CVE-2015-0251

Currently unrated

Key Information:

Vendor: Apache
Status: Subversion
Vendor: CVE Published:; 8 April 2015

Summary

The mod_dav_svn server in Subversion 1.5.0 through 1.7.19 and 1.8.0 through 1.8.11 allows remote authenticated users to spoof the svn:author property via a crafted v1 HTTP protocol request sequences.

References

http://rhn.redhat.com/errata/RHSA-2015-1742.html

vendor-advisoryx_refsource_REDHAT

http://www.debian.org/security/2015/dsa-3231

vendor-advisoryx_refsource_DEBIAN

http://rhn.redhat.com/errata/RHSA-2015-1633.html

vendor-advisoryx_refsource_REDHAT

Timeline

Vulnerability published
Apr 8, 2015
Vulnerability Reserved
Nov 18, 2014