Gentoo GLSA-202311-17 High Risk: Git Repo DoS and Code Execution
gentoo
June 10, 2004
Several serious new vulnerabilities have been found in CVS, which may allow an attacker to remotely compromise a CVS server.
Summary
Gentoo Linux Security Advisory GLSA 200406-06
https://security.gentoo.org/
Severity: High
Title: CVS: additional DoS and arbitrary code execution
vulnerabilities
Date: June 10, 2004
Bugs: #53408
ID: 200406-06
Synopsis
=======
Several serious new vulnerabilities have been found in CVS, which may
allow an attacker to remotely compromise a CVS server.
Background
=========
CVS (Concurrent Versions System) is an open-source network-transparent
version control system. It contains both a client utility and a server.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 dev-util/cvs <= 1.11.16-r1 >= 1.11.17
==========
A team audit of the CVS source code performed by Stefan Esser and
Sebastian Kra...
Topics Covered
Resolution
References
Availability
style>.gentoo_availability{display:block;}
Concerns
PREVIOUS
NEXT
Warning: Undefined array key "advisory_info" in /var/www/www.linuxsecurity.com-443/html/tmp/regularlabs/custom_php/4093774_4c9dbbdde36eef04251a4ced7eac4df9 on line 11
Topics Covered
Background
Get the latest News and Insights
Get the latest Linux and open source security news straight to your inbox.
Affected Packages
Impact
Workaround
Related News
Powered By
Linux Security - Your source for Top Linux News, Advisories, HOWTOs and Feature Releases
QUICK LINKS
subscribe to newsletters!
Like staying secure? So do we.
Sign up for updates, tips, and alerts!