Please support VectorLinux!

Author Topic: subversion security update  (Read 1553 times)

wigums

  • Guest
subversion security update
« on: May 04, 2016, 08:36:44 am »
subversion has been updated to 1.9.4 for vector linux 7.1 and 7.2

This update patches two security issues:
  CVE-2016-2167: svnserve/sasl may authenticate users using the wrong realm.
  CVE-2016-2168: Remotely triggerable DoS vulnerability in mod_authz_svn
    during COPY/MOVE authorization check.
  For more information, see:
    http://subversion.apache.org/security/CVE-2016-2167-advisory.txt
    http://subversion.apache.org/security/CVE-2016-2168-advisory.txt
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2167
    http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-2168