Lucene search
GoogleOSV:DLA-293-1HistoryAug 16, 2015 - 12:00 a.m.
subversion - security update
2015-08-1600:00:00
Google
osv.dev
6
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
45.2%
C. Michael Pilato, from CollabNet, reported an issue in the version
control system Subversion.
- CVE-2015-3187
Subversion servers revealed some sensible paths hidden by path-based
authorization. Remote authenticated users were allowed to obtain
path information by reading the history of a node that has been
moved from a hidden path. The vulnerability only revealed the path,
though it didn’t reveal its content.
For Debian 6 Squeeze, this issue has been fixed in subversion
1.6.12dfsg-7+deb6u3. We recommend to upgrade your subversion packages.
References
Related
openvas
openvas
Debian: Security Advisory (DLA-293-1)
2023-03-08 00:00:00
Debian: Security Advisory (DSA-3331-1)
2015-08-09 00:00:00
Mageia: Security Advisory (MGASA-2015-0326)
2015-10-15 00:00:00
prion
prion
Path traversal
2015-08-12 14:59:00
nessus
nessus
Debian DLA-293-1 : subversion security update
2015-08-17 00:00:00
openSUSE Security Update : subversion (openSUSE-2015-549)
2015-08-19 00:00:00
ubuntucve
ubuntucve
CVE-2015-3187
2015-08-05 00:00:00
cve
cve
CVE-2015-3187
2015-08-12 14:59:00
debiancve
debiancve
CVE-2015-3187
2015-08-12 14:59:00
debian
debian
[SECURITY] [DLA 293-1] subversion security update
2015-08-16 10:24:11
[SECURITY] [DSA 3331-1] subversion security update
2015-08-10 18:21:41
[SECURITY] [DSA 3331-1] subversion security update
2015-08-10 18:21:41
archlinux
archlinux
subversion: authentication bypass
2015-08-14 00:00:00
securityvulns
securityvulns
Apache Subversion security vulnerabilities
2015-08-24 00:00:00
[USN-2721-1] Subversion vulnerabilities
2015-08-24 00:00:00
freebsd
freebsd
subversion -- multiple vulnerabilities
2015-07-27 00:00:00
mageia
mageia
Updated subversion packages fix security vulnerabilities
2015-08-27 23:49:46
osv
osv
subversion - security update
2015-08-10 00:00:00
veracode
veracode
Information Disclosure
2019-05-02 05:17:54
Spoofable Server
2019-05-02 05:17:54
f5
f5
apple
apple
About the security content of Xcode 7.3
2016-03-21 00:00:00
About the security content of Xcode 7.3 - Apple Support
2017-01-23 03:54:36
redhat
redhat
(RHSA-2015:1633) Moderate: subversion security update
2015-08-17 00:00:00
(RHSA-2015:1742) Moderate: subversion security update
2015-09-08 00:00:00
centos
centos
mod_dav_svn, subversion security update
2015-08-17 15:33:54
mod_dav_svn, subversion security update
2015-09-08 21:07:49
oraclelinux
oraclelinux
subversion security update
2015-08-17 00:00:00
subversion security update
2015-09-08 00:00:00
amazon
amazon
Important: mod_dav_svn, subversion
2016-03-29 15:30:00
fedora
fedora
[SECURITY] Fedora 22 Update: subversion-1.8.15-1.fc22
2016-02-29 22:28:19
ubuntu
ubuntu
Subversion vulnerabilities
2015-08-20 00:00:00
suse
suse
Security update for subversion (important)
2017-08-17 12:10:12
gentoo
gentoo
Subversion, Serf: Multiple Vulnerabilities
2016-10-11 00:00:00
4 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:S/C:P/I:N/A:N
0.001 Low
EPSS
Percentile
45.2%
Related for OSV:DLA-293-1