Arthur Barrett arthur.barrett@march-hare.com [cvsgui-dev]
2018-02-05 03:01:24 UTC
We have been informed of "Insecure Library Loading Vulnerability" in WinCVS (all versions) a by "hyp3rlinx / apparition security".
March Hare Software have assigned this as Vulnerability or Exposure Note 7254:
http://customer.march-hare.com/webtools/bugzilla/ttshow_bug.cgi?tt=1&id=7254
We released a fix for the CVS Suite edition on WinCVS on Friday 2nd Feb 2018 and will be announcing the fix on our twitter feed and to our customers later today 5 Feb 2018.
https://www.march-hare.com/cvspro/
I have posted full details on SourceForge using 'private' ticket 1012:
https://sourceforge.net/p/cvsgui/bugs/1012/
Regards,
Arthur Barrett
Product Manager
March Hare Software have assigned this as Vulnerability or Exposure Note 7254:
http://customer.march-hare.com/webtools/bugzilla/ttshow_bug.cgi?tt=1&id=7254
We released a fix for the CVS Suite edition on WinCVS on Friday 2nd Feb 2018 and will be announcing the fix on our twitter feed and to our customers later today 5 Feb 2018.
https://www.march-hare.com/cvspro/
I have posted full details on SourceForge using 'private' ticket 1012:
https://sourceforge.net/p/cvsgui/bugs/1012/
Regards,
Arthur Barrett
Product Manager