~ubuntu-branches/ubuntu/precise/subversion/precise-updates

Viewing all changes in revision 53.

  • Committer: Package Import Robot
  • Author(s): Marc Deslauriers
  • Date: 2011-08-05 10:53:00 UTC
  • Revision ID: package-import@ubuntu.com-20110805105300-1whdgtlkj7exjd9m
Tags: 1.6.12dfsg-4ubuntu5
* SECURITY UPDATE: denial of service via baselined WebDAV resource
  request
  - debian/patches/CVE-2011-1752.patch: disallow GETs of baselined
    versions of resources in subversion/mod_dav_svn/repos.c.
  - CVE-2011-1752
* SECURITY UPDATE: mod_dav_svn resource exhaustion via infinite loop
  - debian/patches/CVE-2011-1783.patch: validate path in
    subversion/libsvn_repos/authz.c.
  - CVE-2011-1783
* SECURITY UPDATE: mod_dav_svn permissions bypass via incorrect
  resource URL
  - debian/patches/CVE-2011-1921.patch: validate path in
    subversion/mod_dav_svn/authz.c.
  - CVE-2011-1921

expand all expand all

Show diffs side-by-side

added added

removed removed

Lines of Context: