subversion 보안 업데이트
Web Browser 로는 FTP 접속이 불가능 합니다.
문서번호 : 1250686133
업데이트 : 2009.08.19
상세내용
1.4.6-3 업데이트:
보안버그 수정
.CVE-2009-2411
Matt Lewis, of Google, reported multiple heap overflow flaws in Subversion
(server and client) when parsing binary deltas. A malicious user with
commit access to a server could use these flaws to cause a heap overflow on
that server. A malicious server could use these flaws to cause a heap
overflow on a client when it attempts to checkout or update. These heap
overflows can result in a crash or, possibly, arbitrary code execution.
Autoupdates 지원 : 지원
pkgsysupdate
update 패키지
RPMS :
. subversion-1.4.6-3.el5.i686.rpm
. subversion-devel-1.4.6-3.el5.i686.rpm
SRPMS :
. subversion-1.4.6-3.el5.src.rpm
참고 :
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2411
|