 2013-05-31 20:39:46 UTC ---
These releases contain security fixes.
CVE-2013-1968
https://subversion.apache.org/security/CVE-2013-1968-advisory.txt
Subversion FSFS repositories can be corrupted by newline characters in
filenames
CVE-2013-2088
https://subversion.apache.org/security/CVE-2013-2088-advisory.txt
Subversion releases up to 1.6.22 (inclusive), and 1.7.x tags up to 1.7.10
(inclusive, but excepting 1.7.x releases made from those tags), include a
contrib/ script prone to shell injection by authenticated users, which could
result in arbitrary code execution.
CVE-2013-2112
https://subversion.apache.org/security/CVE-2013-2112-advisory.txt
Subversion svnserve servers up to 1.7.9 (inclusive) are vulnerable to a
remotely triggerable DoS vulnerability.
--
Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are on the CC list for the bug.