Slashdot Mirror


Security Holes in CVS and Subversion Found

joe_bruin writes "News.com.com is reporting a two separate vulnerabilities that affect current versions of CVS and Subversion source control systems. Apparently, major users of these products (Linux and BSD distros, Samba, etc.) have been notified and have patched their systems." Update: 05/20 02:01 GMT by S : Clarification that there are separate issues for both CVS and Subversion.

6 of 250 comments (clear)

  1. Thankfully, I use Visual Source Safe by Anonymous Coward · · Score: 5, Funny

    If you compromise it, it's so broken you can't even use it to control source.

  2. Great! by Psychor · · Score: 5, Funny

    Great, I'll grab it just as soon as the source for the patch goes into CVS! Oh wait...

  3. Re:Sourceforge... by nacturation · · Score: 5, Funny

    If they don't fix it in time, does this mean they'll be changing their name to Sourceforget?

    --
    Want to improve your Karma? Instead of "Post Anonymously", try the "Post Humously" option.
  4. Another security flaw found by Canberra+Bob · · Score: 5, Funny

    Just goes to show how open source leads to insecure software and the commercial software model is better.

    Oh wait..thats not right...

    Take 2

    this just goes to show that with so many eyes viewing the software that bugs will be found and corrected, and we do not know how many undetected bugs are in commercial software.

  5. CVS and Subversion? by Anonymous Coward · · Score: 5, Funny
    I knew that Subversion was complete in its support for CVS users, but this is going too far.

    Laugh, it's a joke.

  6. Re:Sourceforge... by jpetts · · Score: 5, Funny

    If they don't fix it in time, does this mean they'll be changing their name to Sourceforget?

    No, it means they'll be changing their name to ForgeSource

    --
    Call me old fashioned, but I like a dump to be as memorable as it is devastating - Bender