httpd (dav) configurations (CVE-2015-3184) bnc#939514

bnc#939517 OBS-URL: https://build.opensuse.org/package/show/devel:tools:scm:svn/subversion?expand=0&rev=210
2015-08-06 11:03:02 +00:00 · 2015-08-06 11:03:02 +00:00 · 4ae62bee3d
commit 4ae62bee3d
parent c5a5192b66
1 changed files with 2 additions and 1 deletions
--- a/subversion.changes
+++ b/subversion.changes
@ -4,8 +4,9 @@ Thu Aug  6 10:48:33 UTC 2015 - stsp@elego.de
 - Apache Subversion 1.8.14
  This release fixes two vulnerabilities:
  * mod_authz_svn: do not leak information in mixed anonymous/authenticated
-    httpd (dav) configurations (CVE-2015-3184)
+    httpd (dav) configurations (CVE-2015-3184) bnc#939514
  * do not leak paths that were hidden by path-based authz (CVE-2015-3187)
+    bnc#939517
  Non-security fixes:
  * document svn:autoprops
  * fix 'svn cp ^/A/D/H@1 ^/A' to properly create A