CVE-2007-2448
Priority
Low
Description
Subversion 1.4.3 and earlier does not properly implement the "partial
access" privilege for users who have access to changed paths but not copied
paths, which allows remote authenticated users to obtain sensitive
information (revision properties) via svn (1) propget, (2) proplist, or (3)
propedit.
access" privilege for users who have access to changed paths but not copied
paths, which allows remote authenticated users to obtain sensitive
information (revision properties) via svn (1) propget, (2) proplist, or (3)
propedit.
Notes
kees> minor uncommonly used ACL issue
Package
| Upstream: | released (1.4.4) |
| Ubuntu 6.06 LTS (Dapper Drake): | needed |
| Ubuntu 8.04 LTS (Hardy Heron): | not-affected |
| Ubuntu 9.04 (Jaunty Jackalope): | not-affected |
| Ubuntu 9.10 (Karmic Koala): | not-affected |
| Ubuntu 10.04 LTS (Lucid Lynx): | not-affected |