Rapid7 Vulnerability & Exploit Database

RHSA-2010:0918: cvs security update

Back to Search

RHSA-2010:0918: cvs security update

Severity
7
CVSS
(AV:L/AC:M/Au:N/C:C/I:C/A:C)
Published
11/05/2010
Created
07/25/2018
Added
01/04/2011
Modified
07/04/2017

Description

Concurrent Version System (CVS) is a version control system that can recordthe history of your files.An array index error, leading to a heap-based buffer overflow, was found inthe way CVS applied certain delta fragment changes from input files in theRCS (Revision Control System file) format. If an attacker in control of aCVS repository stored a specially-crafted RCS file in that repository, andthen tricked a remote victim into checking out (updating their CVSrepository tree) a revision containing that file, it could lead toarbitrary code execution with the privileges of the CVS server processon the system hosting the CVS repository. (CVE-2010-3846)Red Hat would like to thank Ralph Loader for reporting this issue.All users of cvs are advised to upgrade to this updated package, whichcontains a backported patch to correct this issue.

Solution(s)

  • redhat-upgrade-cvs
  • redhat-upgrade-cvs-debuginfo

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;