CVE-2004-0749

Publication date 23 December 2004

Last updated 24 July 2024

Ubuntu priority

The mod_authz_svn module in Subversion 1.0.7 and earlier does not properly restrict access to all metadata on unreadable paths, which could allow remote attackers to gain sensitive information via (1) svn log -v, (2) svn propget, or (3) svn blame, and other commands that follow renames.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
subversion	7.04 feisty	Fixed 1.3.1-3ubuntu1
	6.10 edgy	Fixed 1.3.1-3ubuntu1
	6.06 LTS dapper	Fixed 1.3.1-3ubuntu1

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2004-0749