Lucene search
SuseSUSE-SA:2009:044HistoryAug 14, 2009 - 11:06 a.m.
remote code execution in subversion
2009-08-1411:06:32
lists.opensuse.org
16
0.052 Low
EPSS
Percentile
92.2%
Subversion is a revision control system, which is mainly used for code development. The ibsvn_delta library is vulnerable to integer overflows while processing svndiff streams, this leads to overflows on the heap because of insufficient memory allocation. This bug can be exploited by clients with commit access to cause a remote denial-of-service or arbitrary code execution. It can also be exploited in the other direction from a server to a client that tries to do a checkout or update.
Solution
Please update.
Related
openvas
openvas
SuSE Security Advisory SUSE-SA:2009:044 (subversion)
2009-08-17 00:00:00
SuSE Security Advisory SUSE-SA:2009:044 (subversion)
2009-08-17 00:00:00
Oracle Linux Local Check: ELSA-2009-1203
2015-10-08 00:00:00
nessus
nessus
openSUSE Security Update : subversion (subversion-1185)
2009-08-13 00:00:00
CentOS 5 : subversion (CESA-2009:1203)
2010-01-06 00:00:00
Fedora 10 : subversion-1.6.4-2.fc10 (2009-8432)
2009-08-11 00:00:00
seebug
seebug
Subversion libsvn_delta库整数溢出漏洞
2009-08-11 00:00:00
Fetchmail SSL证书空字符验证漏洞
2009-08-09 00:00:00
oraclelinux
oraclelinux
subversion security update
2009-08-10 00:00:00
fetchmail security update
2009-09-09 00:00:00
freebsd
freebsd
subversion -- heap overflow vulnerability
2009-08-06 00:00:00
fetchmail -- improper SSL certificate subject verification
2009-08-06 00:00:00
slackware
slackware
subversion
2009-08-07 00:58:39
fetchmail
2009-08-06 01:10:24
centos
centos
mod_dav_svn, subversion security update
2009-08-11 21:17:40
fetchmail security update
2009-09-08 17:07:54
redhat
redhat
(RHSA-2009:1203) Important: subversion security update
2009-08-10 00:00:00
(RHSA-2009:1427) Moderate: fetchmail security update
2009-09-08 00:00:00
altlinux
altlinux
Security fix for the ALT Linux 5 package subversion version 1.6.4-alt1
2009-08-18 00:00:00
Security fix for the ALT Linux 5 package fetchmail version 6.3.13-alt1
2010-01-01 00:00:00
Security fix for the ALT Linux 6 package fetchmail version 6.3.13-alt1
2010-01-01 00:00:00
gentoo
gentoo
Subversion: Remote execution of arbitrary code
2009-08-18 00:00:00
Fetchmail: Multiple vulnerabilities
2010-06-01 00:00:00
veracode
veracode
Remote Code Execution(RCE)
2020-04-10 00:39:59
Man-in-the-Middle (MitM)
2020-04-10 00:36:12
fedora
fedora
[SECURITY] Fedora 10 Update: subversion-1.6.4-2.fc10
2009-08-10 21:48:46
[SECURITY] Fedora 11 Update: subversion-1.6.4-2.fc11
2009-08-10 21:53:56
[SECURITY] Fedora 10 Update: fetchmail-6.3.8-9.fc10
2009-09-04 04:08:14
debian
debian
ubuntu
ubuntu
Subversion vulnerability
2009-08-08 00:00:00
fetchmail vulnerability
2009-08-12 00:00:00
securityvulns
securityvulns
fetchmail certificate spoofing
2009-08-08 00:00:00
[SECURITY] [DSA 1852-1] New fetchmail packages fix SSL certificate verification weakness
2009-08-08 00:00:00
Subversion / APR multiple buffer overflows
2009-08-08 00:00:00
prion
prion
Integer overflow
2009-08-07 19:30:00
Design/Logic Flaw
2009-08-07 19:00:00
ubuntucve
ubuntucve
CVE-2009-2411
2009-08-07 00:00:00
CVE-2009-2666
2009-08-07 00:00:00
debiancve
debiancve
CVE-2009-2411
2009-08-07 19:30:00
CVE-2009-2666
2009-08-07 19:00:00
cve
cve
CVE-2009-2411
2009-08-07 19:30:00
CVE-2009-2666
2009-08-07 19:00:00