7.8 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:N/I:N/A:C
Subversion (SVN) is vulnerable to denial of service (DoS). The vulnerability exists through a flaw found in the way the svnserve tool of Subversion handled remote client network connections. An attacker with read access to an SVN repository served via svnserve could use this flaw to cause the svnserve daemon to exit, leading to a denial of service.
lists.opensuse.org/opensuse-updates/2013-07/msg00015.html
mail-archives.apache.org/mod_mbox/subversion-announce/201305.mbox/%3CCADkdwvRK51pQsybfvsAzjxQJrmVpL0fEa1K4WGkUP9Tzz6KFDw%40mail.gmail.com%3E
mail-archives.apache.org/mod_mbox/subversion-announce/201305.mbox/%3CCADkdwvTxsMFeHgc8bK2V-2PrSrKoBffTi8%2BxbHA5tocrrewWew%40mail.gmail.com%3E
rhn.redhat.com/errata/RHSA-2014-0255.html
www.debian.org/security/2013/dsa-2703
www.ubuntu.com/usn/USN-1893-1
access.redhat.com/errata/RHSA-2014:0255
access.redhat.com/security/updates/classification/#moderate
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A19057
subversion.apache.org/security/CVE-2013-1968-advisory.txt
subversion.apache.org/security/CVE-2013-2112-advisory.txt
subversion.apache.org/security/CVE-2014-0032-advisory.txt