Forum Thread: v1.6.17 Update is not available, any help?

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Programs

Relating to this vendor:
Apache Software Foundation
And, this specific program:
Apache Subversion 1.x

This thread has been marked as locked.
Karunakar Neriyanuru v1.6.17 Update is not available, any help?
Member 16th Jun, 2011 08:16
Ranking: 0
Posts: 3
User Since: 11th Jan, 2011
System Score: N/A
Location: N/A

---START---

Program Name:
Apache Subversion 1.x

Security State:
Insecure

Download Link:
http://subversion.apache.org/packages.html

Instances Found:
C:\Program Files\SlikSvn\bin\svn.exe, version: 1.6.16.24953

Last System Scan (localtime):
14. Jun 2011, 19:00

Operating System:
Microsoft Windows 7,

---END---

This user no longer exists RE: v1.6.17 Update is not available, any help?
Secunia Official 16th Jun, 2011 08:21
Hi

SilkSvn 1.6.17 should be available here.
http://www.sliksvn.com/en/download

Does this solve your problem?
Karunakar Neriyanuru RE: v1.6.17 Update is not available, any help?
Member 16th Jun, 2011 08:22
Score: 0
Posts: 3
User Since: 11th Jan 2011
System Score: N/A
Location: N/A
Just noticed that v1.6.17 is released for SilkSVN now.
Was this reply relevant?
+0
-0
Karunakar Neriyanuru RE: v1.6.17 Update is not available, any help?
Member 16th Jun, 2011 08:23
Score: 0
Posts: 3
User Since: 11th Jan 2011
System Score: N/A
Location: N/A
Yes, thanks! Till yesterday there was no v1.6.17 for SilkSVN. It is available now.
Was this reply relevant?
+0
-0
NevilleB RE: v1.6.17 Update is not available, any help?
Member 16th Jun, 2011 08:39
Score: 0
Posts: 1
User Since: 16th Jun 2011
System Score: N/A
Location: IE
SlikSvn were a bit slow in updating their binary distribution. Its available now.

Being devils advocate for a moment, the vulnerabilities are in the mod_dav_svn module of the full subversion package.

It may be that as a svn client package, SlikSvn doesn't include that element (its not obviously there on my system).

So producing an update may not have been at the top of their priority list if, as I assume, their distribution was not vulnerable.

It would be nice if PSI could distinguish between client, server and combined distributions of svn.
Was this reply relevant?
+0
-0

This thread has been marked as locked.