Vulnerability ID - CVE-2013-1968 - CVE-2013-2112 Vulnerable Package - subversion Vulnerability Descriptions - CVE-2013-1968 - Subversion repositories with the FSFS repository data store format can be corrupted by newline characters in filenames. A remote attacker with a malicious client could disrupt the service for other users using that repository. - CVE-2013-2112 - Subversion's svnserve server process may exit when an incoming TCP connection is closed early in the connection process. A remote attacker can cause svnserve to exit and thus deny service to users of the server. Affected Versions and Fixes - Oldstable (squeeze): Fixed in version 1.6.12dfsg-7. - Stable (wheezy): Fixed in version 1.6.17dfsg-4+deb7u3. - Unstable (sid): Will be fixed soon. Recommendation - Upgrade your subversion packages.