Vulnerability in Apache Subversion
CVE-2014-8108
The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.7.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a request for a URI that triggers a l…
EPSS: 0.050 (89.9th percentile) — read the EPSS interpretation.
Affected products
- Apache Subversion — versions 1.0.0, 1.0.1, 1.0.2
- Apple Xcode — versions 6.1.1
- Redhat Enterprise_linux_desktop — versions 7.0
- Redhat Enterprise_linux_hpc_node — versions 7.0
- Redhat Enterprise_linux_server — versions 7.0
- Redhat Enterprise_linux_workstation — versions 7.0
- N/a — versions n/a
References
- secalert@redhat.com (x_refsource_CONFIRM, Patch, Vendor Advisory)
- RHSA-2015:0166 (x_refsource_REDHAT, vendor-advisory, Third Party Advisory)
- secalert@redhat.com (x_refsource_CONFIRM, Third Party Advisory)
- 71725 (vdb-entry, x_refsource_BID)
- APPLE-SA-2015-03-09-4 (vendor-advisory, x_refsource_APPLE, Mailing List, Third Party Advisory)
- 61131 (x_refsource_SECUNIA, third-party-advisory)
- USN-2721-1 (x_refsource_UBUNTU, vendor-advisory)