Explore top 10 tips to secure your open-source projects now. Read More

×
Alerts This Week
Warning Icon 1 728
Alerts This Week
Warning Icon 1 728

Ubuntu 22.04 LTS: USN-5450-1 Critical Subversion Issue Fix

ubuntu
Calendar Grey May 27, 2022
Dist Ubuntu Esm H88
Remedies for various subversion security flaws in Ubuntu 22.04 LTS aimed at bolstering system protection.
Several security issues were fixed in subversion.

Summary

Several security issues were fixed in subversion.

Software Description:

- subversion: Advanced version control system

Details:

Evgeny Kotkov discovered that subversion servers did not properly follow

path-based authorization rules in certain cases. An attacker could

potentially use this issue to retrieve information about private paths.

(CVE-2021-28544)

Thomas Weißschuh discovered that subversion servers did not properly handle

memory in certain configurations. A remote attacker could potentially use

this issue to cause a denial of service or other unspecified impact.

(CVE-2022-24070)

Update Instructions

The problem can be corrected by updating your system to the following
package versions:

Ubuntu 22.04 LTS:
  libapache2-mod-svn              1.14.1-3ubuntu0.22.04.1
  libsvn1                         1.14.1-3ubuntu0.22.04.1
  subversion                      1.14.1-3ubuntu0.22.04.1

In general, a standard system update will make all the necessary changes.

References

https://ubuntu.com/security/notices/USN-5450-1

CVE-2021-28544, CVE-2022-24070

Severity
critical
Lowest
Low
Medium
High
Critical

May 27, 2022

Package Information

Get the latest News and Insights

Get the latest Linux and open source security news straight to your inbox.