VisualSVN Server patch release 2.5.9 is available. This is a security and bug fix release that addresses several security vulnerabilities recently identified in Apache Subversion. The version 2.5.9 has the following changes:
- Updated to Apache Subversion 1.7.9 with fixes for the following vulnerabilities:
For further details please see http://svn.apache.org/repos/asf/subversion/tags/1.7.9/CHANGES
- Updated to OpenSSL 0.9.8y with fixes for the following vulnerabilities: CVE-2013-0169, CVE-2012-2686, CVE-2013-0166.
- Fixed: mod_log_visualsvn module may crash if Access Logging is enabled.
Up-to-date VisualSVN Server installations are affected by vulnerabilities that could lead to a DoS attack. That's why the upgrade to VisualSVN Server 2.5.9 is strongly recommended for all users. You can get the latest version of VisualSVN Server at the official download page
VisualSVN Server 2.1.13 maintenance release is also available to download and install. For further details please consider the changelog record for VisualSVN Server 2.1.13.