Security Holes in CVS and Subversion Found

joe_bruin writes "News.com.com is reporting a two separate vulnerabilities that affect current versions of CVS and Subversion source control systems. Apparently, major users of these products (Linux and BSD distros, Samba, etc.) have been notified and have patched their systems." Update: 05/20 02:01 GMT by S : Clarification that there are separate issues for both CVS and Subversion.

First Post

OMG I LOVE CHEESE!

LOL OMG WTF BBQ FP!

That's teh suxor!!!

Good thing only windbloze is vunerable...oh waiot doh!!!!! SUPAR DOH!!!!!!1111one

Re:LOL OMG WTF BBQ FP!

This may be astupid comment but it certainly isn't offtopic so until a -1 I think this comment is stupid is created anyone who mods that down is modding incorrectly and should have mod priviledges removed lest they furthur ab use their power with improper modding technique.

WTF???

No comments? Unbelievable.

First Post

Flames Suck

Re:Just goes to show...

99% of normal exploits or DOS attacks would be solved by using a language like Java, which AFAIK is the only language that automatically does bounds checking.
Why more programs aren't written in it is beyond me.

Re:Aren't all "First Post" posts Offtopic?

That post didn't say anything about being first post. In fact it wasdn't even first post.

PR department you say?

[Samah]

As mentioned in a previous comment, perhaps there DOES need to be some kind of PR department for open source.
Perhaps a group of dedicated OSS developers needs to form some kind of committee to produce non-biased articles re: open source, and pass those on to the media.
Think about it - it could work, and if it was committee-based, unbiased views could be maintained.
Factual (rather than MS-funded/manufactured) data could be used to generate anti-FUD articles which, if advertised/promoted correctly, could reveal to the public some of Microsoft's baseless attacks in the name of profit, and could sway the masses' views of OSS in general.

Re:If CVS was implemented in Java...

[t_allardyce]

Ironic how java the drink speeds you up where as java is so bloody slow.

Re:Aren't all "First Post" posts Offtopic?

FP is short for First Post...

why you suck

yOU DumB ASS gET a FuCKInG cLUE (Score:0)
by Anonymous Coward on Wednesday May 19, @09:03PM (#9200710)
Wi-fI iS dAnGeROUS tO yOUR coMPUter AND oThER LIVing THIngs.

DON't yOU wAtCH dAteLine NBC? THey SAD wireLESS is SEcuRITy hAzzarD!!

BAn ALL wi-FI and all LuNix because ThAT iS tHE REAL souRce OF thE worMs!

Re:open source databases??

TEH OPEN-SORCE DATABASS

Mmm.... Data bass. DIPped in a light Beer batter and PAN-fried. Yum.

Re:Unsurprising

What a torrent of verbal diarrhea. Most excellent work on the part of the mods.

Re:uh oh!

Modded Funny? Must be laughing at you rather than with you.

Build errors

[pauljlucas]

I just grabbed the source for 1.12.8 and I get:

ld: warning -L: directory name (no/lib) does not exist
ld: warning multiple definitions of symbol _notify_check
edit.o definition of _notify_check in section (__TEXT,__text)
/usr/lib/libSystem.dylib(notify_c lient.o) definition of _notify_check
ld: warning multiple definitions of symbol _regcomp
../lib/libcvs.a(regex.o) definition of _regcomp in section (__TEXT,__text)
/usr/lib/libSystem.dylib(regcomp. So) definition of _regcomp
ld: warning multiple definitions of symbol _regexec
../lib/libcvs.a(regex.o) definition of _regexec in section (__TEXT,__text)
/usr/lib/libSystem.dylib(regexec. So) definition of _regexec
ld: warning multiple definitions of symbol _regfree
../lib/libcvs.a(regex.o) definition of _regfree in section (__TEXT,__text)
/usr/lib/libSystem.dylib(regfree. So) definition of _regfree
ld: warning multiple definitions of symbol _regerror
../lib/libcvs.a(regex.o) definition of _regerror in section (__TEXT,__text)
/usr/lib/libSystem.dylib(regerror .So) definition of _regerror

I'm compiling on Mac OS X. Any ideas?