DescriptionThe SVN revision view (lib/vclib/svn/svn_repos.py) in ViewVC before 1.1.15 does not properly handle log messages when a readable path is copied from an unreadable path, which allows remote attackers to obtain sensitive information, related to a "log msg leak."
Overall state of this security issue: Resolved
This issue is currently rated as having moderate severity.
|National Vulnerability Database|
SUSE Security Advisories:
- openSUSE-SU-2012:0831-1, published Wed, 4 Jul 2012 09:09:57 +0200 (CEST)
List of released packages
|Product(s)||Fixed package version(s)||References|
|openSUSE Tumbleweed|| ||Patchnames: |
openSUSE Tumbleweed GA viewvc-1.1.24-2.1
SUSE Timeline for this CVECVE page created: Fri Jun 28 12:54:26 2013
CVE page last modified: Fri Oct 7 12:46:17 2022