VisualSVN Server patch release 2.0.5 is available. This is a security release that addresses critical vulnerabilities in Subversion and Apache.
VisualSVN Server 2.0.5 contains the following changes for version 2.0: * Updated to Subversion 1.6.4 with fix for critical vulnerability: http://subversion.tigris.org/security/CVE-2009-2411-advisory.txt * Updated to Apache 2.2.12 with fixes for critical vulnerabilities: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1891 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1195 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1890 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1191 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0023 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1955 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1956 Upgrade is strongly recommended for all users because of the fact that DoS attacks and arbitrary code execution are possible on the server. You can get the latest version of VisualSVN Server from the official download page at: http://www.visualsvn.com/server/download/ -- With best regards, Danil Shopyrin VisualSVN Team
