PublicDateAtUSN: 2015-08-05 20:00:00 UTC
Candidate: CVE-2015-3187
CRD: 2015-08-05 20:00:00 UTC
PublicDate: 2015-08-12 14:59:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3187
 http://subversion.apache.org/security/CVE-2015-3187-advisory.txt
 https://ubuntu.com/security/notices/USN-2721-1
Description:
 The svn_repos_trace_node_locations function in Apache Subversion before
 1.7.21 and 1.8.x before 1.8.14, when path-based authorization is used,
 allows remote authenticated users to obtain sensitive path information by
 reading the history of a node that has been moved from a hidden path.
Ubuntu-Description: 
Notes: 
Bugs: 
Priority: medium
Discovered-by: C. Michael Pilato
Assigned-to: mdeslaur
CVSS: 

Patches_subversion:
upstream_subversion: needs-triage
precise_subversion: released (1.6.17dfsg-3ubuntu3.5)
trusty_subversion: released (1.8.8-1ubuntu3.2)
trusty/esm_subversion: DNE (trusty was released [1.8.8-1ubuntu3.2])
vivid_subversion: released (1.8.10-5ubuntu1.1)
devel_subversion: released (1.8.13-1ubuntu2)