[ANNOUNCEMENT] [SECURITY] Updated: subversion-1.6.17-1
Fri Jun 10 17:27:00 GMT 2011
A new version of subversion is available. This is a new upstream
See CHANGES (URL below) for more information about the differences
between 1.6.17 and previous Subversion releases.
This release addesses three security issues:
CVE-2011-1752: Server NULL-pointer dereference
CVE-2011-1783: Server memory exhaustion
CVE-2011-1921: mod_dav_svn exposure of unreadable paths
More information on these vulnerabilities, including the relevent advisories
and potential attack vectors and workarounds, can be found on the Subversion
IMPORTANT: This release will silently upgrade your Subversion
working copies to the 1.6 format, rendering them unusable with
previous major versions of Subversion.
Please see the release notes
for more details about the changes in Subversion.
for more details about the changes in 1.6.17.
Subversion is a version control system designed to be a compelling
successor to CVS.
for the latest official release of the Subversion Book, covering 1.5
for the WIP version of the book covering 1.6.
Note that downloads from sourceware.org (aka cygwin.com) aren't
allowed due to bandwidth limitations. This means that you will need
to find a mirror which has this update, please choose the one
nearest to you: http://cygwin.com/mirrors.html
If you want to make a point or ask a question the Cygwin mailing list is
the appropriate place.
CYGWIN-ANNOUNCE UNSUBSCRIBE INFO:
To unsubscribe to the cygwin-announce mailing list, look at the
"List-Unsubscribe: " tag in the email header of this message. Send
email to the address specified there. It will be in the format:
If you need more information on unsubscribing, start reading here:
Please read *all* of the information on unsubscribing that is available
starting at this URL.
David Rothenberger ---- email@example.com
Problem reports: http://cygwin.com/problems.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
More information about the Cygwin