Gentoo Linux Advisory: cvs | Linux Today

Gentoo Linux Advisory: cvs

Written By
Web Webster
Web Webster
Dec 12, 2003

GENTOO LINUX SECURITY ANNOUNCEMENT 200312-04


GLSA: 200312-04
package: dev-util/cvs
summary: Fix for malformed module request vulnerability in cvs
severity: minimal
Gentoo bug: 35371
date: 2003-12-08
CVE: CAN-2003-0977
exploit: unknown
affected: <=1.11.9
fixed: >=1.11.10

DESCRIPTION:

Quote from <http://ccvs.cvshome.org/servlets/NewsItemView?newsID=84>:

Stable CVS 1.11.10 has been released. Stable releases contain
only bug fixes from previous versions of CVS. This release fixes a
security issue with no known exploits that could cause previous
versions of CVS to attempt to create files and directories in the
filesystem root. This release also fixes several issues relevant to
case insensitive filesystems and some other bugs. We recommend this
upgrade for all CVS clients and servers!

SOLUTION:

All Gentoo Linux machines with cvs installed should be updated
to use cvs-1.11.10 or higher.

        emerge sync
        emerge -pv '>=dev-util/cvs-1.11.10'
        emerge '>=dev-util/cvs-1.11.10'
        emerge clean

// end

Web Webster

Web Webster

Web Webster has more than 20 years of writing and editorial experience in the tech sector. He’s written and edited news, demand generation, user-focused, and thought leadership content for business software solutions, consumer tech, and Linux Today, he edits and writes for a portfolio of tech industry news and analysis websites including webopedia.com, and DatabaseJournal.com.

Linux Today Logo

LinuxToday is a trusted, contributor-driven news resource supporting all types of Linux users. Our thriving international community engages with us through social media and frequent content contributions aimed at solving problems ranging from personal computing to enterprise-level IT operations. LinuxToday serves as a home for a community that struggles to find comparable information elsewhere on the web.

Property of TechnologyAdvice. © 2026 TechnologyAdvice. All Rights Reserved

Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.