subversion: fix for Security Advisory CVE-2013-4505 - openembedded-core-contrib - OpenEmbedded Core user contribution trees

diff options

author	Yue Tao <Yue.Tao@windriver.com>	2014-04-15 10:49:03 +0800
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2014-05-29 13:42:11 +0100
commit	d245459306939aef078a89e671ec093e3d6321cd (patch)
tree	da6905df90e5c173cce67715ace2be6d84c0d0f7 /meta/recipes-extended
parent	4a67bb2a27c1c32b2a912b603e1c543db9e1810e (diff)
download	openembedded-core-contrib-d245459306939aef078a89e671ec093e3d6321cd.tar.gz

subversion: fix for Security Advisory CVE-2013-4505

The is_this_legal function in mod_dontdothat for Apache Subversion 1.4.0 through 1.7.13 and 1.8.0 through 1.8.4 allows remote attackers to bypass intended access restrictions and possibly cause a denial of service (resource consumption) via a relative URL in a REPORT request. http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2013-4505 (From OE-Core rev: 02314673619f44e5838ddb65bbe22f9342ee6167) Signed-off-by: Yue Tao <Yue.Tao@windriver.com> Signed-off-by: Roy Li <rongqing.li@windriver.com> Signed-off-by: Saul Wold <sgw@linux.intel.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'meta/recipes-extended')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: