[svn.haxx.se] · SVN Dev · SVN Users · SVN Org · TSVN Dev · TSVN Users · Subclipse Dev · Subclipse Users · this month's index

Subversion vulnerabilities? [Re: Re: Is subversion SOX (sarbanes-oxley) compliant?]

From: Erik Huelsmann <ehuels_at_gmail.com>
Date: 2005-09-07 19:06:10 CEST

On 9/7/05, Goddard Lee <lee.goddard_at_easa.eu.int> wrote:> > > (http://www.cve.mitre.org/cgi-bin/cvekey.cgi?keyword=SVN)> > >> > > As you can expect, managers want our SCM to be SOX compliant. PVCS> > > claims to be SOX compliant. Is subversion SOX compliant?> >> > This question is non-sensible, since SOX is not about what> > products you use, but about the processes and controls in place.> >> > You can certainly be SOX compliant using Subversion, if you> > wanted to. --Dan> > Have the issues on the above URI be addressed yet? If not, we're certainly not going to be able to make our SVN public-facing :( Or I'm going to have to start learning SVN source code...
In all of the above cases, at the same time of revealing thevulnerability to the public, a new Subversion release was announced.
Hope that makes you feel better?
BTW: I think you should be able to find this exact information in theCHANGES file in the root of the source tree.
bye,

Erik.
Received on Wed Sep 7 19:10:17 2005

This is an archived mail posted to the Subversion Users mailing list.