Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 433
Alerts This Week
Warning Icon 1 433

Debian LTS: DLA-1903-1 Moderate: Subversion Denial Of Service Issues

debian lts
Calendar Grey August 29, 2019
Dist Debian Esm H88
Explore the resolution for vulnerabilities in Subversion flagged in CVE-2018-11782 and CVE-2019-0203 within the Debian Long Term Support framework.
Several vulnerabilities were discovered in Subversion, a version control system

Summary

CVE-2018-11782

Ace Olszowka reported that the Subversion's svnserve server process
may exit when a well-formed read-only request produces a particular
answer, leading to a denial of service.

CVE-2019-0203

Tomas Bortoli reported that the Subversion's svnserve server process
may exit when a client sends certain sequences of protocol commands.
If the server is configured with anonymous access enabled this could
lead to a remote unauthenticated denial of service.

For Debian 8 "Jessie", these problems have been fixed in version
1.8.10-6+deb8u7.

We recommend that you upgrade your subversion packages.

Further information about Debian LTS security advisories, how to apply
these updates to your system and frequently asked questions can be
found at: https://wiki.debian.org/LTS


<pre><font face="Courier">Package: subversion
Version: 1.8.10-6+deb8u7
CVE ID: CVE-2018-11782 CVE-2019-0203

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.