Slashdot Mirror

← Back to Stories (view on slashdot.org)

Security Holes in CVS and Subversion Found

Posted by simoniker on Wednesday May 19, 2004 @12:06PM from the nee-naw dept.

joe_bruin writes "News.com.com is reporting a two separate vulnerabilities that affect current versions of CVS and Subversion source control systems. Apparently, major users of these products (Linux and BSD distros, Samba, etc.) have been notified and have patched their systems." Update: 05/20 02:01 GMT by S : Clarification that there are separate issues for both CVS and Subversion.

1 of 250 comments (clear)

Min score:

Reason:

Sort:

Re:Just goes to show... by soulhuntre · 2004-05-19 13:25 · Score: 0, Troll

"I also understand the "millions of eyeballs" argument, but doesn't that really apply again to the "big guys.""

Well said - and a point many conveniently overlook. Most OSS programs pull in thousands and tens of thousands of lines of code that has been written by amateurs of questionable skill and reviewed not at all.

The fiction that OSS code is poured over by hundreds of talented eyes looking for each and every bug is a lie.

--
--> Fight tyranny and repression.... read /. at -1!