Security Advisory Important: subversion security update

Advisory: RHSA-2009:1203-1
Type: Security Advisory
Severity: Important
Issued on: 2009-08-10
Last updated on: 2009-08-10
Affected Products: RHEL Desktop Workstation (v. 5 client)
Red Hat Desktop (v. 4)
Red Hat Enterprise Linux (v. 5 server)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux AS (v. 4.8.z)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux ES (v. 4.8.z)
Red Hat Enterprise Linux EUS (v. 5.3.z server)
Red Hat Enterprise Linux WS (v. 4)
OVAL: com.redhat.rhsa-20091203.xml
CVEs (cve.mitre.org): CVE-2009-2411

Details

Updated subversion packages that fix multiple security issues are now
available for Red Hat Enterprise Linux 4 and 5.

This update has been rated as having important security impact by the Red
Hat Security Response Team.

Subversion (SVN) is a concurrent version control system which enables one
or more users to collaborate in developing and maintaining a hierarchy of
files and directories while keeping a history of all changes.

Matt Lewis, of Google, reported multiple heap overflow flaws in Subversion
(server and client) when parsing binary deltas. A malicious user with
commit access to a server could use these flaws to cause a heap overflow on
that server. A malicious server could use these flaws to cause a heap
overflow on a client when it attempts to checkout or update. These heap
overflows can result in a crash or, possibly, arbitrary code execution.
(CVE-2009-2411)

All Subversion users should upgrade to these updated packages, which
contain a backported patch to correct these issues. After installing the
updated packages, the Subversion server must be restarted for the update
to take effect: restart httpd if you are using mod_dav_svn, or restart
svnserve if it is used.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/docs/DOC-11259

Updated packages

RHEL Desktop Workstation (v. 5 client)
SRPMS:
subversion-1.4.2-4.el5_3.1.src.rpm     d3b2f42caeaef9e34263bcc650a5f9e0
 
IA-32:
mod_dav_svn-1.4.2-4.el5_3.1.i386.rpm     49ff9ca944969afe08c908eecc36b2d3
subversion-1.4.2-4.el5_3.1.i386.rpm     916647fada21d53cd5a296a9ad80750e
subversion-devel-1.4.2-4.el5_3.1.i386.rpm     e32a9aaac8589c85ddf59556b985cdcd
subversion-javahl-1.4.2-4.el5_3.1.i386.rpm     0a5d7b2141c69978959817199d85e2a1
subversion-perl-1.4.2-4.el5_3.1.i386.rpm     4ece569726ac4d2af4afa63e08f2cede
subversion-ruby-1.4.2-4.el5_3.1.i386.rpm     c42a164f07447742b206a2ccdaa5247b
 
x86_64:
mod_dav_svn-1.4.2-4.el5_3.1.x86_64.rpm     24e9abbb5b064d18e1419366fe2affac
subversion-1.4.2-4.el5_3.1.i386.rpm     916647fada21d53cd5a296a9ad80750e
subversion-1.4.2-4.el5_3.1.x86_64.rpm     c98103dc46d288632838ce9c6c1a847e
subversion-devel-1.4.2-4.el5_3.1.i386.rpm     e32a9aaac8589c85ddf59556b985cdcd
subversion-devel-1.4.2-4.el5_3.1.x86_64.rpm     266d703cfa1302be71d24ed4d664c958
subversion-javahl-1.4.2-4.el5_3.1.x86_64.rpm     8946bb2a910d605c4426c188efaff84f
subversion-perl-1.4.2-4.el5_3.1.x86_64.rpm     33cbb39820aac34644abeea2f7ba5dc4
subversion-ruby-1.4.2-4.el5_3.1.x86_64.rpm     30ca88f91a74ffefc42afa7b8b13d729
 
Red Hat Desktop (v. 4)
SRPMS:
subversion-1.1.4-3.el4_8.2.src.rpm     d03b73e0b41c9f48933f267b5566c0a8
 
IA-32:
mod_dav_svn-1.1.4-3.el4_8.2.i386.rpm     c817486671c349c95bfceb789c833651
subversion-1.1.4-3.el4_8.2.i386.rpm     41256fcb3b4561ac451ee78b3c54ad1d
subversion-devel-1.1.4-3.el4_8.2.i386.rpm     40a6dcc0b6a75118eddf7d3b7e5b5219
subversion-perl-1.1.4-3.el4_8.2.i386.rpm     f776061c0e4774982ae7711f23e8d7d5
 
x86_64:
mod_dav_svn-1.1.4-3.el4_8.2.x86_64.rpm     6655db724a67ff541afa76ebc42622cd
subversion-1.1.4-3.el4_8.2.x86_64.rpm     03d9063f2bfb2855ccba2e492c1abf01
subversion-devel-1.1.4-3.el4_8.2.x86_64.rpm     487ce891cc0449ff488c1633937e6055
subversion-perl-1.1.4-3.el4_8.2.x86_64.rpm     838b9e890b2aa76030125e08738732b7
 
Red Hat Enterprise Linux (v. 5 server)
SRPMS:
subversion-1.4.2-4.el5_3.1.src.rpm     d3b2f42caeaef9e34263bcc650a5f9e0
 
IA-32:
mod_dav_svn-1.4.2-4.el5_3.1.i386.rpm     49ff9ca944969afe08c908eecc36b2d3
subversion-1.4.2-4.el5_3.1.i386.rpm     916647fada21d53cd5a296a9ad80750e
subversion-devel-1.4.2-4.el5_3.1.i386.rpm     e32a9aaac8589c85ddf59556b985cdcd
subversion-javahl-1.4.2-4.el5_3.1.i386.rpm     0a5d7b2141c69978959817199d85e2a1
subversion-perl-1.4.2-4.el5_3.1.i386.rpm     4ece569726ac4d2af4afa63e08f2cede
subversion-ruby-1.4.2-4.el5_3.1.i386.rpm     c42a164f07447742b206a2ccdaa5247b
 
IA-64:
mod_dav_svn-1.4.2-4.el5_3.1.ia64.rpm     8095435f88b6dac5540af579078bb1be
subversion-1.4.2-4.el5_3.1.ia64.rpm     ebdf4d033d1a68a18fdd30f6693aea00
subversion-devel-1.4.2-4.el5_3.1.ia64.rpm     ecc3f5b1e4a7d3c08d43778d20807466
subversion-javahl-1.4.2-4.el5_3.1.ia64.rpm     28e41e1ff661e107555b948b16815cb1
subversion-perl-1.4.2-4.el5_3.1.ia64.rpm     d404989bd9cb78fc1fa3b878fa11c143
subversion-ruby-1.4.2-4.el5_3.1.ia64.rpm     611a7d8612bb4df08a1aa2de9a119be2
 
PPC:
mod_dav_svn-1.4.2-4.el5_3.1.ppc.rpm     ad45044daf886268482927d62d21dd95
subversion-1.4.2-4.el5_3.1.ppc.rpm     8a7a348e5860d8ba59870b718b0f8e56
subversion-1.4.2-4.el5_3.1.ppc64.rpm     4ac98101c9bac3065347a58b2318709e
subversion-devel-1.4.2-4.el5_3.1.ppc.rpm     a71fbe6a7ab7acb999022e214bd3798f
subversion-devel-1.4.2-4.el5_3.1.ppc64.rpm     8d3e00222e2f35dcff2bcc2819092bf9
subversion-javahl-1.4.2-4.el5_3.1.ppc.rpm     509d5c8f126fcb6bf31e443b6c0897ba
subversion-perl-1.4.2-4.el5_3.1.ppc.rpm     ac22703696c25dc15d18f919fab7102f
subversion-ruby-1.4.2-4.el5_3.1.ppc.rpm     1b3977f7df820563210f092e443aadcc
 
s390x:
mod_dav_svn-1.4.2-4.el5_3.1.s390x.rpm     2bd6cbb824f2a5dcc298139533fc9750
subversion-1.4.2-4.el5_3.1.s390.rpm     e21f6919960f31ab5397bd8d2a026ad9
subversion-1.4.2-4.el5_3.1.s390x.rpm     e44ce32f6d572cd912a1fde6ac868e41
subversion-devel-1.4.2-4.el5_3.1.s390.rpm     c776c90c7ab797493d2083b598e44891
subversion-devel-1.4.2-4.el5_3.1.s390x.rpm     2b64dd72569d46be64f1b672d1ec7072
subversion-javahl-1.4.2-4.el5_3.1.s390x.rpm     e6c61d818f499e5f5510055f00ef39cd
subversion-perl-1.4.2-4.el5_3.1.s390x.rpm     cb7be1de858b738c02c5ccda66bd5171
subversion-ruby-1.4.2-4.el5_3.1.s390x.rpm     d397c30ad29e44446a3390a5f0dd9fd5
 
x86_64:
mod_dav_svn-1.4.2-4.el5_3.1.x86_64.rpm     24e9abbb5b064d18e1419366fe2affac
subversion-1.4.2-4.el5_3.1.i386.rpm     916647fada21d53cd5a296a9ad80750e
subversion-1.4.2-4.el5_3.1.x86_64.rpm     c98103dc46d288632838ce9c6c1a847e
subversion-devel-1.4.2-4.el5_3.1.i386.rpm     e32a9aaac8589c85ddf59556b985cdcd
subversion-devel-1.4.2-4.el5_3.1.x86_64.rpm     266d703cfa1302be71d24ed4d664c958
subversion-javahl-1.4.2-4.el5_3.1.x86_64.rpm     8946bb2a910d605c4426c188efaff84f
subversion-perl-1.4.2-4.el5_3.1.x86_64.rpm     33cbb39820aac34644abeea2f7ba5dc4
subversion-ruby-1.4.2-4.el5_3.1.x86_64.rpm     30ca88f91a74ffefc42afa7b8b13d729
 
Red Hat Enterprise Linux AS (v. 4)
SRPMS:
subversion-1.1.4-3.el4_8.2.src.rpm     d03b73e0b41c9f48933f267b5566c0a8
 
IA-32:
mod_dav_svn-1.1.4-3.el4_8.2.i386.rpm     c817486671c349c95bfceb789c833651
subversion-1.1.4-3.el4_8.2.i386.rpm     41256fcb3b4561ac451ee78b3c54ad1d
subversion-devel-1.1.4-3.el4_8.2.i386.rpm     40a6dcc0b6a75118eddf7d3b7e5b5219
subversion-perl-1.1.4-3.el4_8.2.i386.rpm     f776061c0e4774982ae7711f23e8d7d5
 
IA-64:
mod_dav_svn-1.1.4-3.el4_8.2.ia64.rpm     1e88cc952587fbeecc0f4f214ef5060e
subversion-1.1.4-3.el4_8.2.ia64.rpm     2efde8dad334160a3ac2cee7ea2b8cb5
subversion-devel-1.1.4-3.el4_8.2.ia64.rpm     5eb28d63164b13e6d9fecf12b1e27c66
subversion-perl-1.1.4-3.el4_8.2.ia64.rpm     03f654da8939267c044a522a65082fce
 
PPC:
mod_dav_svn-1.1.4-3.el4_8.2.ppc.rpm     e1925fb2050d49062349fddb60e257c8
subversion-1.1.4-3.el4_8.2.ppc.rpm     e6e8b4c851e144dfdbda54ca0df4e227
subversion-devel-1.1.4-3.el4_8.2.ppc.rpm     066961aa602e7220f7864ab5e53d8582
subversion-perl-1.1.4-3.el4_8.2.ppc.rpm     b7f99abea2be120d92d270c2689a2c71
 
s390:
mod_dav_svn-1.1.4-3.el4_8.2.s390.rpm     bbcc7492030be2fc63c7a6774d9dfe29
subversion-1.1.4-3.el4_8.2.s390.rpm     aa4511338722338bf2551d05b0ba0a09
subversion-devel-1.1.4-3.el4_8.2.s390.rpm     353440995a86e0d166ee600ae327e2e1
subversion-perl-1.1.4-3.el4_8.2.s390.rpm     56ca4184080f81d587a3e464a0a1ba08
 
s390x:
mod_dav_svn-1.1.4-3.el4_8.2.s390x.rpm     a7b28796adb31a79255fc2b2f6be1f78
subversion-1.1.4-3.el4_8.2.s390x.rpm     979ed22409ab9abcd19bc451748f5cec
subversion-devel-1.1.4-3.el4_8.2.s390x.rpm     3116efc8f3e55a1bccf93a0b7911afc9
subversion-perl-1.1.4-3.el4_8.2.s390x.rpm     365f00c9de475e202e8c18d3e97d96c0
 
x86_64:
mod_dav_svn-1.1.4-3.el4_8.2.x86_64.rpm     6655db724a67ff541afa76ebc42622cd
subversion-1.1.4-3.el4_8.2.x86_64.rpm     03d9063f2bfb2855ccba2e492c1abf01
subversion-devel-1.1.4-3.el4_8.2.x86_64.rpm     487ce891cc0449ff488c1633937e6055
subversion-perl-1.1.4-3.el4_8.2.x86_64.rpm     838b9e890b2aa76030125e08738732b7
 
Red Hat Enterprise Linux AS (v. 4.8.z)
SRPMS:
subversion-1.1.4-3.el4_8.2.src.rpm     d03b73e0b41c9f48933f267b5566c0a8
 
IA-32:
mod_dav_svn-1.1.4-3.el4_8.2.i386.rpm     c817486671c349c95bfceb789c833651
subversion-1.1.4-3.el4_8.2.i386.rpm     41256fcb3b4561ac451ee78b3c54ad1d
subversion-devel-1.1.4-3.el4_8.2.i386.rpm     40a6dcc0b6a75118eddf7d3b7e5b5219
subversion-perl-1.1.4-3.el4_8.2.i386.rpm     f776061c0e4774982ae7711f23e8d7d5
 
IA-64:
mod_dav_svn-1.1.4-3.el4_8.2.ia64.rpm     1e88cc952587fbeecc0f4f214ef5060e
subversion-1.1.4-3.el4_8.2.ia64.rpm     2efde8dad334160a3ac2cee7ea2b8cb5
subversion-devel-1.1.4-3.el4_8.2.ia64.rpm     5eb28d63164b13e6d9fecf12b1e27c66
subversion-perl-1.1.4-3.el4_8.2.ia64.rpm     03f654da8939267c044a522a65082fce
 
PPC:
mod_dav_svn-1.1.4-3.el4_8.2.ppc.rpm     e1925fb2050d49062349fddb60e257c8
subversion-1.1.4-3.el4_8.2.ppc.rpm     e6e8b4c851e144dfdbda54ca0df4e227
subversion-devel-1.1.4-3.el4_8.2.ppc.rpm     066961aa602e7220f7864ab5e53d8582
subversion-perl-1.1.4-3.el4_8.2.ppc.rpm     b7f99abea2be120d92d270c2689a2c71
 
s390:
mod_dav_svn-1.1.4-3.el4_8.2.s390.rpm     bbcc7492030be2fc63c7a6774d9dfe29
subversion-1.1.4-3.el4_8.2.s390.rpm     aa4511338722338bf2551d05b0ba0a09
subversion-devel-1.1.4-3.el4_8.2.s390.rpm     353440995a86e0d166ee600ae327e2e1
subversion-perl-1.1.4-3.el4_8.2.s390.rpm     56ca4184080f81d587a3e464a0a1ba08
 
s390x:
mod_dav_svn-1.1.4-3.el4_8.2.s390x.rpm     a7b28796adb31a79255fc2b2f6be1f78
subversion-1.1.4-3.el4_8.2.s390x.rpm     979ed22409ab9abcd19bc451748f5cec
subversion-devel-1.1.4-3.el4_8.2.s390x.rpm     3116efc8f3e55a1bccf93a0b7911afc9
subversion-perl-1.1.4-3.el4_8.2.s390x.rpm     365f00c9de475e202e8c18d3e97d96c0
 
x86_64:
mod_dav_svn-1.1.4-3.el4_8.2.x86_64.rpm     6655db724a67ff541afa76ebc42622cd
subversion-1.1.4-3.el4_8.2.x86_64.rpm     03d9063f2bfb2855ccba2e492c1abf01
subversion-devel-1.1.4-3.el4_8.2.x86_64.rpm     487ce891cc0449ff488c1633937e6055
subversion-perl-1.1.4-3.el4_8.2.x86_64.rpm     838b9e890b2aa76030125e08738732b7
 
Red Hat Enterprise Linux ES (v. 4)
SRPMS:
subversion-1.1.4-3.el4_8.2.src.rpm     d03b73e0b41c9f48933f267b5566c0a8
 
IA-32:
mod_dav_svn-1.1.4-3.el4_8.2.i386.rpm     c817486671c349c95bfceb789c833651
subversion-1.1.4-3.el4_8.2.i386.rpm     41256fcb3b4561ac451ee78b3c54ad1d
subversion-devel-1.1.4-3.el4_8.2.i386.rpm     40a6dcc0b6a75118eddf7d3b7e5b5219
subversion-perl-1.1.4-3.el4_8.2.i386.rpm     f776061c0e4774982ae7711f23e8d7d5
 
IA-64:
mod_dav_svn-1.1.4-3.el4_8.2.ia64.rpm     1e88cc952587fbeecc0f4f214ef5060e
subversion-1.1.4-3.el4_8.2.ia64.rpm     2efde8dad334160a3ac2cee7ea2b8cb5
subversion-devel-1.1.4-3.el4_8.2.ia64.rpm     5eb28d63164b13e6d9fecf12b1e27c66
subversion-perl-1.1.4-3.el4_8.2.ia64.rpm     03f654da8939267c044a522a65082fce
 
x86_64:
mod_dav_svn-1.1.4-3.el4_8.2.x86_64.rpm     6655db724a67ff541afa76ebc42622cd
subversion-1.1.4-3.el4_8.2.x86_64.rpm     03d9063f2bfb2855ccba2e492c1abf01
subversion-devel-1.1.4-3.el4_8.2.x86_64.rpm     487ce891cc0449ff488c1633937e6055
subversion-perl-1.1.4-3.el4_8.2.x86_64.rpm     838b9e890b2aa76030125e08738732b7
 
Red Hat Enterprise Linux ES (v. 4.8.z)
SRPMS:
subversion-1.1.4-3.el4_8.2.src.rpm     d03b73e0b41c9f48933f267b5566c0a8
 
IA-32:
mod_dav_svn-1.1.4-3.el4_8.2.i386.rpm     c817486671c349c95bfceb789c833651
subversion-1.1.4-3.el4_8.2.i386.rpm     41256fcb3b4561ac451ee78b3c54ad1d
subversion-devel-1.1.4-3.el4_8.2.i386.rpm     40a6dcc0b6a75118eddf7d3b7e5b5219
subversion-perl-1.1.4-3.el4_8.2.i386.rpm     f776061c0e4774982ae7711f23e8d7d5
 
IA-64:
mod_dav_svn-1.1.4-3.el4_8.2.ia64.rpm     1e88cc952587fbeecc0f4f214ef5060e
subversion-1.1.4-3.el4_8.2.ia64.rpm     2efde8dad334160a3ac2cee7ea2b8cb5
subversion-devel-1.1.4-3.el4_8.2.ia64.rpm     5eb28d63164b13e6d9fecf12b1e27c66
subversion-perl-1.1.4-3.el4_8.2.ia64.rpm     03f654da8939267c044a522a65082fce
 
x86_64:
mod_dav_svn-1.1.4-3.el4_8.2.x86_64.rpm     6655db724a67ff541afa76ebc42622cd
subversion-1.1.4-3.el4_8.2.x86_64.rpm     03d9063f2bfb2855ccba2e492c1abf01
subversion-devel-1.1.4-3.el4_8.2.x86_64.rpm     487ce891cc0449ff488c1633937e6055
subversion-perl-1.1.4-3.el4_8.2.x86_64.rpm     838b9e890b2aa76030125e08738732b7
 
Red Hat Enterprise Linux EUS (v. 5.3.z server)
SRPMS:
subversion-1.4.2-4.el5_3.1.src.rpm     d3b2f42caeaef9e34263bcc650a5f9e0
 
IA-32:
mod_dav_svn-1.4.2-4.el5_3.1.i386.rpm     49ff9ca944969afe08c908eecc36b2d3
subversion-1.4.2-4.el5_3.1.i386.rpm     916647fada21d53cd5a296a9ad80750e
subversion-devel-1.4.2-4.el5_3.1.i386.rpm     e32a9aaac8589c85ddf59556b985cdcd
subversion-javahl-1.4.2-4.el5_3.1.i386.rpm     0a5d7b2141c69978959817199d85e2a1
subversion-perl-1.4.2-4.el5_3.1.i386.rpm     4ece569726ac4d2af4afa63e08f2cede
subversion-ruby-1.4.2-4.el5_3.1.i386.rpm     c42a164f07447742b206a2ccdaa5247b
 
IA-64:
mod_dav_svn-1.4.2-4.el5_3.1.ia64.rpm     8095435f88b6dac5540af579078bb1be
subversion-1.4.2-4.el5_3.1.ia64.rpm     ebdf4d033d1a68a18fdd30f6693aea00
subversion-devel-1.4.2-4.el5_3.1.ia64.rpm     ecc3f5b1e4a7d3c08d43778d20807466
subversion-javahl-1.4.2-4.el5_3.1.ia64.rpm     28e41e1ff661e107555b948b16815cb1
subversion-perl-1.4.2-4.el5_3.1.ia64.rpm     d404989bd9cb78fc1fa3b878fa11c143
subversion-ruby-1.4.2-4.el5_3.1.ia64.rpm     611a7d8612bb4df08a1aa2de9a119be2
 
PPC:
mod_dav_svn-1.4.2-4.el5_3.1.ppc.rpm     ad45044daf886268482927d62d21dd95
subversion-1.4.2-4.el5_3.1.ppc.rpm     8a7a348e5860d8ba59870b718b0f8e56
subversion-1.4.2-4.el5_3.1.ppc64.rpm     4ac98101c9bac3065347a58b2318709e
subversion-devel-1.4.2-4.el5_3.1.ppc.rpm     a71fbe6a7ab7acb999022e214bd3798f
subversion-devel-1.4.2-4.el5_3.1.ppc64.rpm     8d3e00222e2f35dcff2bcc2819092bf9
subversion-javahl-1.4.2-4.el5_3.1.ppc.rpm     509d5c8f126fcb6bf31e443b6c0897ba
subversion-perl-1.4.2-4.el5_3.1.ppc.rpm     ac22703696c25dc15d18f919fab7102f
subversion-ruby-1.4.2-4.el5_3.1.ppc.rpm     1b3977f7df820563210f092e443aadcc
 
s390x:
mod_dav_svn-1.4.2-4.el5_3.1.s390x.rpm     2bd6cbb824f2a5dcc298139533fc9750
subversion-1.4.2-4.el5_3.1.s390.rpm     e21f6919960f31ab5397bd8d2a026ad9
subversion-1.4.2-4.el5_3.1.s390x.rpm     e44ce32f6d572cd912a1fde6ac868e41
subversion-devel-1.4.2-4.el5_3.1.s390.rpm     c776c90c7ab797493d2083b598e44891
subversion-devel-1.4.2-4.el5_3.1.s390x.rpm     2b64dd72569d46be64f1b672d1ec7072
subversion-javahl-1.4.2-4.el5_3.1.s390x.rpm     e6c61d818f499e5f5510055f00ef39cd
subversion-perl-1.4.2-4.el5_3.1.s390x.rpm     cb7be1de858b738c02c5ccda66bd5171
subversion-ruby-1.4.2-4.el5_3.1.s390x.rpm     d397c30ad29e44446a3390a5f0dd9fd5
 
x86_64:
mod_dav_svn-1.4.2-4.el5_3.1.x86_64.rpm     24e9abbb5b064d18e1419366fe2affac
subversion-1.4.2-4.el5_3.1.i386.rpm     916647fada21d53cd5a296a9ad80750e
subversion-1.4.2-4.el5_3.1.x86_64.rpm     c98103dc46d288632838ce9c6c1a847e
subversion-devel-1.4.2-4.el5_3.1.i386.rpm     e32a9aaac8589c85ddf59556b985cdcd
subversion-devel-1.4.2-4.el5_3.1.x86_64.rpm     266d703cfa1302be71d24ed4d664c958
subversion-javahl-1.4.2-4.el5_3.1.x86_64.rpm     8946bb2a910d605c4426c188efaff84f
subversion-perl-1.4.2-4.el5_3.1.x86_64.rpm     33cbb39820aac34644abeea2f7ba5dc4
subversion-ruby-1.4.2-4.el5_3.1.x86_64.rpm     30ca88f91a74ffefc42afa7b8b13d729
 
Red Hat Enterprise Linux WS (v. 4)
SRPMS:
subversion-1.1.4-3.el4_8.2.src.rpm     d03b73e0b41c9f48933f267b5566c0a8
 
IA-32:
mod_dav_svn-1.1.4-3.el4_8.2.i386.rpm     c817486671c349c95bfceb789c833651
subversion-1.1.4-3.el4_8.2.i386.rpm     41256fcb3b4561ac451ee78b3c54ad1d
subversion-devel-1.1.4-3.el4_8.2.i386.rpm     40a6dcc0b6a75118eddf7d3b7e5b5219
subversion-perl-1.1.4-3.el4_8.2.i386.rpm     f776061c0e4774982ae7711f23e8d7d5
 
IA-64:
mod_dav_svn-1.1.4-3.el4_8.2.ia64.rpm     1e88cc952587fbeecc0f4f214ef5060e
subversion-1.1.4-3.el4_8.2.ia64.rpm     2efde8dad334160a3ac2cee7ea2b8cb5
subversion-devel-1.1.4-3.el4_8.2.ia64.rpm     5eb28d63164b13e6d9fecf12b1e27c66
subversion-perl-1.1.4-3.el4_8.2.ia64.rpm     03f654da8939267c044a522a65082fce
 
x86_64:
mod_dav_svn-1.1.4-3.el4_8.2.x86_64.rpm     6655db724a67ff541afa76ebc42622cd
subversion-1.1.4-3.el4_8.2.x86_64.rpm     03d9063f2bfb2855ccba2e492c1abf01
subversion-devel-1.1.4-3.el4_8.2.x86_64.rpm     487ce891cc0449ff488c1633937e6055
subversion-perl-1.1.4-3.el4_8.2.x86_64.rpm     838b9e890b2aa76030125e08738732b7
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

514744 - CVE-2009-2411 subversion: multiple heap overflow issues


References

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2411
http://www.redhat.com/security/updates/classification/#important

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/