Oval Definition:oval:org.mitre.oval:def:22742
Revision Date:2014-05-26Version:25
Title:ELSA-2011:0862: subversion security update (Moderate)
Description:The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz short_circuit option is disabled, does not properly enforce permissions for files that had been publicly readable in the past, which allows remote attackers to obtain sensitive information via a replay REPORT operation.
Family:unixClass:patch
Status:ACCEPTEDReference(s):CVE-2011-1752
CVE-2011-1783
CVE-2011-1921
ELSA-2011:0862-01
Platform(s):Oracle Linux 6
Product(s):subversion
Definition Synopsis
  • Oracle Linux 6.x
  • AND rpm test
  • subversion-ruby is earlier than 0:1.6.11-2.el6_1.4
  • OR subversion-kde is earlier than 0:1.6.11-2.el6_1.4
  • OR subversion-svn2cl is earlier than 0:1.6.11-2.el6_1.4
  • OR subversion-javahl is earlier than 0:1.6.11-2.el6_1.4
  • OR mod_dav_svn is earlier than 0:1.6.11-2.el6_1.4
  • OR subversion-devel is earlier than 0:1.6.11-2.el6_1.4
  • OR subversion-perl is earlier than 0:1.6.11-2.el6_1.4
  • OR subversion-gnome is earlier than 0:1.6.11-2.el6_1.4
  • OR subversion is earlier than 0:1.6.11-2.el6_1.4
    • BACK