24284 2010-10-13 09:56:58 +0400 CVE-2010-3315: mod_dav_svn - bypass intended access restrictions via svn commands 2010-10-21 09:00:07 +0400 1 1 4 Development Sisyphus subversion unstable all Linux CLOSED FIXED http://subversion.apache.org/security/CVE-2010-3315-advisory.txt security P3 blocker --- 1 crux cas cas ender shrek qa-sisyphus oldest_to_newest 113637 0 crux 2010-10-13 09:56:58 +0400 Subversion servers up to 1.6.12 (inclusive) making use of the "SVNPathAuthz short_circuit" mod_dav_svn configuration setting have a bug which may allow users to write and/or read portions of the repository to which they are not intended to have access. Fixed in 1.6.13 113645 1 ender 2010-10-13 12:55:06 +0400 как, crux на меня CVE вешает :) 114084 2 crux 2010-10-21 09:00:07 +0400 subversion-1.6.13-alt1 -> sisyphus: * Tue Oct 19 2010 Afanasov Dmitry <ender@altlinux> 1.6.13-alt1 - updated to 1.6.13 (CVE-2010-3315, closes: #24284)