1
PublicDateAtUSN: 2013-05-02
2
Candidate: CVE-2013-1849
5
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1849
6
http://seclists.org/fulldisclosure/2013/Mar/56
7
http://subversion.apache.org/security/CVE-2013-1849-advisory.txt
8
https://usn.ubuntu.com/usn/usn-1893-1
10
The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x through
11
1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of
12
service (NULL pointer dereference and crash) via a PROPFIND request for an
22
upstream: http://svn.apache.org/viewvc?view=revision&revision=1461943 (1.6)
23
upstream: http://svn.apache.org/viewvc?view=revision&revision=1461944 (1.7)
24
Tags_subversion: universe-binary
25
upstream_subversion: released (1.6.21, 1.7.9)
26
hardy_subversion: ignored (reached end-of-life)
27
lucid_subversion: ignored (reached end-of-life)
28
oneiric_subversion: ignored (reached end-of-life)
29
precise_subversion: released (1.6.17dfsg-3ubuntu3.3)
30
quantal_subversion: released (1.7.5-1ubuntu2.1)
31
raring_subversion: released (1.7.5-1ubuntu3.1)
32
devel_subversion: not-affected (1.7.9-1+nmu2ubuntu2)