[arch-dev-public] [signoff] subversion-1.6.17-1
Gaetan Bisson
bisson at archlinux.org
Thu Jun 2 11:14:44 EDT 2011
[2011-06-01 21:18:22 -0400] Stéphane Gaudreault:
> I updated subversion to 1.6.17, which fix the following security issues [1] :
>
> CVE-2011-1752: Server NULL-pointer dereference
> CVE-2011-1783: Server memory exhaustion
> CVE-2011-1921: mod_dav_svn exposure of unreadable paths
>
> CVE-2011-0715 : a remotely-triggerable DoS for httpd-based Subversion
> servers
>
> This update also fix FS#24536.
Signoff x86_64.
--
Gaetan
More information about the arch-dev-public
mailing list