Apache Subversion 1.9.4 / 1.8.16 发布。
Apache Subversion 1.9.4 修复如下:
CVE-2016-2167:
svnserve/sasl may authenticate users using the wrong realm.
http://subversion.apache.org/security/CVE-2016-2167-advisory.txt
CVE-2016-2168:
Remotely triggerable DoS vulnerability in mod_authz_svn during
COPY/MOVE authorization check.
http://subversion.apache.org/security/CVE-2016-2168-advisory.txt
该SHA1校验是:
bc7d51fdda43bea01e1272dfe9d23d0a9d6cd11c subversion-1.9.4.tar.bz2
43a7e47c1fca0ed9ba79564bdcd2d7ba0cbfb905 subversion-1.9.4.tar.gz
ff55b2161e22d4eb61f1d2294995b97295a2cb2d subversion-1.9.4.zip
PGP签名,请访问:
http://www.apache.org/dist/subversion/subversion-1.9.4.tar.bz2.asc
http://www.apache.org/dist/subversion/subversion-1.9.4.tar.gz.asc
http://www.apache.org/dist/subversion/subversion-1.9.4.zip.asc
Apache Subversion 1.8.16 修复如下:
CVE-2016-2167:
svnserve/sasl may authenticate users using the wrong realm.
http://subversion.apache.org/security/CVE-2016-2167-advisory.txt
CVE-2016-2168:
Remotely triggerable DoS vulnerability in mod_authz_svn during
COPY/MOVE authorization check.
http://subversion.apache.org/security/CVE-2016-2168-advisory.txt
该SHA1校验是:
9596643a2728c55a4e54ff38608fde09b27fa494 subversion-1.8.16.tar.bz2
50d3004b57d714247158374694c9f06ba852e88a subversion-1.8.16.tar.gz
5a23082a998133be85efd0b5b81ef91d6b87fdd5 subversion-1.8.16.zip
PGP签名,请访问:
http://www.apache.org/dist/subversion/subversion-1.8.16.tar.bz2.asc
http://www.apache.org/dist/subversion/subversion-1.8.16.tar.gz.asc
http://www.apache.org/dist/subversion/subversion-1.8.16.zip.asc
Subversion是一个版本控制系统,相对于的RCS、CVS,采用了分支管理系统,它的设计目标就是取代CVS。互联网上免费的版本控制服务多基于Subversion。
软件详情:http://subversion.apache.org/docs/release-notes/1.9.html
下载地址:http://subversion.apache.org/download/#recommended-release
来自:开源中国社区
