Advisories ยป MGASA-2013-0244

Updated subversion packages fixes security vulnerability

Publication date: 11 Aug 2013
Type: security
Affected Mageia releases : 2 , 3
CVE: CVE-2013-4131

Description

Subversion's mod_dav_svn Apache HTTPD server module will trigger an assertion
on some requests made against a revision root. This can lead to a DoS. If
assertions are disabled it will trigger a read overflow which may cause a
SEGFAULT (or equivalent) or undefined behavior. Commit access is required to
exploit this (CVE-2013-4131).
                

References

SRPMS

3/core

2/core