June 10, 2004

More flaws foul security of open-source repository

Six more security flaws are found in the popular program for maintaining code under development.

According to a representative of the project that oversees the program, known as the Concurrent Versions System, the vulnerabilities include a flaw that could let an attacker take control of a CVS server from the Internet, putting the code repository's contents at risk. The flaws were discovered as part of an analysis of the program's code following the announcement last month of a similar set of issues.

Link: CNET News.com


  • Security
Click Here!