Hello all, I'm in the process of an internal company application certification, one part of it is the TortoiseSVN client. The test team got the latest official stable 1.14.1.29085-x64, they found 2 low and 1 medium "vulnerability". I would like to kindly ask if you can have a look at them one by one (will do 3 separate posts, as suggested in the report FAQ), and if there is a possibility to adjust for this.
--- Severity: Low Vulnerability: Security Feature not Enabled Description: The test team observed that "CFG and/or "DEP" security feature are disabled for some of the DLLs. Screenshot attached with a couple of examples of the bin installation directory. --- The test team mentioned to me that low vulnerabilities can be justified if it cannot be managed to change or has been applied for specific reasons. Any help is much appreciated. Thank you Alexander [image: TortoiseSVN-securityfeatures.png] -- You received this message because you are subscribed to the Google Groups "TortoiseSVN" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/tortoisesvn/035f53f7-5a49-4159-842f-7c14acee1531n%40googlegroups.com.
