First Last Prev Next    This bug is not in your last search results.
Bug 31222 - subversion: Multiple DoS issues (3.1)
subversion: Multiple DoS issues (3.1)
Status: CLOSED WONTFIX
Product: UCS
Classification: Unclassified
Component: Security updates
UCS 3.1
Other Linux
: P3 normal (vote)
: UCS 3.1-x-errata
Assigned To: Security maintainers
:
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2013-04-26 16:16 CEST by Janek Walkenhorst
Modified: 2019-04-11 19:24 CEST (History)
1 user (show)

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Janek Walkenhorst univentionstaff 2013-04-26 16:16:03 CEST 
CVE-2013-1845
CVE-2013-1846
CVE-2013-1847
CVE-2013-1849

CVE-2013-1884 only affects later (>= 1.7) versions
Comment 1 Moritz Muehlenhoff univentionstaff 2013-06-04 10:11:34 CEST 
Repositories in FSFS format can be corrupted by authenticated users though newline injection (CVE-2013-1968)

Denial of service in svnserve through incorrect TCP connection management (CVE-2013-2112)
Comment 2 Moritz Muehlenhoff univentionstaff 2013-08-06 15:13:22 CEST 
(In reply to Moritz Muehlenhoff from comment #1)
> Repositories in FSFS format can be corrupted by authenticated users though
> newline injection (CVE-2013-1968)
> 
> Denial of service in svnserve through incorrect TCP connection management
> (CVE-2013-2112)

These two issues have been fixed in 3.2 with the import of Debian 6.0.8.
Comment 3 Moritz Muehlenhoff univentionstaff 2013-09-02 07:52:18 CEST 
The --pid-file option of svnserve does not validate whether the PID file is a symlink, allowing denial of service (CVE-2013-4277)
Comment 4 Moritz Muehlenhoff univentionstaff 2014-02-13 12:21:41 CET 
Denial of service in mod_dav_svn (CVE-2014-0032)
Comment 5 Moritz Muehlenhoff univentionstaff 2014-06-02 07:59:11 CEST 
The maintenance with bug and security fixes for UCS 3.1-x has ended on 31st of May 2014.

The maintenance of the UCS 3.x major series is continued by UCS 3.2-x that is supplied with bug and security fixes.

Customers still on UCS 3.1-x are encouraged to update to UCS 3.2. Please contact your partner or Univention for any questions.
First Last Prev Next    This bug is not in your last search results.