On Wed, May 15, 2013 at 02:08:57PM +0400, Boris Lytochkin wrote: > It is possible to force svnserve daemon to exit using trivial (and valid) TCP > session:
Thanks for your bug report and patch, Boris. We'll release updates soon that include a fix for this issue. In the future, please report security problems to the security@ list. I've just noticed that security@ is not listed on our mailing-lists.html page. I'll try to fix that ASAP. Our guidelines for reporting security issues are here: http://subversion.apache.org/security/ Thanks again!
