QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2009-2411

Back to search

CVE-2009-2411

Published: Aug 7, 2009

Modified: Aug 7, 2024

PUBLISHED

Description

Multiple integer overflows in the libsvn_delta library in Subversion before 1.5.7, and 1.6.x before 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via an svndiff stream with large windows that trigger a heap-based buffer overflow, a related issue to CVE-2009-2412.

VendorProductVersions

n/a

n/a

affected
n/a

References

[dev] 20090806 Subversion 1.5.7 Released
mailing-list
x_refsource_MLIST
1022697
vdb-entry
x_refsource_SECTRACK
ADV-2009-2180
vdb-entry
x_refsource_VUPEN
20090807 Subversion heap overflow
mailing-list
x_refsource_BUGTRAQ
36262
third-party-advisory
x_refsource_SECUNIA
36257
third-party-advisory
x_refsource_SECUNIA
36184
third-party-advisory
x_refsource_SECUNIA
USN-812-1
vendor-advisory
x_refsource_UBUNTU
DSA-1855
vendor-advisory
x_refsource_DEBIAN
36224
third-party-advisory
x_refsource_SECUNIA
35983
vdb-entry
x_refsource_BID
[dev] 20090806 Subversion 1.6.4 Released
mailing-list
x_refsource_MLIST
FEDORA-2009-8449
vendor-advisory
x_refsource_FEDORA
RHSA-2009:1203
vendor-advisory
x_refsource_REDHAT
36232
third-party-advisory
x_refsource_SECUNIA
ADV-2009-3184
vdb-entry
x_refsource_VUPEN
MDVSA-2009:199
vendor-advisory
x_refsource_MANDRIVA
oval:org.mitre.oval:def:11465
vdb-entry
signature
x_refsource_OVAL
56856
vdb-entry
x_refsource_OSVDB
APPLE-SA-2009-11-09-1
vendor-advisory
x_refsource_APPLE
FEDORA-2009-8432
vendor-advisory
x_refsource_FEDORA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now