Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
slackwareSlackware Linux ProjectSSA-2014-058-01
HistoryFeb 27, 2014 - 9:06 p.m.

[slackware-security] subversion

2014-02-2721:06:12
Slackware Linux Project
www.slackware.com
12

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.139 Low

EPSS

Percentile

95.6%

JSON

New subversion packages are available for Slackware 14.0, 14.1, and -current to
fix denial-of-service issues.

Here are the details from the Slackware 14.1 ChangeLog:

patches/packages/subversion-1.7.16-i486-1_slack14.1.txz: Upgraded.
Fix denial of service bugs.
For more information, see:
https://vulners.com/cve/CVE-2013-4505
https://vulners.com/cve/CVE-2013-4558
https://vulners.com/cve/CVE-2014-0032
(* Security fix *)

Where to find the new packages:

Thanks to the friendly folks at the OSU Open Source Lab
(http://osuosl.org) for donating FTP and rsync hosting
to the Slackware project! :-)

Also see the “Get Slack” section on http://slackware.com for
additional mirror sites near you.

Updated package for Slackware 14.0:
ftp://ftp.slackware.com/pub/slackware/slackware-14.0/patches/packages/subversion-1.7.16-i486-1_slack14.0.txz

Updated package for Slackware x86_64 14.0:
ftp://ftp.slackware.com/pub/slackware/slackware64-14.0/patches/packages/subversion-1.7.16-x86_64-1_slack14.0.txz

Updated package for Slackware 14.1:
ftp://ftp.slackware.com/pub/slackware/slackware-14.1/patches/packages/subversion-1.7.16-i486-1_slack14.1.txz

Updated package for Slackware x86_64 14.1:
ftp://ftp.slackware.com/pub/slackware/slackware64-14.1/patches/packages/subversion-1.7.16-x86_64-1_slack14.1.txz

Updated package for Slackware -current:
ftp://ftp.slackware.com/pub/slackware/slackware-current/slackware/d/subversion-1.7.16-i486-1.txz

Updated package for Slackware x86_64 -current:
ftp://ftp.slackware.com/pub/slackware/slackware64-current/slackware64/d/subversion-1.7.16-x86_64-1.txz

MD5 signatures:

Slackware 14.0 package:
c4699bf909ffea74d50312f5298ad6ac subversion-1.7.16-i486-1_slack14.0.txz

Slackware x86_64 14.0 package:
98c8987ecdd325400c7e2f0911367849 subversion-1.7.16-x86_64-1_slack14.0.txz

Slackware 14.1 package:
8525945c41a811583f4d95cadc6999d8 subversion-1.7.16-i486-1_slack14.1.txz

Slackware x86_64 14.1 package:
42ceb10a1df6173d6d840f68d19db5e2 subversion-1.7.16-x86_64-1_slack14.1.txz

Slackware -current package:
76a1890cb04f569b5eaf40da013a037e d/subversion-1.7.16-i486-1.txz

Slackware x86_64 -current package:
acdcd32e29e311059e8f2f1e383bf35b d/subversion-1.7.16-x86_64-1.txz

Installation instructions:

Upgrade the package as root:
> upgradepkg subversion-1.7.16-i486-1_slack14.1.txz

Related

securityvulns 5
openvas 26
nessus 28
fedora 5
freebsd 2
mageia 3
amazon 2
cve 3
debiancve 3
prion 3
ubuntucve 3
kaspersky 2
veracode 1
oraclelinux 1
centos 1
redhat 1
ubuntu 1
osv 1
debian 1
gentoo 1
securityvulns
securityvulns
Apache Subversion security vulnerabilities
2014-03-02 00:00:00
[slackware-security] subversion (SSA:2014-058-01)
2014-03-02 00:00:00
[ MDVSA-2013:288 ] subversion
2014-01-09 00:00:00
openvas
openvas
Slackware: Security Advisory (SSA:2014-058-01)
2022-04-21 00:00:00
Amazon Linux: Security Advisory (ALAS-2013-269)
2015-09-08 00:00:00
Fedora Update for subversion FEDORA-2013-22208
2013-12-17 00:00:00
nessus
nessus
Slackware 14.0 / 14.1 / current : subversion (SSA:2014-058-01)
2014-02-28 00:00:00
openSUSE Security Update : subversion (openSUSE-SU-2013:1836-1)
2014-06-13 00:00:00
Apache Subversion 1.4.x - 1.7.13 / 1.8.x < 1.8.5 Multiple DoS
2013-12-20 00:00:00
fedora
fedora
[SECURITY] Fedora 20 Update: subversion-1.8.5-2.fc20
2013-12-31 19:02:57
[SECURITY] Fedora 19 Update: subversion-1.7.14-1.fc19
2013-12-11 02:00:11
[SECURITY] Fedora 18 Update: subversion-1.7.14-1.fc18
2013-12-11 02:00:39
freebsd
freebsd
subversion -- multiple vulnerabilities
2013-11-15 00:00:00
subversion -- mod_dav_svn vulnerability
2014-01-10 00:00:00
mageia
mageia
Updated subversion package fixes security vulnerabilities
2013-12-01 01:37:01
Updated subversion packages fix CVE-2014-0032
2014-02-28 02:00:06
Updated subversion packages fix CVE-2014-0032
2014-02-28 01:58:42
amazon
amazon
Medium: subversion
2013-12-17 21:39:00
Medium: subversion
2014-03-25 12:14:00
cve
cve
CVE-2013-4505
2013-12-07 20:55:00
CVE-2014-0032
2014-02-14 15:55:00
CVE-2013-4558
2013-12-07 20:55:00
debiancve
debiancve
CVE-2013-4505
2013-12-07 20:55:00
CVE-2013-4558
2013-12-07 20:55:00
CVE-2014-0032
2014-02-14 15:55:00
prion
prion
Design/Logic Flaw
2013-12-07 20:55:00
Command injection
2014-02-14 15:55:00
Design/Logic Flaw
2013-12-07 20:55:00
ubuntucve
ubuntucve
CVE-2013-4505
2013-12-07 00:00:00
CVE-2013-4558
2013-12-07 00:00:00
CVE-2014-0032
2014-02-14 00:00:00
kaspersky
kaspersky
KLA10069 DoS vulnerability in Apache Subversion
2013-07-12 00:00:00
KLA10071 DoS vulnerability in Apache Subversion
2014-08-07 00:00:00
veracode
veracode
Denial Of Service (DoS)
2020-04-10 01:21:19
oraclelinux
oraclelinux
subversion security update
2014-03-05 00:00:00
centos
centos
mod_dav_svn, subversion security update
2014-03-06 11:19:14
redhat
redhat
(RHSA-2014:0255) Moderate: subversion security update
2014-03-05 00:00:00
ubuntu
ubuntu
Subversion vulnerabilities
2014-08-14 00:00:00
osv
osv
subversion - security update
2015-04-24 00:00:00
debian
debian
[SECURITY] [DLA 207-1] subversion security update
2015-04-24 09:40:22
gentoo
gentoo
Subversion, Serf: Multiple Vulnerabilities
2016-10-11 00:00:00

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.139 Low

EPSS

Percentile

95.6%

JSON
Related for SSA-2014-058-01
securityvulns5openvas26nessus28fedora5freebsd2mageia3amazon2cve3debiancve3prion3ubuntucve3kaspersky2veracode1oraclelinux1centos1redhat1ubuntu1osv1debian1gentoo1