Alerts This Week
Warning Icon 1 609
Alerts This Week
Warning Icon 1 609

Mageia 8: 2022-0140 Moderate: Subversion Memory Corruption Issue

mageia
Calendar Grey April 13, 2022
Dist Mageia Esm H88
Updates for Subversion packages issued to resolve memory corruption vulnerabilities and path-related concerns. Urgent advisory for Mageia 8 users.
SVN authz protected copyfrom paths regression

Summary

SVN authz protected copyfrom paths regression. (CVE-2021-28544) Subversion's mod_dav_svn is vulnerable to memory corruption. (CVE-2022-24070)

References

- https://bugs.mageia.org/show_bug.cgi?id=30274

- https://subversion.apache.org/security/CVE-2021-28544-advisory.txt

- https://subversion.apache.org/security/CVE-2022-24070-advisory.txt

- https://www.openwall.com/lists/oss-security/2022/04/12/2

- https://www.cve.org/CVERecord?id=CVE-2021-28544

- https://www.cve.org/CVERecord?id=CVE-2022-24070

Topics%20covered

Topics Covered

security advisory memory corruption Subversion path issue moderate advisory Mageia

Resolution

SRPMS

- 8/core/subversion-1.14.2-1.mga8

Publication date: 13 Apr 2022
URL: https://advisories.mageia.org/MGASA-2022-0140.html
Type: security
CVE: CVE-2021-28544, CVE-2022-24070

Topics%20covered

Topics Covered

security advisory memory corruption Subversion path issue moderate advisory Mageia

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.

Related News

Your message here