Debian Linux Security Advisory 3784-1 - Thomas Gerbet discovered that viewvc, a web interface for CVS and Subversion repositories, did not properly sanitize user input. This problem resulted in a potential Cross-Site Scripting vulnerability.
afa0fb01f3ee6704ce34146a07c85e283846d5b8bcfef8645353b5331a6f50ea