DSA-4851-1 subversion -- subversionID: oval:org.secpod.oval:def:605430 | Date: (C)2021-02-15 (M)2023-04-02 |
Class: PATCH | Family: unix |
Thomas Akesson discovered a remotely triggerable vulnerability in the mod_authz_svn module in Subversion, a version control system. When using in-repository authz rules with the AuthzSVNReposRelativeAccessFile option an unauthenticated remote client can take advantage of this flaw to cause a denial of service by sending a request for a non-existing repository URL.
Product: |
libsvn-dev |
ruby-svn |
libsvn-doc |
libsvn1 |
subversion |
libsvn-perl |
libapache2-mod-svn |
python-subversion |
libsvn-java |