Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
slackwareSlackware Linux ProjectSSA-2011-070-01
HistoryMar 11, 2011 - 8:41 a.m.

[slackware-security] subversion

2011-03-1108:41:53
Slackware Linux Project
www.slackware.com
16

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.013 Low

EPSS

Percentile

85.4%

JSON

New subversion packages are available for Slackware 12.0, 12.1, 12.2, 13.0,
13.1, and -current to fix a security issue.

Here are the details from the Slackware 13.1 ChangeLog:

patches/packages/subversion-1.6.16-i486-1_slack13.1.txz: Upgraded.
Fixed a remotely triggerable NULL-pointer dereference in mod_dav_svn.
For more information, see:
http://subversion.apache.org/security/CVE-2011-0715-advisory.txt
https://vulners.com/cve/CVE-2011-0715
(* Security fix *)

Where to find the new packages:

HINT: Getting slow download speeds from ftp.slackware.com?
Give slackware.osuosl.org a try. This is another primary FTP site
for Slackware that can be considerably faster than downloading
directly from ftp.slackware.com.

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating additional FTP and rsync hosting
to the Slackware project! :-)

Also see the “Get Slack” section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 12.0:
ftp://ftp.slackware.com/pub/slackware/slackware-12.0/patches/packages/subversion-1.5.9-i486-1_slack12.0.tgz

Updated package for Slackware 12.1:
ftp://ftp.slackware.com/pub/slackware/slackware-12.1/patches/packages/subversion-1.5.9-i486-1_slack12.1.tgz

Updated package for Slackware 12.2:
ftp://ftp.slackware.com/pub/slackware/slackware-12.2/patches/packages/subversion-1.5.9-i486-1_slack12.2.tgz

Updated package for Slackware 13.0:
ftp://ftp.slackware.com/pub/slackware/slackware-13.0/patches/packages/subversion-1.6.16-i486-1_slack13.0.txz

Updated package for Slackware x86_64 13.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-13.0/patches/packages/subversion-1.6.16-x86_64-1_slack13.0.txz

Updated package for Slackware 13.1:
ftp://ftp.slackware.com/pub/slackware/slackware-13.1/patches/packages/subversion-1.6.16-i486-1_slack13.1.txz

Updated package for Slackware x86_64 13.1:
ftp://ftp.slackware.com/pub/slackware/slackware64-13.1/patches/packages/subversion-1.6.16-x86_64-1_slack13.1.txz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/d/subversion-1.6.16-i486-1.txz

Updated package for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/d/subversion-1.6.16-x86_64-1.txz

MD5 signatures:

Slackware 12.0 package:
a62b266f240e4b44984e53fd33f4e955 subversion-1.5.9-i486-1_slack12.0.tgz

Slackware 12.1 package:
f1693b4e3bd0a1e0f70c037248f8a25a subversion-1.5.9-i486-1_slack12.1.tgz

Slackware 12.2 package:
fa6fff1eef608637b60c5ef4ef4d0531 subversion-1.5.9-i486-1_slack12.2.tgz

Slackware 13.0 package:
122f7a5213d6c767c0053c6ff7aa4a75 subversion-1.6.16-i486-1_slack13.0.txz

Slackware x86_64 13.0 package:
18e4a921e50c0fd890dd628ccac1adcc subversion-1.6.16-x86_64-1_slack13.0.txz

Slackware 13.1 package:
198e9aa17977cb85a3faa86f28c1071e subversion-1.6.16-i486-1_slack13.1.txz

Slackware x86_64 13.1 package:
cc8139886ed8f9f67bc628201fb3504e subversion-1.6.16-x86_64-1_slack13.1.txz

Slackware -current package:
a50e00d42757a048ae3d7d0d7b880f6b subversion-1.6.16-i486-1.txz

Slackware x86_64 -current package:
c7a07888e7297653e2f34a28c6e69f5f subversion-1.6.16-x86_64-1.txz

Installation instructions:

Upgrade the package as root:
> upgradepkg subversion-1.6.16-i486-1_slack13.1.txz

Related

redhat 2
openvas 28
nessus 20
oraclelinux 2
ubuntu 1
fedora 3
securityvulns 4
centos 1
freebsd 1
altlinux 2
debian 3
cve 1
prion 1
veracode 1
debiancve 1
ubuntucve 1
suse 3
gentoo 1
redhat
redhat
(RHSA-2011:0328) Moderate: subversion security update
2011-03-08 00:00:00
(RHSA-2011:0327) Moderate: subversion security and bug fix update
2011-03-08 00:00:00
openvas
openvas
Debian Security Advisory DSA 2182-1 (logwatch)
2011-03-09 00:00:00
Oracle: Security Advisory (ELSA-2011-0327)
2015-10-06 00:00:00
Mandriva Update for subversion MDVSA-2011:067 (subversion)
2011-04-11 00:00:00
nessus
nessus
RHEL 5 : subversion (RHSA-2011:0327)
2011-03-09 00:00:00
Mandriva Linux Security Advisory : subversion (MDVSA-2011:067)
2011-04-07 00:00:00
Oracle Linux 5 : subversion (ELSA-2011-0327)
2013-07-12 00:00:00
oraclelinux
oraclelinux
subversion security update
2011-03-08 00:00:00
subversion security and bug fix update
2011-03-08 00:00:00
ubuntu
ubuntu
Subversion vulnerability
2011-03-29 00:00:00
fedora
fedora
[SECURITY] Fedora 14 Update: subversion-1.6.16-1.fc14
2011-03-16 19:56:42
[SECURITY] Fedora 13 Update: subversion-1.6.16-1.fc13
2011-03-16 19:56:45
[SECURITY] Fedora 15 Update: subversion-1.6.16-1.fc15
2011-03-26 05:12:10
securityvulns
securityvulns
Subversion DoS
2011-03-09 00:00:00
[SECURITY] [DSA 2181-1] subversion security update
2011-03-09 00:00:00
Apple Mac OS X multiple security vulnerabilities
2011-07-06 00:00:00
centos
centos
mod_dav_svn, subversion security update
2011-04-14 13:37:39
freebsd
freebsd
subversion -- remote HTTP DoS vulnerability
2011-02-27 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package subversion version 1.6.16-alt0.M50P.1
2011-04-18 00:00:00
Security fix for the ALT Linux 5 package subversion version 1.6.16-alt1
2011-04-14 00:00:00
debian
debian
[SECURITY] [DSA 2181-1] subversion security update
2011-03-04 07:46:17
[SECURITY] [DSA 2182-1] logwatch security update
2011-03-04 21:02:06
[BSA-026] Security Update for subversion
2011-03-14 15:28:35
cve
cve
CVE-2011-0715
2011-03-11 22:55:00
prion
prion
Null pointer dereference
2011-03-11 22:55:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 00:59:35
debiancve
debiancve
CVE-2011-0715
2011-03-11 22:55:00
ubuntucve
ubuntucve
CVE-2011-0715
2011-03-11 00:00:00
suse
suse
subversion (important)
2011-06-24 21:08:14
subversion (important)
2011-06-24 20:08:19
subversion security udpate (important)
2011-06-24 21:08:19
gentoo
gentoo
Subversion: Multiple vulnerabilities
2013-09-23 00:00:00

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.013 Low

EPSS

Percentile

85.4%

JSON
Related for SSA-2011-070-01
redhat2openvas28nessus20oraclelinux2ubuntu1fedora3securityvulns4centos1freebsd1altlinux2debian3cve1prion1veracode1debiancve1ubuntucve1suse3gentoo1