Back to search
CVE-2012-3357
Published: Jul 22, 2012
Modified: Aug 6, 2024
PUBLISHED
Description
The SVN revision view (lib/vclib/svn/svn_repos.py) in ViewVC before 1.1.15 does not properly handle log messages when a readable path is copied from an unreadable path, which allows remote attackers to obtain sensitive information, related to a "log msg leak."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
[oss-security] 20120625 Re: CVE Request: viewvc
mailing-list
x_refsource_MLIST
viewvc-svnra-info-disclosure(76615)
vdb-entry
x_refsource_XF
54199
vdb-entry
x_refsource_BID
openSUSE-SU-2012:0831
vendor-advisory
x_refsource_SUSE
https://wiki.mageia.org/en/Support/Advisories/MGASA-2012-0175
x_refsource_CONFIRM
http://viewvc.tigris.org/source/browse/viewvc?view=rev&revision=2758
x_refsource_CONFIRM
83227
vdb-entry
x_refsource_OSVDB
MDVSA-2013:134
vendor-advisory
x_refsource_MANDRIVA
DSA-2563
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now