VuXML ID | Description |
184f5d0b-0fe8-11d9-8a8a-000c41e2cdad | subversion -- WebDAV fails to protect metadata
In some situations, subversion metadata may be unexpectedly
disclosed via WebDAV. A subversion advisory states:
mod_authz_svn, the Apache httpd module which does path-based
authorization on Subversion repositories, is not correctly
protecting all metadata on unreadable paths.
This security issue is not about revealing the contents
of protected files: it only reveals metadata about
protected areas such as paths and log messages. This may
or may not be important to your organization, depending
on how you're using path-based authorization, and the
sensitivity of the metadata.
Discovery 2004-09-15 Entry 2004-09-26 subversion
subversion-perl
subversion-python
< 1.0.8
CVE-2004-0749
http://subversion.tigris.org/security/CAN-2004-0749-advisory.txt
|
5d36ef32-a9cf-11d8-9c6d-0020ed76ef5a | subversion date parsing vulnerability
Stefan Esser reports:
Subversion versions up to 1.0.2 are vulnerable to a date
parsing vulnerability which can be abused to allow remote
code execution on Subversion servers and therefore could
lead to a repository compromise.
NOTE: This vulnerability is similar to the date
parsing issue that affected neon. However, it is a different
and distinct bug.
Discovery 2004-05-19 Entry 2004-05-19 subversion
< 1.0.2_1
CVE-2004-0397
http://security.e-matters.de/advisories/082004.html
|
bce1f76d-82d0-11de-88ea-001a4d49522b | subversion -- heap overflow vulnerability
A Subversion Security Advisory reports:
Subversion clients and servers have multiple heap
overflow issues in the parsing of binary deltas. This is
related to an allocation vulnerability in the APR library
used by Subversion.
Clients with commit access to a vulnerable server can
cause a remote heap overflow; servers can cause a heap
overflow on vulnerable clients that try to do a checkout
or update.
This can lead to a DoS (an exploit has been tested) and
to arbitrary code execution (no exploit tested, but the
possibility is clear).
Discovery 2009-08-06 Entry 2009-08-06 Modified 2009-08-07 subversion
subversion-freebsd
p5-subversion
py-subversion
< 1.6.4
CVE-2009-2411
http://subversion.tigris.org/security/CVE-2009-2411-advisory.txt
|
71612099-1e93-11e0-a587-001b77d09812 | subversion -- multiple DoS
Entry for CVE-2010-4539 says:
The walk function in repos.c in the mod_dav_svn module
for the Apache HTTP Server, as distributed in Apache
Subversion before 1.6.15, allows remote authenticated
users to cause a denial of service (NULL pointer
dereference and daemon crash) via vectors that trigger
the walking of SVNParentPath collections.
Entry for CVE-2010-4644 says:
Multiple memory leaks in rev_hunt.c in Apache Subversion
before 1.6.15 allow remote authenticated users to cause
a denial of service (memory consumption and daemon crash)
via the -g option to the blame command.
Discovery 2011-01-02 Entry 2011-01-13 subversion
< 1.6.15
subversion-freebsd
< 1.6.15
45655
CVE-2010-4539
CVE-2010-4644
|
ac256985-b6a9-11e6-a3bf-206a8a720317 | subversion -- Unrestricted XML entity expansion in mod_dontdothat and Subversionclients using http(s)
The Apache Software Foundation reports:
The mod_dontdothat module of subversion and subversion clients using
http(s):// are vulnerable to a denial-of-service attack, caused by
exponential XML entity expansion. The attack targets XML parsers
causing targeted process to consume excessive amounts of resources.
The attack is also known as the "billions of laughs attack."
Discovery 2016-11-29 Entry 2016-11-29 subversion18
< 1.8.17
subversion
< 1.9.5
http://subversion.apache.org/security/CVE-2016-8734-advisory.txt
CVE-2016-8734
|
e27a1af3-8d21-11e0-a45d-001e8c75030d | Subversion -- multiple vulnerabilities
Subversion team reports:
Subversion's mod_dav_svn Apache HTTPD server module will
dereference a NULL pointer if asked to deliver baselined WebDAV
resources.
This can lead to a DoS. An exploit has been tested, and tools
or users have been observed triggering this problem in the
wild.
Subversion's mod_dav_svn Apache HTTPD server module may in
certain scenarios enter a logic loop which does not exit and
which allocates memory in each iteration, ultimately exhausting
all the available memory on the server.
This can lead to a DoS. There are no known instances of this
problem being observed in the wild, but an exploit has been
tested.
Subversion's mod_dav_svn Apache HTTPD server module may leak to
remote users the file contents of files configured to be
unreadable by those users.
There are no known instances of this problem being observed in
the wild, but an exploit has been tested.
Discovery 2011-05-28 Entry 2011-06-02 subversion
< 1.6.17
subversion-freebsd
< 1.6.17
CVE-2011-1752
CVE-2011-1783
CVE-2011-1921
|