User: Password:
Subscribe / Log in / New account

subversion: code execution

Package(s):subversion CVE #(s):CVE-2013-2088
Created:June 14, 2013 Updated:June 19, 2013

From the Novell bug report:

Subversion releases up to 1.6.22 (inclusive), and 1.7.x tags up to 1.7.10 (inclusive, but excepting 1.7.x releases made from those tags), include a contrib/ script prone to shell injection by authenticated users, which could result in arbitrary code execution.

Gentoo 201309-11 subversion 2013-09-23
Fedora FEDORA-2013-13672 subversion 2013-08-15
openSUSE openSUSE-SU-2013:1139-1 subversion 2013-07-04
openSUSE openSUSE-SU-2013:1006-1 subversion 2013-06-14

(Log in to post comments)

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds