Computer Security
[EN] securityvulns.ru no-pyccku


Apache Subversion DoS
updated since 23.12.2014
Published:13.01.2015
Source:
SecurityVulns ID:14176
Type:remote
Threat Level:
6/10
Description:mod_dav_svn NULL pointer dereference on REPORT request processing.
Affected:APACHE : Subversion 1.8
CVE:CVE-2014-8108 (The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.7.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a request for a URI that triggers a lookup for a virtual transaction name that does not exist.)
 CVE-2014-3580 (The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a REPORT request for a resource that does not exist.)
Original documentdocumentMANDRIVA, [ MDVSA-2015:005 ] subversion (13.01.2015)
 documentDEBIAN, [SECURITY] [DSA 3107-1] subversion security update (23.12.2014)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod