Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2015-3187HistoryAug 12, 2015 - 2:59 p.m.
CVE-2015-3187
2015-08-1214:59:00
Debian Security Bug Tracker
security-tracker.debian.org
10
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
45.7%
The svn_repos_trace_node_locations function in Apache Subversion before 1.7.21 and 1.8.x before 1.8.14, when path-based authorization is used, allows remote authenticated users to obtain sensitive path information by reading the history of a node that has been moved from a hidden path.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | subversion | < 1.9.0-1 | subversion_1.9.0-1_all.deb |
| Debian | 11 | all | subversion | < 1.9.0-1 | subversion_1.9.0-1_all.deb |
| Debian | 10 | all | subversion | < 1.9.0-1 | subversion_1.9.0-1_all.deb |
| Debian | 999 | all | subversion | < 1.9.0-1 | subversion_1.9.0-1_all.deb |
| Debian | 13 | all | subversion | < 1.9.0-1 | subversion_1.9.0-1_all.deb |
Related
osv
osv
subversion - security update
2015-08-16 00:00:00
subversion - security update
2015-08-10 00:00:00
openvas
openvas
Debian: Security Advisory (DLA-293-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-3331-1)
2015-08-09 00:00:00
Mageia: Security Advisory (MGASA-2015-0326)
2015-10-15 00:00:00
nessus
nessus
Debian DLA-293-1 : subversion security update
2015-08-17 00:00:00
openSUSE Security Update : subversion (openSUSE-2015-549)
2015-08-19 00:00:00
Debian DSA-3331-1 : subversion - security update
2015-08-13 00:00:00
ubuntucve
ubuntucve
CVE-2015-3187
2015-08-05 00:00:00
cve
cve
CVE-2015-3187
2015-08-12 14:59:00
prion
prion
Path traversal
2015-08-12 14:59:00
debian
debian
[SECURITY] [DLA 293-1] subversion security update
2015-08-16 10:24:11
[SECURITY] [DSA 3331-1] subversion security update
2015-08-10 18:21:41
[SECURITY] [DSA 3331-1] subversion security update
2015-08-10 18:21:41
archlinux
archlinux
subversion: authentication bypass
2015-08-14 00:00:00
securityvulns
securityvulns
Apache Subversion security vulnerabilities
2015-08-24 00:00:00
[USN-2721-1] Subversion vulnerabilities
2015-08-24 00:00:00
freebsd
freebsd
subversion -- multiple vulnerabilities
2015-07-27 00:00:00
mageia
mageia
Updated subversion packages fix security vulnerabilities
2015-08-27 23:49:46
veracode
veracode
Information Disclosure
2019-05-02 05:17:54
Spoofable Server
2019-05-02 05:17:54
f5
f5
centos
centos
mod_dav_svn, subversion security update
2015-08-17 15:33:54
mod_dav_svn, subversion security update
2015-09-08 21:07:49
apple
apple
About the security content of Xcode 7.3 - Apple Support
2017-01-23 03:54:36
About the security content of Xcode 7.3
2016-03-21 00:00:00
oraclelinux
oraclelinux
subversion security update
2015-08-17 00:00:00
subversion security update
2015-09-08 00:00:00
redhat
redhat
(RHSA-2015:1633) Moderate: subversion security update
2015-08-17 00:00:00
(RHSA-2015:1742) Moderate: subversion security update
2015-09-08 00:00:00
amazon
amazon
Important: mod_dav_svn, subversion
2016-03-29 15:30:00
fedora
fedora
[SECURITY] Fedora 22 Update: subversion-1.8.15-1.fc22
2016-02-29 22:28:19
ubuntu
ubuntu
Subversion vulnerabilities
2015-08-20 00:00:00
gentoo
gentoo
Subversion, Serf: Multiple Vulnerabilities
2016-10-11 00:00:00
suse
suse
Security update for subversion (important)
2017-08-17 12:10:12
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
45.7%
Related for DEBIANCVE:CVE-2015-3187