CVE-2007-2448

描述

Subversion 1.4.3 and earlier does not properly implement the "partial access" privilege for users who have access to changed paths but not copied paths, which allows remote authenticated users to obtain sensitive information (revision properties) via svn (1) propget, (2) proplist, or (3) propedit.

受影響套件(1)

• Debian/subversionfrom 0, < 1.4.4dfsg1-1

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-2448