The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a REPORT request for a resource that does not exist.
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Enterprise_linux_desktop | Redhat | 6.0 (including) | 6.0 (including) |
| Enterprise_linux_desktop | Redhat | 7.0 (including) | 7.0 (including) |
| Enterprise_linux_hpc_node | Redhat | 6.0 (including) | 6.0 (including) |
| Enterprise_linux_hpc_node | Redhat | 7.0 (including) | 7.0 (including) |
| Enterprise_linux_server | Redhat | 6.0 (including) | 6.0 (including) |
| Enterprise_linux_server | Redhat | 7.0 (including) | 7.0 (including) |
| Enterprise_linux_server_eus | Redhat | 6.6.z (including) | 6.6.z (including) |
| Enterprise_linux_workstation | Redhat | 6.0 (including) | 6.0 (including) |
| Enterprise_linux_workstation | Redhat | 7.0 (including) | 7.0 (including) |
| Red Hat Enterprise Linux 6 | RedHat | subversion-0:1.6.11-12.el6_6 | * |
| Red Hat Enterprise Linux 7 | RedHat | subversion-0:1.7.14-7.el7_0 | * |
| Subversion | Ubuntu | devel | * |
| Subversion | Ubuntu | lucid | * |
| Subversion | Ubuntu | precise | * |
| Subversion | Ubuntu | trusty | * |
| Subversion | Ubuntu | upstream | * |
| Subversion | Ubuntu | utopic | * |
| Subversion | Ubuntu | vivid | * |