FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

www/mod_dav_svn -- Malicious SVN clients can crash mod_dav_svn.

Affected packages
1.10.0 <= mod_dav_svn < 1.10.3
mod_dav_svn = 1.11.0

Details

VuXML ID 4af3241d-1f0c-11e9-b4bd-d43d7eed0ce2
Discovery 2019-01-23
Entry 2019-01-23

Subversion project reports:

Malicious SVN clients can trigger a crash in mod_dav_svn by omitting the root path from a recursive directory listing request.

References

URL http://subversion.apache.org/security/CVE-2018-11803-advisory.txt