From: David Rothenberger <daveroth@acm.org>
To: cygwin-announce@cygwin.com
Subject: [SECURITY] Updated: subversion-1.9.4-1
Date: Sat, 30 Apr 2016 23:18:00 -0000 [thread overview]
Message-ID: <959848ba-10e2-0dc2-f11b-ec3520e8d75d@acm.org> (raw)
SECURITY:
=========
This release fixes two security issues:
CVE-2016-2167:
svnserve/sasl may authenticate users using the wrong realm.
http://subversion.apache.org/security/CVE-2016-2167-advisory.txt
CVE-2016-2168:
Remotely triggerable DoS vulnerability in mod_authz_svn during
COPY/MOVE authorization check.
http://subversion.apache.org/security/CVE-2016-2168-advisory.txt
NEWS:
=====
Please see the release notes
http://subversion.apache.org/docs/release-notes/1.9.html
for more details about the changes in Subversion.
See
http://svn.apache.org/repos/asf/subversion/tags/1.9.4/CHANGES
for more details about the changes in 1.9.4.
DESCRIPTION:
============
Subversion is a version control system designed to be a compelling
successor to CVS.
Please see
http://svnbook.red-bean.com/nightly/en/index.html
for the latest official release of the Subversion Book.
QUESTIONS:
==========
If you want to make a point or ask a question the Cygwin mailing list is
the appropriate place.
reply other threads:[~2016-04-30 23:18 UTC|newest]
Thread overview: [no followups] expand[flat|nested] mbox.gz Atom feed
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=959848ba-10e2-0dc2-f11b-ec3520e8d75d@acm.org \
--to=daveroth@acm.org \
--cc=cygwin-announce@cygwin.com \
--cc=cygwin@cygwin.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).