Summary: Few Vulnerabilities were reported in Subversion release 1.7.8 and earlier. A Fix has been developed in the Subversion 1.7.9. An important information to note is that the attacks would have to be launched by an authenticated site user who has write access a repository. This means higher traceability & low risk to the exposure.
Known Vulnerable: Subversion HTTPD servers <= 1.6.20, Subversion HTTPD servers 1.7.0 through 1.7.8 (inclusive)
Known Fixed: Subversion 1.6.21, Subversion 1.7.9, TeamForge >=184.108.40.206 with updated Subversion & Postgres
Install help: To Upgrade Subversion 1.7.9 for TeamForge follow instructions at: