Summary: | dev-util/subversion: Subversion versions up to and including 1.0.2 have a buffer overflow in | ||
---|---|---|---|
Product: | Gentoo Security | Reporter: | Jani Averbach <jaa> |
Component: | GLSA Errors | Assignee: | Gentoo Security <security> |
Status: | RESOLVED FIXED | ||
Severity: | blocker | CC: | condordes, douggorley, gen2daniel, jay, pauldv, sbh, sr, zorloc |
Priority: | Highest | Flags: | condordes:
Assigned_To?
(condordes) |
Version: | unspecified | ||
Hardware: | All | ||
OS: | All | ||
URL: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2004-0397 | ||
Whiteboard: | |||
Package list: | Runtime testing required: | --- |
Description
Jani Averbach
2004-05-19 08:54:28 UTC
*** Bug 51463 has been marked as a duplicate of this bug. *** pauldv, please bump. thanks. *** Bug 51491 has been marked as a duplicate of this bug. *** Reassigning back to security so that we keep track of this one. Still waiting for pauldv's bump. I'm raising a new bug for this, but FYI, subversion 1.0.4 is now available. 1.0.3 is the security fix. http://subversion.tigris.org/project_status.html AfC Sydney The new bug number for 1.0.4 is 51572 http://bugs.gentoo.org/show_bug.cgi?id=51572, But, 1.0.4 isn't out yet (planned for tomorrow)! Apparently 1.0.3 is in CVS. Stable flags are OK -- so it's ready for a GLSA GLSA Drafted. GLSA 200405-14. |