dcsimg
Linux Today: Linux News On Internet Time.




More on LinuxToday


CNET News: Flaws Drill Holes in Open-Source Repository

May 20, 2004, 17:00 (7 Talkback[s])
(Other stories by Robert Lemos)

"Flaws in two popular source code repository applications could allow attackers to access and corrupt open-source software projects, a security researcher said Wednesday.

"One vulnerability affects the Concurrent Versions System (CVS), an application used by many developers to store program code. The other flaw affects a newer, less widely used system known as Subversion, said Stefan Esser, the researcher who discovered the security holes..."

Complete Story

Related Stories: