U radu programskog paketa Subversion uočen je novi sigurnosni nedostatak koji udaljenom napadaču omogućuje izvođenje napada uskraćivanjem usluge (eng. Denial of Service).
Paket:
Subversion 1.x
Operacijski sustavi:
CentOS
Kritičnost:
4.8
Problem:
pogreška u programskoj komponenti
Iskorištavanje:
udaljeno
Posljedica:
uskraćivanje usluga (DoS)
Rješenje:
programska zakrpa proizvođača
CVE:
CVE-2011-1752
Izvorni ID preporuke:
CESA-2011:0861
Izvor:
CentOS
Problem:
Nedostatak je posljedica nepravilnosti u radu "mod_dav_svn" modula.
Posljedica:
Napadaču omogućuje izvođenje DoS napada.
Rješenje:
Svim se korisnicima ranjivog paketa preporuča prelazak na ispravljene inačice.
CentOS Errata and Security Advisory CESA-2011:0861
subversion security update for CentOS 4 x86_64:
https://rhn.redhat.com/errata/RHSA-2011-0861.html
The following updated file has been uploaded and is currently syncing to
the mirrors:
x86_64:
updates/x86_64/RPMS/mod_dav_svn-1.1.4-4.el4_8.x86_64.rpm
updates/x86_64/RPMS/subversion-1.1.4-4.el4_8.x86_64.rpm
updates/x86_64/RPMS/subversion-devel-1.1.4-4.el4_8.x86_64.rpm
updates/x86_64/RPMS/subversion-perl-1.1.4-4.el4_8.x86_64.rpm
source:
updates/SRPMS/subversion-1.1.4-4.el4_8.src.rpm
You may update your CentOS-4 x86_64 installations by running the command:
yum update subversion
Tru
--
Tru Huynh (mirrors, CentOS i386/x86_64 Package Maintenance)
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B
CentOS Errata and Security Advisory CESA-2011:0861
subversion security update for CentOS 4 i386:
https://rhn.redhat.com/errata/RHSA-2011-0861.html
The following updated file has been uploaded and is currently syncing to
the mirrors:
i386:
updates/i386/RPMS/mod_dav_svn-1.1.4-4.el4_8.i386.rpm
updates/i386/RPMS/subversion-1.1.4-4.el4_8.i386.rpm
updates/i386/RPMS/subversion-devel-1.1.4-4.el4_8.i386.rpm
updates/i386/RPMS/subversion-perl-1.1.4-4.el4_8.i386.rpm
source:
updates/SRPMS/subversion-1.1.4-4.el4_8.src.rpm
You may update your CentOS-4 i386 installations by running the command:
yum update subversion
Tru
--
Tru Huynh (mirrors, CentOS i386/x86_64 Package Maintenance)
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B
Posljednje sigurnosne preporuke