Debian 9858 Published by

A subversion security update has been released for Debian GNU/Linux 7 LTS



Package : subversion
Version : 1.6.17dfsg-4+deb7u12
CVE ID : CVE-2017-9800

It was discovered that there was a arbitrary code execution
vulnerability in the subversion revision control system via
malicious "svn+ssh" URLs in "svn:externals" and
"svn:sync-from-url".

For Debian 7 "Wheezy", this issue has been fixed in subversion
version 1.6.17dfsg-4+deb7u12.

We recommend that you upgrade your subversion packages.