CVE-2015-3187
Published: 5 August 2015
The svn_repos_trace_node_locations function in Apache Subversion before 1.7.21 and 1.8.x before 1.8.14, when path-based authorization is used, allows remote authenticated users to obtain sensitive path information by reading the history of a node that has been moved from a hidden path.
Priority
Status
Package | Release | Status |
---|---|---|
subversion Launchpad, Ubuntu, Debian |
precise |
Released
(1.6.17dfsg-3ubuntu3.5)
|
trusty |
Released
(1.8.8-1ubuntu3.2)
|
|
upstream |
Needs triage
|
|
vivid |
Released
(1.8.10-5ubuntu1.1)
|