SUSE-SU-2019:2032-1
- Source
- https://www.suse.com/support/update/announcement/2019/suse-su-20192032-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2019:2032-1.json
- JSON Data
- https://api.osv.dev/v1/vulns/SUSE-SU-2019:2032-1
- Upstream
- Related
- Published
- 2019-07-31T16:37:17Z
- Modified
- 2025-05-02T04:07:34.130244Z
- Summary
- Security update for subversion
- Details
-
This update for subversion fixes the following issues:
Security issues fixed:
- CVE-2018-11782: Fixed a remote denial of service in svnserve 'get-deleted-rev' (bsc#1142743).
- CVE-2019-0203: Fixed a remote, unauthenticated denial of service in svnserve (bsc#1142721).
Non-security issues fixed:
- Add instructions for running svnserve as a user different from 'svn', and remove sysconfig variables that are no longer effective with the systemd unit. bsc#1049448
- References
Affected packages
SUSE:Linux Enterprise Software Development Kit 12 SP4 / subversion
Package
- Name
- subversion
- Purl
- pkg:rpm/suse/subversion&distro=SUSE%20Linux%20Enterprise%20Software%20Development%20Kit%2012%20SP4
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.8.19-25.9.1
Ecosystem specific
{
"binaries": [
{
"subversion-python": "1.8.19-25.9.1",
"subversion-perl": "1.8.19-25.9.1",
"libsvn_auth_gnome_keyring-1-0": "1.8.19-25.9.1",
"subversion": "1.8.19-25.9.1",
"subversion-tools": "1.8.19-25.9.1",
"subversion-server": "1.8.19-25.9.1",
"subversion-devel": "1.8.19-25.9.1",
"subversion-bash-completion": "1.8.19-25.9.1"
}
]
}