Your submission was sent successfully! Close

USN-5445-1: Subversion vulnerabilities

26 May 2022

Several security issues were fixed in subversion.

Releases

Packages

Details

Ace Olszowka discovered that Subversion incorrectly handled certain
svnserve requests. A remote attacker could possibly use this issue to cause
svnserver to crash, resulting in a denial of service. This issue only
affected Ubuntu 18.04 LTS. (CVE-2018-11782)

Tomas Bortoli discovered that Subversion incorrectly handled certain
svnserve requests. A remote attacker could possibly use this issue to cause
svnserver to crash, resulting in a denial of service. This issue only
affected Ubuntu 18.04 LTS. (CVE-2019-0203)

Thomas Ã…kesson discovered that Subversion incorrectly handled certain
inputs. An attacker could possibly use this issue to cause a denial of
service. (CVE-2020-17525)

Update instructions

The problem can be corrected by updating your system to the following package versions:

Ubuntu 20.04
Ubuntu 18.04

In general, a standard system update will make all the necessary changes.

Related notices

  • USN-5322-1: libapache2-svn, libsvn-java, libsvn-perl, libsvn-doc, libsvn-dev, libapache2-mod-svn, libsvn-ruby1.8, subversion, libsvn1, subversion-tools, python-subversion, ruby-svn
  • USN-4082-2: libsvn1, subversion
  • USN-4082-1: libapache2-svn, libsvn-java, libsvn-perl, libsvn-doc, libsvn-dev, libapache2-mod-svn, libsvn-ruby1.8, subversion, libsvn1, subversion-tools, python-subversion, ruby-svn