]> code.ossystems Code Review - openembedded-core.git/commit
Code Review / openembedded-core.git / commit
? search:
summary | shortlog | log | commit | commitdiff | review | tree
(parent: 34cde8e) | patch
subversion: fix CVE-2017-9800
authorWenzong Fan <wenzong.fan@windriver.com>
Thu, 7 Sep 2017 09:49:06 +0000 (02:49 -0700)
committerRichard Purdie <richard.purdie@linuxfoundation.org>
Mon, 11 Sep 2017 16:30:13 +0000 (17:30 +0100)
commit6e1f8001a0f3c26cce9c692d25987a3c47ff2f74
tree3e204fb030fc5715fd52ef275d38b4fe10e759dbtree | snapshot
parent34cde8e965acca2706d3e3d8b5b3e9f4c3e010c3commit | diff
subversion: fix CVE-2017-9800

A maliciously constructed svn+ssh:// URL would cause Subversion clients
before 1.8.19, 1.9.x before 1.9.7, and 1.10.0.x through 1.10.0-alpha3
to run an arbitrary shell command. Such a URL could be generated by a
malicious server, by a malicious user committing to a honest server(to
attack another user of that server's repositories), or by a proxy
server.

The vulnerability affects all clients, including those that use
file://, http://, and plain (untunneled) svn://.

Backport patch from:
http://svn.apache.org/viewvc?view=revision&amp;sortby=rev&amp;revision=1804691

Reference:
http://subversion.apache.org/security/CVE-2017-9800-advisory.txt

Signed-off-by: Wenzong Fan <wenzong.fan@windriver.com>
Signed-off-by: Ross Burton <ross.burton@intel.com>
meta/recipes-devtools/subversion/subversion/CVE-2017-9800.patch [new file with mode: 0644] blob
meta/recipes-devtools/subversion/subversion_1.9.6.bb diff | blob | history
Mirror of the official openembedded-core repository