Lucene search
Gentoo FoundationMGASA-2017-0273HistoryAug 17, 2017 - 12:10 a.m.
Updated subversion packages fix security vulnerability
2017-08-1700:10:57
Gentoo Foundation
advisories.mageia.org
11
0.129 Low
EPSS
Percentile
95.5%
A Subversion client sometimes connects to URLs provided by the repository. A maliciously constructed svn+ssh:// URL would cause Subversion clients to run an arbitrary shell command. Such a URL could be generated by a malicious server, by a malicious user committing to an honest server (to attack another user of that server’s repositories), or by a proxy server (CVE-2017-9800).
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Mageia | 5 | noarch | subversion | <Â 1.8.19-1 | subversion-1.8.19-1.mga5 |
| Mageia | 6 | noarch | subversion | <Â 1.9.7-1 | subversion-1.9.7-1.mga6 |
References
mail-archives.apache.org/mod_mbox/subversion-announce/201708.mbox/%3C8760dvl2j6.fsf%40codematters.co.uk%3E
subversion.apache.org/security/CVE-2017-9800-advisory.txt
svn.apache.org/repos/asf/subversion/tags/1.8.19/CHANGES
svn.apache.org/repos/asf/subversion/tags/1.9.7/CHANGES
bugs.mageia.org/show_bug.cgi?id=21495
mail-archives.apache.org/mod_mbox/subversion-announce/201708.mbox/%3C2fefe468-7d41-11e7-aea1-9312c6089150%40apache.org%3E
Related
nessus
nessus
Scientific Linux Security Update : subversion on SL7.x x86_64 (20170816)
2017-08-22 00:00:00
Slackware 14.0 / 14.1 / 14.2 / current : subversion (SSA:2017-223-04)
2017-08-14 00:00:00
Debian DLA-1052-1 : subversion security update
2017-08-14 00:00:00
debian
debian
[SECURITY] [DLA 1052-1] subversion security update
2017-08-11 12:56:25
[SECURITY] [DSA 3932-1] subversion security update
2017-08-10 18:49:53
[SECURITY] [DSA 3932-1] subversion security update
2017-08-10 18:50:09
zdt
zdt
Apache Subversion Arbitrary Code Execution Vulnerability
2017-08-14 00:00:00
SourceTree Remote Code Execution Exploit
2017-09-07 00:00:00
archlinux
archlinux
[ASA-201708-14] subversion: arbitrary command execution
2017-08-15 00:00:00
[ASA-201708-7] mercurial: multiple issues
2017-08-12 00:00:00
cve
cve
freebsd
freebsd
subversion -- Arbitrary code execution vulnerability
2017-08-10 00:00:00
Mercurial -- multiple vulnerabilities
2017-08-10 00:00:00
gentoo
gentoo
Subversion: Arbitrary code execution
2017-09-17 00:00:00
osv
osv
CVE-2017-9800
2017-08-11 21:29:00
subversion - security update
2017-08-11 00:00:00
subversion - security update
2017-08-10 00:00:00
openvas
openvas
Fedora Update for subversion FEDORA-2017-1d1a38bdd1
2017-08-25 00:00:00
Fedora Update for subversion FEDORA-2017-951b6a78d4
2017-08-15 00:00:00
RedHat Update for subversion RHSA-2017:2480-01
2017-08-16 00:00:00
centos
centos
mod_dav_svn, subversion security update
2017-08-24 09:44:09
ubuntucve
ubuntucve
checkpoint_advisories
checkpoint_advisories
Apache Subversion svn-ssh URL Command Execution (CVE-2017-9800)
2017-08-29 00:00:00
veracode
veracode
Privilege Escalation
2020-05-10 23:25:43
Arbitrary Command Execution
2017-10-30 00:47:04
redhatcve
redhatcve
fedora
fedora
[SECURITY] Fedora 25 Update: subversion-1.9.7-1.fc25
2017-08-22 12:50:37
[SECURITY] Fedora 26 Update: subversion-1.9.7-1.fc26
2017-08-14 21:55:00
cvelist
cvelist
redhat
redhat
(RHSA-2017:2480) Important: subversion security update
2017-08-15 18:41:13
oraclelinux
oraclelinux
subversion security update
2017-08-15 00:00:00
prion
prion
Design/Logic Flaw
2017-08-11 21:29:00
Sql injection
2017-08-20 20:29:00
Design/Logic Flaw
2017-10-29 20:29:00
ibm
ibm
debiancve
debiancve
slackware
slackware
[slackware-security] subversion
2017-08-11 23:11:38
amazon
amazon
Important: subversion, mod_dav_svn
2017-08-31 16:11:00
f5
f5
K45625134 : Apache Subversion vulnerability CVE-2017-9800
2017-08-29 00:00:00
seebug
seebug
Apache Subversion Remote Command Execution Vulnerability(CVE-2017-9800)
2017-08-16 00:00:00
alpinelinux
alpinelinux
CVE-2017-9800
2017-08-11 21:29:00
suse
suse
Security update for subversion (important)
2017-08-17 00:09:05
Security update for subversion (important)
2017-08-14 18:08:39
Security update for subversion (important)
2017-08-17 12:10:12
photon
photon
Important Photon OS Security Update - PHSA-2017-0065
2017-08-30 00:00:00
ubuntu
ubuntu
Subversion vulnerabilities
2017-08-11 00:00:00
Subversion vulnerabilities
2017-10-24 00:00:00
cloudfoundry
cloudfoundry
USN-3388-1: Subversion vulnerabilities | Cloud Foundry
2017-08-17 00:00:00
myhack58
myhack58
hackerone
hackerone
Internet Bug Bounty: RCE via ssh:// URIs in multiple VCS
2017-08-14 20:53:18
github
github
Dulwich RCE Vulnerability
2022-05-13 01:44:04
apple
apple
About the security content of Xcode 9 - Apple Support
2017-11-02 11:30:54
About the security content of Xcode 9
2017-09-19 00:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - October 2020
2020-10-20 00:00:00