Home

CVE-2018-11782

Description

In Apache Subversion versions up to and including 1.9.10, 1.10.4, 1.12.0, Subversions svnserve server process may exit when a well-formed read-only request produces a particular answer. This can lead to disruption for users of the server.

Risk Information

Base Score
6.5
MODERATE
Vector
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
1.167

Associated Vulnerability

VulnerabilityOS Platform
subversion security update(DSA-4490-1) subversion_1.9.5-1+deb9u4_i386.debLinux
subversion security update(DSA-4490-1) subversion_1.9.5-1+deb9u4_amd64.debLinux
subversion security update(DSA-4490-1) subversion_1.10.4-1+deb10u1_amd64.debLinux
(RHSA-2020:3972) subversion security update mod_dav_svn-1.7.14-16.el7.x86_64.rpmLinux
(RHSA-2020:3972) subversion security update subversion-1.7.14-16.el7.i686.rpmLinux
(RHSA-2020:3972) subversion security update subversion-1.7.14-16.el7.x86_64.rpmLinux
(RHSA-2020:3972) subversion security update subversion-devel-1.7.14-16.el7.i686.rpmLinux
(RHSA-2020:3972) subversion security update subversion-devel-1.7.14-16.el7.x86_64.rpmLinux
(RHSA-2020:3972) subversion security update subversion-gnome-1.7.14-16.el7.i686.rpmLinux
(RHSA-2020:3972) subversion security update subversion-gnome-1.7.14-16.el7.x86_64.rpmLinux
(RHSA-2020:3972) subversion security update subversion-javahl-1.7.14-16.el7.i686.rpmLinux
(RHSA-2020:3972) subversion security update subversion-javahl-1.7.14-16.el7.x86_64.rpmLinux
(RHSA-2020:3972) subversion security update subversion-kde-1.7.14-16.el7.i686.rpmLinux
(RHSA-2020:3972) subversion security update subversion-kde-1.7.14-16.el7.x86_64.rpmLinux
(RHSA-2020:3972) subversion security update subversion-libs-1.7.14-16.el7.i686.rpmLinux
(RHSA-2020:3972) subversion security update subversion-libs-1.7.14-16.el7.x86_64.rpmLinux
(RHSA-2020:3972) subversion security update subversion-perl-1.7.14-16.el7.i686.rpmLinux
(RHSA-2020:3972) subversion security update subversion-perl-1.7.14-16.el7.x86_64.rpmLinux
(RHSA-2020:3972) subversion security update subversion-python-1.7.14-16.el7.x86_64.rpmLinux
(RHSA-2020:3972) subversion security update subversion-ruby-1.7.14-16.el7.i686.rpmLinux
(RHSA-2020:3972) subversion security update subversion-ruby-1.7.14-16.el7.x86_64.rpmLinux
(RHSA-2020:3972) subversion security update subversion-tools-1.7.14-16.el7.x86_64.rpmLinux
(RHSA-2020:4712) subversion:1.10 security update libserf-1.3.9-9.module+el8.3.0+6671+2675c974.x86_64.rpmLinux
(RHSA-2020:4712) subversion:1.10 security update libserf-debugsource-1.3.9-9.module+el8.3.0+6671+2675c974.x86_64.rpmLinux
(RHSA-2020:4712) subversion:1.10 security update mod_dav_svn-1.10.2-3.module+el8.3.0+6671+2675c974.x86_64.rpmLinux
(RHSA-2020:4712) subversion:1.10 security update subversion-1.10.2-3.module+el8.3.0+6671+2675c974.x86_64.rpmLinux
(RHSA-2020:4712) subversion:1.10 security update subversion-debugsource-1.10.2-3.module+el8.3.0+6671+2675c974.x86_64.rpmLinux
(RHSA-2020:4712) subversion:1.10 security update subversion-devel-1.10.2-3.module+el8.3.0+6671+2675c974.x86_64.rpmLinux
(RHSA-2020:4712) subversion:1.10 security update subversion-gnome-1.10.2-3.module+el8.3.0+6671+2675c974.x86_64.rpmLinux
(RHSA-2020:4712) subversion:1.10 security update subversion-javahl-1.10.2-3.module+el8.3.0+6671+2675c974.noarch.rpmLinux
(RHSA-2020:4712) subversion:1.10 security update subversion-libs-1.10.2-3.module+el8.3.0+6671+2675c974.x86_64.rpmLinux
(RHSA-2020:4712) subversion:1.10 security update subversion-perl-1.10.2-3.module+el8.3.0+6671+2675c974.x86_64.rpmLinux
(RHSA-2020:4712) subversion:1.10 security update subversion-tools-1.10.2-3.module+el8.3.0+6671+2675c974.x86_64.rpmLinux
(RHSA-2020:4712) subversion:1.10 security update utf8proc-2.1.1-5.module+el8.3.0+6671+2675c974.x86_64.rpmLinux
(RHSA-2020:4712) subversion:1.10 security update utf8proc-debugsource-2.1.1-5.module+el8.3.0+6671+2675c974.x86_64.rpmLinux
(CESA-2020:3972) subversion security update mod_dav_svn-1.7.14-16.el7.x86_64.rpmLinux
(CESA-2020:3972) subversion security update subversion-1.7.14-16.el7.x86_64.rpmLinux
(CESA-2020:3972) subversion security update subversion-devel-1.7.14-16.el7.x86_64.rpmLinux
(CESA-2020:3972) subversion security update subversion-gnome-1.7.14-16.el7.x86_64.rpmLinux
(CESA-2020:3972) subversion security update subversion-javahl-1.7.14-16.el7.x86_64.rpmLinux
(CESA-2020:3972) subversion security update subversion-kde-1.7.14-16.el7.x86_64.rpmLinux
(CESA-2020:3972) subversion security update subversion-libs-1.7.14-16.el7.x86_64.rpmLinux
(CESA-2020:3972) subversion security update subversion-perl-1.7.14-16.el7.x86_64.rpmLinux
(CESA-2020:3972) subversion security update subversion-python-1.7.14-16.el7.x86_64.rpmLinux
(CESA-2020:3972) subversion security update subversion-ruby-1.7.14-16.el7.x86_64.rpmLinux
(CESA-2020:3972) subversion security update subversion-tools-1.7.14-16.el7.x86_64.rpmLinux
Advanced version control system (USN-5445-1) libsvn1_1.9.7-4ubuntu1.1_i386.debLinux
Advanced version control system (USN-5445-1) libsvn1_1.9.7-4ubuntu1.1_amd64.debLinux
Advanced version control system (USN-5445-1) libsvn1_1.13.0-3ubuntu0.2_amd64.debLinux
Advanced version control system (USN-5445-1) subversion_1.9.7-4ubuntu1.1_i386.debLinux
Advanced version control system (USN-5445-1) subversion_1.9.7-4ubuntu1.1_amd64.debLinux
Advanced version control system (USN-5445-1) subversion_1.13.0-3ubuntu0.2_amd64.debLinux
Advanced version control system (USN-5445-1) libapache2-mod-svn_1.9.7-4ubuntu1.1_i386.debLinux
Advanced version control system (USN-5445-1) libapache2-mod-svn_1.9.7-4ubuntu1.1_amd64.debLinux
Advanced version control system (USN-5445-1) libapache2-mod-svn_1.13.0-3ubuntu0.2_amd64.debLinux
(RHSA-2020:3972)Moderate: security update subversion-debuginfo-1.7.14-16.el7.i686.rpmLinux
(RHSA-2020:3972)Moderate: security update subversion-debuginfo-1.7.14-16.el7.x86_64.rpmLinux
subversion:1.10 security update (RLSA-2020:4712) libserf-1.3.9-9.module+el8.4.0+407+38733e5a.x86_64.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-1.7.14-16.amzn2.0.1.i686.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-1.7.14-16.amzn2.0.1.x86_64.rpmLinux
subversion Security Update (ALAS-2020-1549) mod_dav_svn-1.7.14-16.amzn2.0.1.x86_64.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-libs-1.7.14-16.amzn2.0.1.i686.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-libs-1.7.14-16.amzn2.0.1.x86_64.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-perl-1.7.14-16.amzn2.0.1.i686.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-perl-1.7.14-16.amzn2.0.1.x86_64.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-ruby-1.7.14-16.amzn2.0.1.i686.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-ruby-1.7.14-16.amzn2.0.1.x86_64.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-devel-1.7.14-16.amzn2.0.1.x86_64.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-gnome-1.7.14-16.amzn2.0.1.i686.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-gnome-1.7.14-16.amzn2.0.1.x86_64.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-tools-1.7.14-16.amzn2.0.1.x86_64.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-javahl-1.7.14-16.amzn2.0.1.i686.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-javahl-1.7.14-16.amzn2.0.1.x86_64.rpmLinux
subversion Security Update (ALAS-2020-1549) subversion-python-1.7.14-16.amzn2.0.1.x86_64.rpmLinux
Improper Input Validation Vulnerability (CVE-2018-11782)NCM

Patch Details

No records found

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234