3 matches found
CVE-2013-4558
CVE-2013-4558 affects Subversion’s mod_dav_svn in Apache HTTPD when built with assertions and SVNAutoversioning enabled, allowing remote DoS via a non-canonical URL (trailing /). Affected versions: Subversion 1.7.11–1.7.13 and 1.8.1–1.8.4. Root cause: assertion triggered by non-canonical requests...
CVE-2010-4644
CVE-2010-4644 : In Apache Subversion, memory leaks in rev_hunt.c for versions before 1.6.15 can be exploited by remote authenticated users to cause a denial of service (memory consumption and daemon crash) via the -g option to the blame command. Multiple connected advisories (e.g., MiracleLinux A...
CVE-2013-4277
CVE-2013-4277 affects Svnserve in Apache Subversion; affected versions are 1.4.0–1.7.12 and 1.8.0–1.8.1. Local users can overwrite arbitrary files or kill arbitrary processes via a symlink attack on the file specified by the --pid-file option. Root cause: symlink race on pid-file handling. Impact...