CVE-2013-2112 — Apache Subversion vulnerability

10 documents9 sources

Severity

7.8HIGHNVD

EPSS

3.7%

top 12.04%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Apache Subversion Canonical Ubuntu Linux Collabnet Subversion +1 more

Timeline

PublishedJul 31

Latest updateMay 14

Description

The svnserve server in Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote attackers to cause a denial of service (exit) by aborting a connection.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages4 packages

▶Debianapache/subversion< 1.7.9-1+nmu2+3

▶NVDapache/subversion1.6.21+31

▶NVDcollabnet/subversion1.6.17

▶NVDopensuse/opensuse11.4

Also affects: Ubuntu Linux 12.04, 12.10, 13.04

🔴Vulnerability Details

GHSA

GHSA-44m8-rxc2-jwp2: The svnserve server in Subversion before 1↗2022-05-14

▶

CVEList

CVE-2013-2112: The svnserve server in Subversion before 1↗2013-07-31

▶

OSV

CVE-2013-2112: The svnserve server in Subversion before 1↗2013-07-31

▶

📋Vendor Advisories

Ubuntu

Subversion vulnerabilities↗2013-06-27

▶

Red Hat

subversion: Remote DoS due improper handling of early-closing TCP connections↗2013-05-31

▶

Debian

CVE-2013-2112: subversion - The svnserve server in Subversion before 1.6.23 and 1.7.x before 1.7.10 allows r...↗2013

▶

Apache

Apache subversion: CVE-2013-2112↗

▶

💬Community

Bugzilla

CVE-2013-2112 subversion: Remote DoS due improper handling of early-closing TCP connections↗2013-06-03

▶

Bugzilla

CVE-2013-2112 subversion: Remote DoS due improper handling of early-closing TCP connections [fedora-all]↗2013-06-03

▶