Updated subversion packages fix CVE-2014-3528
Publication date: 21 Aug 2014Modification date: 21 Aug 2014
Type: security
Affected Mageia releases : 3
CVE: CVE-2014-3528
Description
Updated subversion packages fix security vulnerability: Bert Huijben discovered that Subversion did not properly handle cached credentials. A malicious server could possibly use this issue to obtain credentials cached for a different server (CVE-2014-3528). The subversion package has been patched to fix this issue.
References
SRPMS
3/core
- subversion-1.7.14-1.2.mga3