Vulners
Lucene search
Apache Subversion Arbitrary Code Execution Vulnerability
| Reporter | Title | Published | Views | Family All 123 |
|---|---|---|---|---|
 | SourceTree Remote Code Execution Exploit | 7 Sep 201700:00 | – | zdt |
 | IBM Security Network Protection / IBM QRadar Network Security / XGS Technote Index | 31 Jan 202100:10 | – | ibm |
| Security Bulletin: IBM QRadar Network Security is affected by vulnerability in subversion (CVE-2017-9800) | 16 Jun 201822:03 | – | ibm |
| Security Bulletin: A vulnerability in subversion affects PowerKVM | 18 Jun 201801:38 | – | ibm |
| Security Bulletin: Multiple Security Vulnerabilities affect IBM® Cloud Private | 20 Jul 201818:56 | – | ibm |
 | subversion -- Arbitrary code execution vulnerability | 10 Aug 201700:00 | – | freebsd |
 | CVE-2017-17459 | 7 Dec 201718:29 | – | attackerkb |
 | Important: subversion, mod_dav_svn | 31 Aug 201700:00 | – | amazon |
 | Amazon Linux AMI : subversion / mod_dav_svn (ALAS-2017-883) | 1 Sep 201700:00 | – | nessus |
| CentOS 7 : subversion (CESA-2017:2480) | 25 Aug 201700:00 | – | nessus |
10
I'm happy to announce the release of Apache Subversion 1.9.7.
Please choose the mirror closest to you by visiting:
http://subversion.apache.org/download.cgi?update=201708081800#recommended-release
This is a stable security release of the Apache Subversion open source
version control system. It fixes one security issue:
CVE-2017-9800:
Arbitrary code execution on clients through malicious svn+ssh URLs in
svn:externals and svn:sync-from-url
http://subversion.apache.org/security/CVE-2017-9800-advisory.txt
The SHA1 checksums are:
874b81749cdc3e88152d103243c3623ac6338388 subversion-1.9.7.tar.bz2
1a5f48acf9d0faa60e8c7aea96a9b29ab1d4dcac subversion-1.9.7.tar.gz
741727b62596bf27f75838c46d1bb6938c83fbd7 subversion-1.9.7.zip
SHA-512 checksums are available at:
https://www.apache.org/dist/subversion/subversion-1.9.7.tar.bz2.sha512
https://www.apache.org/dist/subversion/subversion-1.9.7.tar.gz.sha512
https://www.apache.org/dist/subversion/subversion-1.9.7.zip.sha512
PGP Signatures are available at:
http://www.apache.org/dist/subversion/subversion-1.9.7.tar.bz2.asc
http://www.apache.org/dist/subversion/subversion-1.9.7.tar.gz.asc
http://www.apache.org/dist/subversion/subversion-1.9.7.zip.asc
For this release, the following people have provided PGP signatures:
Johan Corveleyn [4096R/B59CE6D6010C8AAD] with fingerprint:
8AA2 C10E EAAD 44F9 6972 7AEA B59C E6D6 010C 8AAD
Stefan Sperling [2048R/4F7DBAA99A59B973] with fingerprint:
8BC4 DAE0 C5A4 D65F 4044 0107 4F7D BAA9 9A59 B973
Evgeny Kotkov [4096R/B64FFF1209F9FA74] with fingerprint:
E7B2 A7F4 EC28 BE9F F8B3 8BA4 B64F FF12 09F9 FA74
Stefan Hett (CODE SIGNING KEY) [4096R/376A3CFD110B1C95] with fingerprint:
7B8C A7F6 451A D89C 8ADC 077B 376A 3CFD 110B 1C95
Daniel Shahaf [3072R/A5FEEE3AC7937444] with fingerprint:
E966 46BE 08C0 AF0A A0F9 0788 A5FE EE3A C793 7444
Philip Martin [2048R/76D788E1ED1A599C] with fingerprint:
A844 790F B574 3606 EE95 9207 76D7 88E1 ED1A 599C
Release notes for the 1.9.x release series may be found at:
http://subversion.apache.org/docs/release-notes/1.9.html
You can find the list of changes between 1.9.7 and earlier versions at:
http://svn.apache.org/repos/asf/subversion/tags/1.9.7/CHANGES
Questions, comments, and bug reports to [email protected]
Thanks,
- The Subversion Team
# 0day.today [2018-02-09] #Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
14 Aug 2017 00:00Current
9.9High risk
Vulners AI Score9.9
EPSS0.18892