Download
| Alert*
DSA-3940-1 cvs -- cvs
It was discovered that CVS, a centralised version control system, did not correctly handle maliciously constructed repository URLs, which allowed an attacker to run an arbitrary shell command.
|