User: Password:
Subscribe / Log in / New account

subversion: denial of service

Package(s):subversion CVE #(s):CVE-2013-4131
Created:August 1, 2013 Updated:August 12, 2013

From the Subversion advisory:

Subversion's mod_dav_svn Apache HTTPD server module will trigger an assertion on some requests made against a revision root. This can lead to a DoS. If assertions are disabled it will trigger a read overflow which may cause a SEGFAULT (or equivalent) or undefined behavior.

Commit access is required to exploit this.

openSUSE openSUSE-SU-2013:1869-1 subversion 2013-12-13
Gentoo 201309-11 subversion 2013-09-23
Fedora FEDORA-2013-13672 subversion 2013-08-15
Mageia MGASA-2013-0244 subversion 2013-08-11
Mandriva MDVSA-2013:209 subversion 2013-08-06
Fedora FEDORA-2013-13696 subversion 2013-08-02
openSUSE openSUSE-SU-2013:1286-1 subversion 2013-08-01

(Log in to post comments)

Copyright © 2017, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds