VYPR

rpm package

suse/subversion&distro=SUSE Linux Enterprise Server 15 SP1-LTSS

pkg:rpm/suse/subversion&distro=SUSE%20Linux%20Enterprise%20Server%2015%20SP1-LTSS

Vulnerabilities (3)

  • CVE-2022-24070Apr 12, 2022
    affected < 1.10.6-150000.3.21.1fixed 1.10.6-150000.3.21.1

    Subversion's mod_dav_svn is vulnerable to memory corruption. While looking up path-based authorization rules, mod_dav_svn servers may attempt to use memory which has already been freed. Affected Subversion mod_dav_svn servers 1.10.0 through 1.14.1 (inclusive). Servers that do not

  • CVE-2021-28544Apr 12, 2022
    affected < 1.10.6-150000.3.21.1fixed 1.10.6-150000.3.21.1

    Apache Subversion SVN authz protected copyfrom paths regression Subversion servers reveal 'copyfrom' paths that should be hidden according to configured path-based authorization (authz) rules. When a node has been copied from a protected location, users with access to the copy ca

  • CVE-2020-17525Mar 17, 2021
    affected < 1.10.6-3.15.1fixed 1.10.6-3.15.1

    Subversion's mod_authz_svn module will crash if the server is using in-repository authz rules with the AuthzSVNReposRelativeAccessFile option and a client sends a request for a non-existing repository URL. This can lead to disruption for users of the service. This issue was fixed