Описание
Security update for subversion
This update for subversion fixes the following issues:
- CVE-2016-2167: mod_authz_svn: DoS in MOVE/COPY authorization check (bsc#976849)
- CVE-2016-2168: svnserve/sasl may authenticate users using the wrong realm (bsc#976850)
The following non-security bugs were fixed:
- bsc#969159: subversion dependencies did not enforce matching password store
- bsc#911620: svnserve could not be started via YaST Service manager
Список пакетов
SUSE Linux Enterprise Software Development Kit 12
SUSE Linux Enterprise Software Development Kit 12 SP1
Ссылки
- Link for SUSE-SU-2016:1249-1
- E-Mail link for SUSE-SU-2016:1249-1
- SUSE Security Ratings
- SUSE Bug 911620
- SUSE Bug 969159
- SUSE Bug 976849
- SUSE Bug 976850
- SUSE CVE CVE-2016-2167 page
- SUSE CVE CVE-2016-2168 page
Описание
The canonicalize_username function in svnserve/cyrus_auth.c in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4, when Cyrus SASL authentication is used, allows remote attackers to authenticate and bypass intended access restrictions via a realm string that is a prefix of an expected repository realm string.
Затронутые продукты
Ссылки
- CVE-2016-2167
- SUSE Bug 976849
Описание
The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.
Затронутые продукты
Ссылки
- CVE-2016-2168
- SUSE Bug 976850