Linux Today: Linux News On Internet Time.

CNET News: More Flaws Foul Security of Open-Source Repository

Jun 10, 2004, 14:45 (3 Talkback[s])
(Other stories by Robert Lemos)

"Security researchers have found at least six more flaws in the open-software world's most popular program for maintaining code under development.

"According to a representative of the project that oversees the program, known as the Concurrent Versions System, the vulnerabilities include a flaw that could let an attacker take control of a CVS server from the Internet, putting the code repository's contents at risk. The flaws were discovered as part of an analysis of the program's code following the announcement last month of a similar set of issues..."

Complete Story

Related Stories: