Your submission was sent successfully! Close

You have successfully unsubscribed! Close

Thank you for signing up for our newsletter!Close

CVE-2004-0180

Published: 1 June 2004

The client for CVS before 1.11 allows a remote malicious CVS server to create arbitrary files using certain RCS diff files that use absolute pathnames during checkouts or updates, a different vulnerability than CVE-2004-0405.

Priority

Unknown

Status

Package Release Status
cvs
Launchpad, Ubuntu, Debian
dapper
Released (1.12.9-17)
edgy
Released (1.12.9-17)
feisty
Released (1.12.9-17)
upstream Needs triage

gutsy
Released (1.12.9-17)