Debian Security Advisory 1855-1 – Matt Lewis discovered that Subversion performs insufficient input validation of svndiff streams. Malicious servers could cause heap overflows in clients, and malicious clients with commit access could cause heap overflows in servers, possibly leading to arbitrary code execution in both cases.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/80247/dsa-1855-1.txt
Source: https://packetstormsecurity.com/files/80247/Debian-Linux-Security-Advisory-1855-1.html