Stefan Esser notified us via vendor-sec on May02 of a remote stack overflow in neon. The affected function is used by cadaver but not by Subversion or OpenOffice.org. This issue also affects FC1 This issue is embargoed until May19
public. removing embargo
http://www.redhat.com/archives/fedora-announce-list/2004-May/msg00015.html http://www.redhat.com/archives/fedora-announce-list/2004-May/msg00016.html