Advisories ยป MGASA-2014-0338

Updated subversion packages fix CVE-2014-3528

Publication date: 21 Aug 2014
Modification date: 21 Aug 2014
Type: security
Affected Mageia releases : 3
CVE: CVE-2014-3528

Description

Updated subversion packages fix security vulnerability:

Bert Huijben discovered that Subversion did not properly handle cached
credentials. A malicious server could possibly use this issue to obtain
credentials cached for a different server (CVE-2014-3528).

The subversion package has been patched to fix this issue.
                

References

SRPMS

3/core