CVE-2013-1847

Published: May 2, 2013

Modified: Aug 6, 2024

PUBLISHED

Description

The mod_dav_svn Apache HTTPD server module in Subversion 1.6.0 through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an anonymous LOCK for a URL that does not exist.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

openSUSE-SU-2013:0687

vendor-advisory

x_refsource_SUSE

RHSA-2013:0737

vendor-advisory

x_refsource_REDHAT

https://bugzilla.redhat.com/show_bug.cgi?id=929090

x_refsource_CONFIRM

[subversion-announce] 20130404 Subversion 1.6.21 released

mailing-list

x_refsource_MLIST

http://subversion.apache.org/security/CVE-2013-1847-advisory.txt

x_refsource_CONFIRM

[subversion-announce] 20130404 Apache Subversion 1.7.9 released

mailing-list

x_refsource_MLIST

USN-1893-1

vendor-advisory

x_refsource_UBUNTU

oval:org.mitre.oval:def:18538

vdb-entry

signature

x_refsource_OVAL

openSUSE-SU-2013:0932

vendor-advisory

x_refsource_SUSE

MDVSA-2013:153

vendor-advisory

x_refsource_MANDRIVA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2013-1847

Description

Affected Products

References