subversion: buffer overflow [LWN.net]

Package(s):

subversion

CVE #(s):

CAN-2004-0397

Created:

May 19, 2004

Updated:

May 21, 2004

Description:

Versions of the subversion source management package up to and including 1.0.2 suffer from a remotely exploitable buffer overflow vulnerability in their date parsing code; see this advisory for details. "Exploiting this vulnerability on not heavily protected servers is trivial even for beginners, therefore it is strongly recommended to update immediately."

Alerts:

Gentoo	200405-14	2004-05-20
OpenPKG	OpenPKG-SA-2004.023	2004-05-19
Fedora	FEDORA-2004-128	2004-05-19
Fedora	FEDORA-2004-127	2004-05-19

(Log in to post comments)