Skip to content

Fix for vulnerability issue CVE-2024-46901 #1506

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 8 commits into from
Aug 28, 2025
Merged

Fix for vulnerability issue CVE-2024-46901 #1506

merged 8 commits into from
Aug 28, 2025

Conversation

@Kaniska244
Copy link
Contributor

@Kaniska244 Kaniska244 commented Aug 20, 2025
edited
Loading

Ref:

Devcontainer Image:

  • Go
  • Ruby
  • Jekyll
  • Javascript-node
  • Python
  • Rust
  • Typescript-node

Description of changes:

  • Aims to fix CVE-2024-46901 by installing svn 1.14.5 version from source. It's not available as a library package in Debian yet.

Changelog:

  • Change in Dockerfiles to install the svn package from source.
  • Change in test scripts to validate the svn version

Checklist:

  • All checks are passed.

@Kaniska244 Kaniska244 marked this pull request as ready for review August 20, 2025 16:23
@Kaniska244 Kaniska244 requested a review from a team as a code owner August 20, 2025 16:23
@Kaniska244 Kaniska244 changed the title [ruby] - Fix for vulnerability issue CVE-2024-46901 Fix for vulnerability issue CVE-2024-46901 Aug 22, 2025
@Kaniska244 Kaniska244 changed the title Fix for vulnerability issue CVE-2024-46901 Fix for vulnerability issue [CVE-2024-46901](https://subversion.apache.org/security/CVE-2024-46901-advisory.txt) Aug 22, 2025
@Kaniska244 Kaniska244 changed the title Fix for vulnerability issue [CVE-2024-46901](https://subversion.apache.org/security/CVE-2024-46901-advisory.txt) Fix for vulnerability issue CVE-2024-46901 Aug 22, 2025
Mathiyarasy
Mathiyarasy previously approved these changes Aug 25, 2025
View reviewed changes
AlvaroRausell
AlvaroRausell approved these changes Aug 28, 2025
View reviewed changes
@AlvaroRausell AlvaroRausell merged commit 5195424 into devcontainers:main Aug 28, 2025
7 of 8 checks passed
@Kaniska244 Kaniska244 deleted the ruby_svn_vulnerability branch August 28, 2025 15:04
@Kaniska244 Kaniska244 mentioned this pull request Sep 1, 2025
Merged
1 task
@AlvaroRausell AlvaroRausell mentioned this pull request Sep 3, 2025
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@AlvaroRausell AlvaroRausell AlvaroRausell approved these changes

@Mathiyarasy Mathiyarasy Mathiyarasy left review comments

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@Kaniska244 @AlvaroRausell @Mathiyarasy