Wind River Support Network

HomeDefectsLIN6-8282
Fixed

LIN6-8282 : Security Advisory - subversion - CVE-2014-3528

Created: Aug 31, 2014    Updated: Dec 3, 2018
Resolved Date: Sep 2, 2014
Found In Version: 6.0
Fix Version: 6.0.0.12
Severity: Standard
Applicable for: Wind River Linux 6
Component/s: Userspace

Description

Apache Subversion 1.0.0 through 1.7.x before 1.7.17 and 1.8.x before 1.8.10 uses an MD5 hash of the URL and authentication realm to store cached credentials, which makes it easier for remote servers to obtain the credentials via a crafted authentication realm.

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2014-3528

Other Downloads


Live chat
Online