Описание
Security update for subversion
This update for subversion fixes the following issues:
- CVE-2015-3187: svn_repos_trace_node_locations() reveals paths hidden by authz (bsc#939517)
- CVE-2016-2167: mod_authz_svn: DoS in MOVE/COPY authorization check (bsc#976849)
- CVE-2016-2168: svnserve/sasl may authenticate users using the wrong realm (bsc#976850)
Список пакетов
SUSE Linux Enterprise Software Development Kit 11 SP4
SUSE Studio Onsite 1.3
Ссылки
- Link for SUSE-SU-2016:1511-1
- E-Mail link for SUSE-SU-2016:1511-1
- SUSE Security Ratings
- SUSE Bug 939517
- SUSE Bug 976849
- SUSE Bug 976850
- SUSE CVE CVE-2015-3187 page
- SUSE CVE CVE-2016-2167 page
- SUSE CVE CVE-2016-2168 page
Описание
The svn_repos_trace_node_locations function in Apache Subversion before 1.7.21 and 1.8.x before 1.8.14, when path-based authorization is used, allows remote authenticated users to obtain sensitive path information by reading the history of a node that has been moved from a hidden path.
Затронутые продукты
Ссылки
- CVE-2015-3187
- SUSE Bug 939517
Описание
The canonicalize_username function in svnserve/cyrus_auth.c in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4, when Cyrus SASL authentication is used, allows remote attackers to authenticate and bypass intended access restrictions via a realm string that is a prefix of an expected repository realm string.
Затронутые продукты
Ссылки
- CVE-2016-2167
- SUSE Bug 976849
Описание
The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.
Затронутые продукты
Ссылки
- CVE-2016-2168
- SUSE Bug 976850