The remote host is missing an update to subversion announced via advisory FEDORA-2009-8449.

Apply the appropriate updates. This update can be installed with the yum update program. Use su -c 'yum update subversion' at the command line. For more information, refer to Managing Software with yum, available at http://docs.fedoraproject.org/yum/. https://secure1.securityspace.com/smysecure/catid.html?in=FEDORA-2009-8449

Update Information: This update includes the latest stable release of Subversion, fixing many bugs and a security issue: Matt Lewis reported multiple heap overflow flaws in Subversion (servers and clients) when parsing binary deltas. Malicious users with commit access to a vulnerable server could uses these flaws to cause a heap overflow on the server running Subversion. A malicious Subversion server could use these flaws to cause a heap overflow on vulnerable clients when they attempt to checkout or update, resulting in a crash or, possibly, arbitrary code execution on the vulnerable client. (CVE-2009-2411) ChangeLog: * Fri Aug 7 2009 Joe Orton 1.6.4-2 - update to 1.6.4 * Thu Jul 23 2009 Joe Orton 1.6.3-2 - remove -devel dependency on -gnome, -kde (#513313)

• https://bugzilla.redhat.com/show_bug.cgi?id=514744

---

Updated on 2015-03-25