[ubuntu/xenial-updates] subversion 1.9.3-2ubuntu1.3 (Accepted)

Ubuntu Archive Robot cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk
Wed Jul 31 17:28:11 UTC 2019


subversion (1.9.3-2ubuntu1.3) xenial-security; urgency=medium

  * SECURITY UPDATE: Remotely triggerable DoS vulnerability in svnserve
    'get-deleted-rev'
    - debian/patches/CVE-2018-11782.patch: properly handle certain replies
      in subversion/libsvn_ra_svn/client.c, subversion/svnserve/serve.c,
      subversion/tests/libsvn_ra/ra-test.c.
    - CVE-2018-11782
  * SECURITY UPDATE: Remote unauthenticated denial-of-service in svnserve
    - debian/patches/CVE-2019-0203.patch: properly handle errors in
      subversion/svnserve/serve.c.
    - CVE-2019-0203
  * WARNING: this update does _not_ include the changes from
    (1.9.3-2ubuntu1.2) in xenial-proposed.

Date: 2019-07-26 15:43:13.478423+00:00
Changed-By: Marc Deslauriers <marc.deslauriers at canonical.com>
Signed-By: Ubuntu Archive Robot <cjwatson+ubuntu-archive-robot at chiark.greenend.org.uk>
https://launchpad.net/ubuntu/+source/subversion/1.9.3-2ubuntu1.3
-------------- next part --------------
Sorry, changesfile not available.


More information about the Xenial-changes mailing list