vulnerability
SUSE: CVE-2020-17525: SUSE Linux Security Advisory
| Severity | CVSS | Published | Added | Modified |
|---|---|---|---|---|
| 4 | (AV:N/AC:M/Au:N/C:N/I:N/A:P) | Feb 10, 2021 | Feb 12, 2021 | Oct 22, 2021 |
Severity
4
CVSS
(AV:N/AC:M/Au:N/C:N/I:N/A:P)
Published
Feb 10, 2021
Added
Feb 12, 2021
Modified
Oct 22, 2021
Description
Subversion's mod_authz_svn module will crash if the server is using in-repository authz rules with the AuthzSVNReposRelativeAccessFile option and a client sends a request for a non-existing repository URL. This can lead to disruption for users of the service. This issue was fixed in mod_dav_svn+mod_authz_svn servers 1.14.1 and mod_dav_svn+mod_authz_svn servers 1.10.7
Solution(s)
suse-upgrade-libsvn_auth_gnome_keyring-1-0suse-upgrade-libsvn_auth_kwallet-1-0suse-upgrade-subversionsuse-upgrade-subversion-bash-completionsuse-upgrade-subversion-develsuse-upgrade-subversion-perlsuse-upgrade-subversion-pythonsuse-upgrade-subversion-python-ctypessuse-upgrade-subversion-rubysuse-upgrade-subversion-serversuse-upgrade-subversion-tools
NEW
Explore Exposure Command
Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.