Subversion: Multiple vulnerabilities

2013-09-23T00:00:00
ID GLSA-201309-11
Type gentoo
Reporter Gentoo Foundation
Modified 2013-09-23T00:00:00

Description

Background

Subversion is a versioning system designed to be a replacement for CVS.

Description

Multiple vulnerabilities have been discovered in Subversion. Please review the CVE identifiers referenced below for details.

Impact

A remote attacker could cause a Denial of Service condition or obtain sensitive information. A local attacker could escalate his privileges to the user running svnserve.

Workaround

There is no known workaround at this time.

Resolution

All Subversion users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=dev-vcs/subversion-1.7.13"