Subversion: Multiple vulnerabilities

Background

Subversion is a versioning system designed to be a replacement for CVS.

Description

Multiple vulnerabilities have been discovered in Subversion. Please review the CVE identifiers referenced below for details.

Impact

A remote attacker could cause a Denial of Service condition or obtain sensitive information. A local attacker could escalate his privileges to the user running svnserve.

Workaround

There is no known workaround at this time.

Resolution

All Subversion users should upgrade to the latest version:

 # emerge --sync
 # emerge --ask --oneshot --verbose ">=dev-vcs/subversion-1.7.13"