FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2011-0715

This CVE name corresponds to:

Entered Topic
2011-03-05 subversion -- remote HTTP DoS vulnerability

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2011-0715 at cve.mitre.org

Details

Type Candidate
Name CVE-2011-0715
Phase Assigned(20110131)

Description

The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.16, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request that contains a lock token.

References

Source Reference
MLIST [dev] 20110303 Subversion 1.6.16 Released
CONFIRM http://subversion.apache.org/security/CVE-2011-0715-advisory.txt
CONFIRM http://svn.apache.org/repos/asf/subversion/tags/1.6.16/CHANGES
CONFIRM http://svn.apache.org/viewvc?view=revision&revision=1071239
CONFIRM http://svn.apache.org/viewvc?view=revision&revision=1071307
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=680755
CONFIRM http://support.apple.com/kb/HT4723
APPLE APPLE-SA-2011-06-23-1
DEBIAN DSA-2181
FEDORA FEDORA-2011-2657
FEDORA FEDORA-2011-2698
FEDORA FEDORA-2011-3775
MANDRIVA MDVSA-2011:067
REDHAT RHSA-2011:0327
REDHAT RHSA-2011:0328
SLACKWARE SSA:2011-070-01
SUSE SUSE-SR:2011:005
UBUNTU USN-1096-1
BID 46734
OSVDB 70964
OVAL oval:org.mitre.oval:def:18967
SECTRACK 1025161
SECUNIA 43603
SECUNIA 43583
SECUNIA 43672
SECUNIA 43794
VUPEN ADV-2011-0567
VUPEN ADV-2011-0568
VUPEN ADV-2011-0624
VUPEN ADV-2011-0660
VUPEN ADV-2011-0684
VUPEN ADV-2011-0776
VUPEN ADV-2011-0885
XF subversion-moddavsvn-dos(65876)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.