|Package(s):||subversion||CVE #(s):||CVE-2013-1968 CVE-2013-2112|
|Created:||June 10, 2013||Updated:||June 28, 2013|
|Description:||From the Debian advisory:
CVE-2013-1968: Subversion repositories with the FSFS repository data store format can be corrupted by newline characters in filenames. A remote attacker with a malicious client could use this flaw to disrupt the service for other users using that repository.
CVE-2013-2112: Subversion's svnserve server process may exit when an incoming TCP connection is closed early in the connection process. A remote attacker can cause svnserve to exit and thus deny service to users of the server.
Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds