CLSA-2025-1754940263 Fix CVE(s): CVE-2024-46901

SECURITY UPDATE: Insufficient validation of filenames against control characters in repositories served via moddavsvn - debian/patches/CVE-2024-46901.patch: fix moddavsvn denial-of-service via control characters in paths...

CVE-2026-29169

A NULL pointer dereference in moddavlock in Apache HTTP Server 2.4.66 and earlier may allow an attacker to crash the server with a malicious request.moddavlock is not used internally by moddav or moddavfs. The only known use-case for moddavlock was moddavsvn from Apache Subversion earlier than...

CVE-2026-29169

A NULL pointer dereference in moddavlock in Apache HTTP Server 2.4.66 and earlier may allow an attacker to crash the server with a malicious request.moddavlock is not used internally by moddav or moddavfs. The only known use-case for moddavlock was moddavsvn from Apache Subversion earlier than...

Unity Linux 20.1070e Security Update: subversion (UTSA-2026-004812)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-004812 advisory. Insufficient validation of filenames against control characters in Apache Subversion repositories served via moddavsvn allows authenticated users with commit access ...

MiracleLinux 3 : subversion-1.6.11-7.AXS3.4 (AXSA:2011-225:03)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2011-225:03 advisory. Subversion is a concurrent version control system which enables one or more users to collaborate in developing and maintaining a hierarchy of files a...

EUVD-2013-1852

Malware in sbrugna...

EUVD-2011-1781

Malware in sbrugna...

EUVD-2016-7241

Malware in sbrugna...

EUVD-2018-3796

Malware in sbrugna...

EUVD-2011-1919

Malware in sbrugna...

EUVD-2010-4505

Malware in sbrugna...

EUVD-2013-1853

Malware in sbrugna...

EUVD-2010-3313

Malware in sbrugna...

EUVD-2022-28983

Malicious code in bioql PyPI...

Advisory ROSA-SA-2025-2989

software: subversion 1.14.5 OS: ROSA-CHROME unaffected versions = subversion-1.14.5-1 affected versions subversion-1.14.5-1 CVE-ID: CVE-2024-46901 BDU-ID: 2025-03298 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the moddavsvn function of Apache Subversion software is related to a flaw in the...

subversion: Fix of CVE-2024-46901

CVE-2024-46901: fix moddavsvn denial-of-service via control characters in paths...

CLSA-2025-1754940449 Fix CVE(s): CVE-2024-46901

SECURITY UPDATE: Insufficient validation of filenames against control characters in repositories served via moddavsvn - debian/patches/CVE-2024-46901.patch: fix moddavsvn denial-of-service via control characters in paths...

Debian dla-4127 : libapache2-mod-svn - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dla-4127 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-4127-1 [email protected] https://www.debian.org/lts/security/...

Apache Subversion: mod_dav_svn denial-of-service via control characters in paths

...

Security update for subversion

This update for subversion fixes the following issues: CVE-2024-46901: Fixed moddavsvn denial-of-service via control characters in paths bsc1234317 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively...