The walk function in repos.c in the mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.15, allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger the walking of SVNParentPath collections.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Subversion | Apache | * | 1.6.14 (including) |
| Subversion | Apache | 0.6 (including) | 0.6 (including) |
| Subversion | Apache | 0.7 (including) | 0.7 (including) |
| Subversion | Apache | 0.8 (including) | 0.8 (including) |
| Subversion | Apache | 0.9 (including) | 0.9 (including) |
| Subversion | Apache | 0.10.0 (including) | 0.10.0 (including) |
| Subversion | Apache | 0.10.1 (including) | 0.10.1 (including) |
| Subversion | Apache | 0.10.2 (including) | 0.10.2 (including) |
| Subversion | Apache | 0.11.1 (including) | 0.11.1 (including) |
| Subversion | Apache | 0.12.0 (including) | 0.12.0 (including) |
| Subversion | Apache | 0.13.0 (including) | 0.13.0 (including) |
| Subversion | Apache | 0.13.1 (including) | 0.13.1 (including) |
| Subversion | Apache | 0.13.2 (including) | 0.13.2 (including) |
| Subversion | Apache | 0.14.0 (including) | 0.14.0 (including) |
| Subversion | Apache | 0.14.1 (including) | 0.14.1 (including) |
| Subversion | Apache | 0.14.2 (including) | 0.14.2 (including) |
| Subversion | Apache | 0.14.3 (including) | 0.14.3 (including) |
| Subversion | Apache | 0.14.4 (including) | 0.14.4 (including) |
| Subversion | Apache | 0.14.5 (including) | 0.14.5 (including) |
| Subversion | Apache | 0.15 (including) | 0.15 (including) |
| Subversion | Apache | 0.16 (including) | 0.16 (including) |
| Subversion | Apache | 0.16.1 (including) | 0.16.1 (including) |
| Subversion | Apache | 0.17.0 (including) | 0.17.0 (including) |
| Subversion | Apache | 0.17.1 (including) | 0.17.1 (including) |
| Subversion | Apache | 0.18.0 (including) | 0.18.0 (including) |
| Subversion | Apache | 0.18.1 (including) | 0.18.1 (including) |
| Subversion | Apache | 0.19.0 (including) | 0.19.0 (including) |
| Subversion | Apache | 0.19.1 (including) | 0.19.1 (including) |
| Subversion | Apache | 0.20.0 (including) | 0.20.0 (including) |
| Subversion | Apache | 0.20.1 (including) | 0.20.1 (including) |
| Subversion | Apache | 0.21.0 (including) | 0.21.0 (including) |
| Subversion | Apache | 0.22.0 (including) | 0.22.0 (including) |
| Subversion | Apache | 0.22.1 (including) | 0.22.1 (including) |
| Subversion | Apache | 0.22.2 (including) | 0.22.2 (including) |
| Subversion | Apache | 0.23.0 (including) | 0.23.0 (including) |
| Subversion | Apache | 0.24.0 (including) | 0.24.0 (including) |
| Subversion | Apache | 0.24.1 (including) | 0.24.1 (including) |
| Subversion | Apache | 0.24.2 (including) | 0.24.2 (including) |
| Subversion | Apache | 0.25.0 (including) | 0.25.0 (including) |
| Subversion | Apache | 0.26.0 (including) | 0.26.0 (including) |
| Subversion | Apache | 0.27.0 (including) | 0.27.0 (including) |
| Subversion | Apache | 0.28.0 (including) | 0.28.0 (including) |
| Subversion | Apache | 0.28.1 (including) | 0.28.1 (including) |
| Subversion | Apache | 0.28.2 (including) | 0.28.2 (including) |
| Subversion | Apache | 0.29.0 (including) | 0.29.0 (including) |
| Subversion | Apache | 0.30.0 (including) | 0.30.0 (including) |
| Subversion | Apache | 0.31.0 (including) | 0.31.0 (including) |
| Subversion | Apache | 0.32.1 (including) | 0.32.1 (including) |
| Subversion | Apache | 0.33.0 (including) | 0.33.0 (including) |
| Subversion | Apache | 0.33.1 (including) | 0.33.1 (including) |
| Subversion | Apache | 0.34.0 (including) | 0.34.0 (including) |
| Subversion | Apache | 0.35.0 (including) | 0.35.0 (including) |
| Subversion | Apache | 0.35.1 (including) | 0.35.1 (including) |
| Subversion | Apache | 0.36.0 (including) | 0.36.0 (including) |
| Subversion | Apache | 0.37.0 (including) | 0.37.0 (including) |
| Subversion | Apache | 1.0.0 (including) | 1.0.0 (including) |
| Subversion | Apache | 1.0.1 (including) | 1.0.1 (including) |
| Subversion | Apache | 1.0.2 (including) | 1.0.2 (including) |
| Subversion | Apache | 1.0.3 (including) | 1.0.3 (including) |
| Subversion | Apache | 1.0.4 (including) | 1.0.4 (including) |
| Subversion | Apache | 1.0.5 (including) | 1.0.5 (including) |
| Subversion | Apache | 1.0.6 (including) | 1.0.6 (including) |
| Subversion | Apache | 1.0.7 (including) | 1.0.7 (including) |
| Subversion | Apache | 1.0.8 (including) | 1.0.8 (including) |
| Subversion | Apache | 1.0.9 (including) | 1.0.9 (including) |
| Subversion | Apache | 1.1.0 (including) | 1.1.0 (including) |
| Subversion | Apache | 1.1.1 (including) | 1.1.1 (including) |
| Subversion | Apache | 1.1.2 (including) | 1.1.2 (including) |
| Subversion | Apache | 1.1.3 (including) | 1.1.3 (including) |
| Subversion | Apache | 1.1.4 (including) | 1.1.4 (including) |
| Subversion | Apache | 1.2.0 (including) | 1.2.0 (including) |
| Subversion | Apache | 1.2.1 (including) | 1.2.1 (including) |
| Subversion | Apache | 1.2.2 (including) | 1.2.2 (including) |
| Subversion | Apache | 1.2.3 (including) | 1.2.3 (including) |
| Subversion | Apache | 1.3.0 (including) | 1.3.0 (including) |
| Subversion | Apache | 1.3.1 (including) | 1.3.1 (including) |
| Subversion | Apache | 1.3.2 (including) | 1.3.2 (including) |
| Subversion | Apache | 1.4.0 (including) | 1.4.0 (including) |
| Subversion | Apache | 1.4.1 (including) | 1.4.1 (including) |
| Subversion | Apache | 1.4.2 (including) | 1.4.2 (including) |
| Subversion | Apache | 1.4.3 (including) | 1.4.3 (including) |
| Subversion | Apache | 1.4.4 (including) | 1.4.4 (including) |
| Subversion | Apache | 1.4.5 (including) | 1.4.5 (including) |
| Subversion | Apache | 1.4.6 (including) | 1.4.6 (including) |
| Subversion | Apache | 1.5.0 (including) | 1.5.0 (including) |
| Subversion | Apache | 1.5.1 (including) | 1.5.1 (including) |
| Subversion | Apache | 1.5.2 (including) | 1.5.2 (including) |
| Subversion | Apache | 1.5.3 (including) | 1.5.3 (including) |
| Subversion | Apache | 1.5.4 (including) | 1.5.4 (including) |
| Subversion | Apache | 1.5.5 (including) | 1.5.5 (including) |
| Subversion | Apache | 1.5.6 (including) | 1.5.6 (including) |
| Subversion | Apache | 1.5.7 (including) | 1.5.7 (including) |
| Subversion | Apache | 1.5.8 (including) | 1.5.8 (including) |
| Subversion | Apache | 1.6.0 (including) | 1.6.0 (including) |
| Subversion | Apache | 1.6.1 (including) | 1.6.1 (including) |
| Subversion | Apache | 1.6.2 (including) | 1.6.2 (including) |
| Subversion | Apache | 1.6.3 (including) | 1.6.3 (including) |
| Subversion | Apache | 1.6.4 (including) | 1.6.4 (including) |
| Subversion | Apache | 1.6.5 (including) | 1.6.5 (including) |
| Subversion | Apache | 1.6.6 (including) | 1.6.6 (including) |
| Subversion | Apache | 1.6.7 (including) | 1.6.7 (including) |
| Subversion | Apache | 1.6.8 (including) | 1.6.8 (including) |
| Subversion | Apache | 1.6.9 (including) | 1.6.9 (including) |
| Subversion | Apache | 1.6.10 (including) | 1.6.10 (including) |
| Subversion | Apache | 1.6.11 (including) | 1.6.11 (including) |
| Subversion | Apache | 1.6.12 (including) | 1.6.12 (including) |
| Subversion | Apache | 1.6.13 (including) | 1.6.13 (including) |
| Subversion | Apache | m1 (including) | m1 (including) |
| Subversion | Apache | m2 (including) | m2 (including) |
| Subversion | Apache | m3 (including) | m3 (including) |
| Subversion | Apache | m4/m5 (including) | m4/m5 (including) |
| Red Hat Enterprise Linux 5 | RedHat | subversion-0:1.6.11-7.el5_6.1 | * |
| Red Hat Enterprise Linux 6 | RedHat | subversion-0:1.6.11-2.el6_0.2 | * |
| Subversion | Ubuntu | dapper | * |
| Subversion | Ubuntu | hardy | * |
| Subversion | Ubuntu | karmic | * |
| Subversion | Ubuntu | lucid | * |
| Subversion | Ubuntu | maverick | * |
| Subversion | Ubuntu | upstream | * |