You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa subversion

Sigurnosni nedostaci programskog paketa subversion

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2019-08-06 01:18:14.744706

Name : subversion
Product : Fedora 30
Version : 1.12.2
Release : 1.fc30
Summary : A Modern Concurrent Version Control System
Description :
Subversion is a concurrent version control system which enables one
or more users to collaborate in developing and maintaining a
hierarchy of files and directories while keeping a history of all
changes. Subversion only stores the differences between versions,
instead of every complete file. Subversion is intended to be a
compelling replacement for CVS.

Update Information:

This update includes the latest stable release of _Apache Subversion_, version
**1.12.2**. This update addresses two security vulnerabilities in **svnserve**,
`CVE-2018-11782` and `CVE-2019-0203`. For more information, see: ## User-
visible changes: * Fix conflict resolver bug: local and incoming edits swapped.
* Fix memory lifetime problem in a libsvn_wc error code path.

* Thu Jul 25 2019 Joe Orton <> – 1.12.2-1
– update to 1.12.2
* Sat Jun 1 2019 Jitka Plesnikova <> – 1.12.0-2
– Perl 5.30 rebuild
* Wed May 1 2019 Joe Orton <> – 1.12.0-1
– update to 1.12.0 (#1702471)
* Wed Apr 17 2019 Joe Orton <> – 1.11.1-5
– fix build with APR 1.7.0 (upstream r1857391)

[ 1 ] Bug #1735579 – CVE-2019-0203 subversion: remote unauthenticated denial-of-service in subversion svnserve [fedora-all]
[ 2 ] Bug #1735578 – CVE-2018-11782 subversion: remotely triggerable DoS vulnerability in svnserve ‘get-deleted-rev’ [fedora-all]

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2019-f6bc68e455’ at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to
Fedora Code of Conduct:
List Guidelines:
List Archives:

AutorZvonimir Bosnjak
Cert idNCERT-REF-2019-08-0001-ADV
More in Preporuke
Sigurnosni nedostaci programskog paketa matrix-synapse

Otkriveni su sigurnosni nedostaci u programskom paketu matrix-synapse za operacijski sustav Fedora. Otkriveni nedostaci potencijalnim napadačima omogućuju zaobilaženje sigurnosnih ograničenja,...