Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 573
Alerts This Week
Warning Icon 1 573

Ubuntu 16.04 LTS: USN-4082-1 Critical Subversion DoS Warning

ubuntu
Calendar Grey July 31, 2019
Dist Ubuntu Esm H88
Security flaws in Subversion for Ubuntu 16.04 LTS might trigger system failures from specially designed network packets. It's crucial to patch immediately!
Subversion could be made to crash if it received specially crafted network traffic.

Summary

Subversion could be made to crash if it received specially crafted network

traffic.

Software Description:

- subversion: Advanced version control system

Details:

Ace Olszowka discovered that Subversion incorrectly handled certain

svnserve requests. A remote attacker could possibly use this issue to

cause svnserver to crash, resulting in a denial of service.

(CVE-2018-11782)

Tomas Bortoli discovered that Subversion incorrectly handled certain

svnserve requests. A remote attacker could possibly use this issue to

cause svnserver to crash, resulting in a denial of service. (CVE-2019-0203)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 16.04 LTS:
  libsvn1                         1.9.3-2ubuntu1.3
  subversion                      1.9.3-2ubuntu1.3

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-4082-1

CVE-2018-11782, CVE-2019-0203

Severity
critical
Lowest
Low
Medium
High
Critical

July 31, 2019

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.