Описание
Apache Subversion's mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by exponential XML entity expansion. The attack can cause the targeted process to consume an excessive amount of CPU resources or memory.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | not-affected | 1.9.5-1ubuntu1 |
| bionic | not-affected | 1.9.5-1ubuntu1 |
| cosmic | not-affected | 1.9.5-1ubuntu1 |
| devel | not-affected | 1.9.5-1ubuntu1 |
| disco | not-affected | 1.9.5-1ubuntu1 |
| eoan | not-affected | 1.9.5-1ubuntu1 |
| esm-apps/bionic | not-affected | 1.9.5-1ubuntu1 |
| esm-apps/focal | not-affected | 1.9.5-1ubuntu1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.8.8-1ubuntu3.3]] |
| esm-infra/xenial | released | 1.9.3-2ubuntu1.1 |
Показывать по
EPSS
4 Medium
CVSS2
6.5 Medium
CVSS3
Связанные уязвимости
Apache Subversion's mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by exponential XML entity expansion. The attack can cause the targeted process to consume an excessive amount of CPU resources or memory.
Apache Subversion's mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by exponential XML entity expansion. The attack can cause the targeted process to consume an excessive amount of CPU resources or memory.
Apache Subversion's mod_dontdothat module and HTTP clients 1.4.0 throu ...
Apache Subversion's mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by exponential XML entity expansion. The attack can cause the targeted process to consume an excessive amount of CPU resources or memory.
EPSS
4 Medium
CVSS2
6.5 Medium
CVSS3