The vulnerability of Apache Subversion software allows a malicious intruder to compromise the confidentiality and integrity of protected information.

The vulnerability exists at the Serf RA level in Apache Subversion, due to incorrect processing of group characters contained in the CN Common Name field or the subjectAltName field of X.509 certificates. Exploiting this vulnerability allows a malicious actor to replace servers by using specially...