Subversion; Rhsa-2009:1203: Important Security Update; Sudo; Rhsa-2009:0267: Moderate Security Update - Red Hat ENTERPRISE LINUX 5.4 - TECHNICAL NOTES Manual
Hide thumbs
Also See for ENTERPRISE LINUX 5.4 - TECHNICAL NOTES:
- Reference manual (86 pages) ,
- Manual (80 pages) ,
- Release note (20 pages)
Table of Contents
Advertisement
1.212. subversion
1.212.1. RHSA-2009:1203: Important security update
Important
This update has already been released (prior to the GA of this release) as the security
RHSA-2009:1203
errata
Updated subversion packages that fix multiple security issues are now available for Red Hat
Enterprise Linux 4 and 5.
This update has been rated as having important security impact by the Red Hat Security Response
Team.
Subversion (SVN) is a concurrent version control system which enables one or more users to
collaborate in developing and maintaining a hierarchy of files and directories while keeping a history of
all changes.
Matt Lewis, of Google, reported multiple heap overflow flaws in Subversion (server and client) when
parsing binary deltas. A malicious user with commit access to a server could use these flaws to cause
a heap overflow on that server. A malicious server could use these flaws to cause a heap overflow
on a client when it attempts to checkout or update. These heap overflows can result in a crash or,
possibly, arbitrary code execution.
All Subversion users should upgrade to these updated packages, which contain a backported patch to
correct these issues. After installing the updated packages, the Subversion server must be restarted
for the update to take effect: restart httpd if you are using mod_dav_svn, or restart svnserve if it is
used.
1.213. sudo
1.213.1. RHSA-2009:0267: Moderate security update
Important
This update has already been released (prior to the GA of this release) as the security
RHSA-2009:0267
errata
An updated sudo package to fix a security issue is now available for Red Hat Enterprise Linux 5.
This update has been rated as having moderate security impact by the Red Hat Security Response
Team.
The sudo (superuser do) utility allows system administrators to give certain users the ability to run
commands as root with logging.
1677
https://www.redhat.com/security/data/cve/CVE-2009-2411.html
1676
1677
(CVE-2009-2411
)
1678
subversion
237
Advertisement
Table of Contents
Related Manuals for Red Hat ENTERPRISE LINUX 5.4 - TECHNICAL NOTES
Related Products for Red Hat ENTERPRISE LINUX 5.4 - TECHNICAL NOTES
- Red Hat DEVICE-MAPPER MULTIPATH 5.2
- Red Hat NETWORK SATELLITE 5.1.0 - CHANNEL MANAGEMENT
- Red Hat NETWORK SATELLITE 5.3.0 - CHANNEL MANAGEMENT
- Red Hat GLOBAL FILE SYSTEM 5.0
- Red Hat GLOBAL FILE SYSTEM 5.1
- Red Hat NETWORK SATELLITE 5.0.0 -
- Red Hat NETWORK SATELLITE 5.1.1 - RELEASE NOTES
- Red Hat Application Server
- Red Hat APPLICATION SERVER - JONAS
- Red Hat APPLICATION STACK 1.1 RELEASE
- Red Hat APPLICATION STACK 1.2 RELEASE
- Red Hat APPLICATION STACK 1.3 RELEASE
- Red Hat APPLICATION STACK 1.4 RELEASE
- Red Hat APPLICATION STACK 2.0 RELEASE
- Red Hat APPLICATION STACK 2.1 RELEASE
- Red Hat APPLICATION STACK 2.2 RELEASE