Lucene search
K

12 matches found

Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.21 views

openSUSE Security Update : subversion (openSUSE-SU-2013:1860-1)

This update fixes the following issues with subversion : - bnc850747: update to 1.7.14 - CVE-2013-4505: moddontdothat does not restrict requests from serf clients. - CVE-2013-4558: moddavsvn assertion triggered by autoversioning commits. + Client- and server-side bugfixes : - fix assertion on url...

3.5CVSS7.7AI score0.07858EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2014/06/13 12:0 a.m.31 views

openSUSE Security Update : subversion (openSUSE-SU-2013:1836-1)

This update fixes the following issues with subversion CVE-2013-4505,CVE-2013-4558 : - bnc850747: update to 1.8.5 - CVE-2013-4505: moddontdothat does not restrict requests from serf clients. - CVE-2013-4558: moddavsvn assertion triggered by autoversioning commits. + Client-side bugfixes : - fix...

3.5CVSS7.7AI score0.07858EPSS
Exploits0References5
securityvulns
securityvulns
added 2014/03/02 12:0 a.m.134 views

[slackware-security] subversion (SSA:2014-058-01)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 slackware-security subversion SSA:2014-058-01 New subversion packages are available for Slackware 14.0, 14.1, and -current to fix denial-of-service issues. Here are the details from the Slackware 14.1 ChangeLog: +--------------------------+...

4.3CVSS8.4AI score0.11052EPSS
Exploits0
OpenVAS
OpenVAS
added 2014/02/05 12:0 a.m.28 views

Fedora Update for subversion FEDORA-2013-22575

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2013/12/20 12:0 a.m.38 views

Apache Subversion 1.4.x - 1.7.13 / 1.8.x < 1.8.5 Multiple DoS

The installed version of Subversion Server is affected by multiple denial of service vulnerabilities : - An error exists related to the 'moddontdothat' module and handling relative URLs sent from serf-based clients. CVE-2013-4505 - An error exists related to the 'moddavsvn' module and handling...

3.5CVSS7.8AI score0.07858EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2013/12/18 12:0 a.m.24 views

Mandriva Linux Security Advisory : subversion (MDVSA-2013:288)

Updated subversion package fixes security vulnerabilities : moddontdothat allows you to block update REPORT requests against certain paths in the repository. It expects the paths in the REPORT request to be absolute URLs. Serf based clients send relative URLs instead of absolute URLs in many case...

3.5CVSS7.7AI score0.07858EPSS
Exploits0References3
NVD
NVD
added 2013/12/07 8:55 p.m.21 views

CVE-2013-4558

The getparentresource function in repos.c in moddavsvn Apache HTTPD server module in Subversion 1.7.11 through 1.7.13 and 1.8.1 through 1.8.4, when built with assertions enabled and SVNAutoversioning is enabled, allows remote attackers to cause a denial of service assertion failure and Apache...

3.5CVSS6.4AI score0.05882EPSS
Exploits0References7
OSV
OSV
added 2013/12/07 8:55 p.m.9 views

CVE-2013-4558

The getparentresource function in repos.c in moddavsvn Apache HTTPD server module in Subversion 1.7.11 through 1.7.13 and 1.8.1 through 1.8.4, when built with assertions enabled and SVNAutoversioning is enabled, allows remote attackers to cause a denial of service assertion failure and Apache...

3.5CVSS6.3AI score0.05882EPSS
Exploits0References8
UbuntuCve
UbuntuCve
added 2013/12/07 8:55 p.m.27 views

CVE-2013-4558

The getparentresource function in repos.c in moddavsvn Apache HTTPD server module in Subversion 1.7.11 through 1.7.13 and 1.8.1 through 1.8.4, when built with assertions enabled and SVNAutoversioning is enabled, allows remote attackers to cause a denial of service assertion failure and Apache...

3.5CVSS7.2AI score0.05882EPSS
Exploits0References2
Cvelist
Cvelist
added 2013/12/07 8:0 p.m.21 views

CVE-2013-4558

The getparentresource function in repos.c in moddavsvn Apache HTTPD server module in Subversion 1.7.11 through 1.7.13 and 1.8.1 through 1.8.4, when built with assertions enabled and SVNAutoversioning is enabled, allows remote attackers to cause a denial of service assertion failure and Apache...

6.2AI score0.05882EPSS
Exploits0References7
CVE
CVE
added 2013/12/07 8:0 p.m.90 views

CVE-2013-4558

CVE-2013-4558 affects Subversion’s mod_dav_svn in Apache HTTPD when built with assertions and SVNAutoversioning enabled, allowing remote DoS via a non-canonical URL (trailing /). Affected versions: Subversion 1.7.11–1.7.13 and 1.8.1–1.8.4. Root cause: assertion triggered by non-canonical requests...

3.5CVSS6.3AI score0.05882EPSS
Exploits0References7Affected Software2
Debian CVE
Debian CVE
added 2013/12/07 8:0 p.m.28 views

CVE-2013-4558

The getparentresource function in repos.c in moddavsvn Apache HTTPD server module in Subversion 1.7.11 through 1.7.13 and 1.8.1 through 1.8.4, when built with assertions enabled and SVNAutoversioning is enabled, allows remote attackers to cause a denial of service assertion failure and Apache...

3.5CVSS5.2AI score0.05882EPSS
Exploits0
Rows per page
Query Builder