|
Family: Fedora Local Security Checks --> Category: infos
Fedora Core 2 2004-231: subversion Vulnerability Scan
Vulnerability Scan Summary Check for the version of the subversion package
Detailed Explanation for this Vulnerability Test
The remote host is missing the patch for the advisory FEDORA-2004-231 (subversion).
Subversion is a concurrent version control system which enables one
or more users to collaborate in developing and maintaining a
hierarchy of files and directories while keeping a history of all
changes. Subversion only stores the differences between versions,
instead of every complete file. Subversion is intended to be a
compelling replacement for CVS.
Update Information:
This update includes the latest release of Subversion, including a
security fix for an issue in the mod_authz_svn Apache authentication
module which could allow a read restriction for a portion of the
repository to be bypassed by a user who has write access to a
different portion of the repository. This issue does not affect the
svnserve daemon.
Solution : http://www.fedoranews.org/updates/FEDORA-2004-231.shtml
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|