LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 23, 2013

An "enum" for Python 3

An unexpected perf feature

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

subversion: multiple vulnerabilities

Package(s):subversion CVE #(s):CVE-2011-1752 CVE-2011-1783 CVE-2011-1921
Created:June 2, 2011 Updated:September 5, 2011
Description: From the Debian advisory:

CVE-2011-1752: The mod_dav_svn Apache HTTPD server module can be crashed though when asked to deliver baselined WebDAV resources.

CVE-2011-1783: The mod_dav_svn Apache HTTPD server module can trigger a loop which consumes all available memory on the system.

CVE-2011-1921: The mod_dav_svn Apache HTTPD server module may leak to remote users the file contents of files configured to be unreadable by those users.

Alerts:
Pardus 2011-109 2011-09-05
CentOS CESA-2011:0861 2011-08-14
Fedora FEDORA-2011-8341 2011-06-15
SUSE SUSE-SU-2011:0691-1 2011-06-27
SUSE SUSE-SU-2011:0692-1 2011-06-27
openSUSE openSUSE-SU-2011:0695-1 2011-06-27
openSUSE openSUSE-SU-2011:0693-1 2011-06-27
Fedora FEDORA-2011-8352 2011-06-15
Scientific Linux SL-subv-20110608 2011-06-08
Scientific Linux SL-subv-20110608 2011-06-08
CentOS CESA-2011:0862 2011-06-08
Red Hat RHSA-2011:0861-01 2011-06-08
Red Hat RHSA-2011:0862-01 2011-06-08
Ubuntu USN-1144-1 2011-06-06
Mandriva MDVSA-2011:106 2011-06-04
Debian DSA-2251-1 2011-06-02
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds