Security issue: $PATH _is_ set in pre-lock hook (Subversion 1.7)
From: Julian Ruhe <julian.ruhe_at_gmail.com>
Date: Thu, 24 Jul 2014 16:16:31 +0200
All of the sudden, starting somewhere prior to 1.7.13, the $PATH variable
env 1>&2
==================================
svn: E165001: Lock blocked by pre-lock hook (exit code 1) with output:
svn, version 1.7.17 (r1591372)
Copyright (C) 2014 The Apache Software Foundation.
The following repository access (RA) modules are available:
* ra_svn : Module for accessing a repository using the svn network protocol.
/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
=====
Testet with 1.7.17 debian/compiled, 1.7.13 RHEL 6,4 CollabNet
Greetings,
|
This is an archived mail posted to the Subversion Users mailing list.
This site is subject to the Apache Privacy Policy and the Apache Public Forum Archive Policy.