Update to Apache HTTP Server 2.4.59 and OpenSSL 3.0.13

We are glad to announce that all VisualSVN products have been updated to OpenSSL 3.0.13. Additionally, VisualSVN Server has been updated to Apache HTTP Server 2.4.59.

This update fixes a number of security vulnerabilities, out of which only the low-severity vulnerability CVE-2024-0727 discovered in OpenSSL may potentially affect up-to-date versions of the VisualSVN plug-in for Visual Studio. Although this is a low-severity vulnerability, we recommend that you update your VisualSVN plug-in to the latest version.

Despite the fact that up-to-date versions of VisualSVN Server are not affected by the vulnerabilities fixed in this maintenance update, updating your VisualSVN Server installation is also recommended.

Update for VisualSVN Server

You can get the latest VisualSVN Server 5.3.3 version from the official download page.

Among other changes in this maintenance update, it also fixes several issues that can result in errors when remotely administering 5.1.x versions of VisualSVN Server. For the full list of changes, see the VisualSVN Server 5.3.3 changelog.

Version families older than VisualSVN Server 5.3.x are no longer supported, and patch-level updates are not available for them. If you are upgrading from VisualSVN Server 5.2.x or older, please read the article KB222: Upgrading to VisualSVN Server 5.3 before upgrading.

Update for VisualSVN (a plug-in for Visual Studio)

On the official download page, please select an appropriate VisualSVN plug-in version with respect to your Visual Studio version:

For the full list of changes, see the corresponding changelog entries for these plug-in versions: VisualSVN 8.3.3, VisualSVN 7.4.3, VisualSVN 6.8.3 and VisualSVN 5.7.3.