Subversion vulnerabilities? [Re: Re: Is subversion SOX (sarbanes-oxley) compliant?]

From: Erik Huelsmann <ehuels_at_gmail.com>
Date: 2005-09-07 19:06:10 CEST

On 9/7/05, Goddard Lee <lee.goddard_at_easa.eu.int> wrote:> > > (http://www.cve.mitre.org/cgi-bin/cvekey.cgi?keyword=SVN)> > >> > > As you can expect, managers want our SCM to be SOX compliant. PVCS> > > claims to be SOX compliant. Is subversion SOX compliant?> >> > This question is non-sensible, since SOX is not about what> > products you use, but about the processes and controls in place.> >> > You can certainly be SOX compliant using Subversion, if you> > wanted to. --Dan> > Have the issues on the above URI be addressed yet? If not, we're certainly not going to be able to make our SVN public-facing :( Or I'm going to have to start learning SVN source code...
In all of the above cases, at the same time of revealing thevulnerability to the public, a new Subversion release was announced.
Hope that makes you feel better?
BTW: I think you should be able to find this exact information in theCHANGES file in the root of the source tree.
bye,

Erik.
Received on Wed Sep 7 19:10:17 2005

This message: [ Message body ]
Next message: Daniel Berlin: "RE: Re: Is subversion SOX (sarbanes-oxley) compliant?"
Previous message: Mark Phippard: "Re: Is subversion SOX (sarbanes-oxley) compliant?"
In reply to: Goddard Lee: "RE: Re: Is subversion SOX (sarbanes-oxley) compliant?"
Next in thread: Goddard Lee: "RE: Subversion vulnerabilities? [Re: Re: Is subversion SOX (sarbanes-oxley) compliant?]"
Maybe reply: Goddard Lee: "RE: Subversion vulnerabilities? [Re: Re: Is subversion SOX (sarbanes-oxley) compliant?]"

Contemporary messages sorted: [ By Date ] [ By Thread ] [ By Subject ] [ By Author ] [ By messages with attachments ]