Follow @Openwall on Twitter for new release announcements and other news
[<prev] [next>] [thread-next>] [day] [month] [year] [list]
Date: Mon, 25 Jun 2012 14:03:36 +0200
From: Ludwig Nussel <ludwig.nussel@...e.de>
To: oss-security@...ts.openwall.com,
	Dirk Müller <dmueller@...e.com>
Subject: CVE Request: viewvc

Hi,

Changelog of viewvc 1.1.15:
http://viewvc.tigris.org/source/browse/*checkout*/viewvc/tags/1.1.15/CHANGES

Version 1.1.15 (released 22-Jun-2012)

   * security fix: complete authz support for remote SVN views (issue #353)
   * security fix: log msg leak in SVN revision view with unreadable copy source

The first one seems to be this one:
http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2758

The second one:
http://viewvc.tigris.org/issues/show_bug.cgi?id=353
http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2755
http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2756
http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2757
http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2759
http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2760

cu
Ludwig

-- 
  (o_   Ludwig Nussel
  //\
  V_/_  http://www.suse.de/
SUSE LINUX Products GmbH, GF: Jeff Hawn, Jennifer Guild, Felix Imendörffer, HRB 16746 (AG Nürnberg)

Powered by blists - more mailing lists

Please check out the Open Source Software Security Wiki, which is counterpart to this mailing list.

Confused about mailing lists and their use? Read about mailing lists on Wikipedia and check out these guidelines on proper formatting of your messages.