Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2016-2168 (GCVE-0-2016-2168)
Vulnerability from cvelistv5
Published
2016-05-05 18:00
Modified
2024-08-05 23:17
Severity ?
VLAI Severity ?
EPSS score ?
CWE
- n/a
Summary
The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.
References
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T23:17:50.607Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "FEDORA-2016-20cc04ac50",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA",
"x_transferred"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html"
},
{
"name": "[subversion-announce] 20160428 [ANNOUNCE][SECURITY] Apache Subversion 1.8.16 released",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA%40mail.gmail.com%3E"
},
{
"name": "SSA:2016-121-01",
"tags": [
"vendor-advisory",
"x_refsource_SLACKWARE",
"x_transferred"
],
"url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2016\u0026m=slackware-security.417496"
},
{
"name": "openSUSE-SU-2016:1264",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html"
},
{
"name": "1035707",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK",
"x_transferred"
],
"url": "http://www.securitytracker.com/id/1035707"
},
{
"name": "[subversion-announce] 20160428 [ANNOUNCE][SECURITY] Apache Subversion 1.9.4 released",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ%40mail.gmail.com%3E"
},
{
"name": "89320",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/89320"
},
{
"name": "openSUSE-SU-2016:1263",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html"
},
{
"name": "DSA-3561",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN",
"x_transferred"
],
"url": "http://www.debian.org/security/2016/dsa-3561"
},
{
"name": "GLSA-201610-05",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO",
"x_transferred"
],
"url": "https://security.gentoo.org/glsa/201610-05"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://subversion.apache.org/security/CVE-2016-2168-advisory.txt"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2016-04-28T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2020-10-20T21:14:50",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"name": "FEDORA-2016-20cc04ac50",
"tags": [
"vendor-advisory",
"x_refsource_FEDORA"
],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html"
},
{
"name": "[subversion-announce] 20160428 [ANNOUNCE][SECURITY] Apache Subversion 1.8.16 released",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA%40mail.gmail.com%3E"
},
{
"name": "SSA:2016-121-01",
"tags": [
"vendor-advisory",
"x_refsource_SLACKWARE"
],
"url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2016\u0026m=slackware-security.417496"
},
{
"name": "openSUSE-SU-2016:1264",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html"
},
{
"name": "1035707",
"tags": [
"vdb-entry",
"x_refsource_SECTRACK"
],
"url": "http://www.securitytracker.com/id/1035707"
},
{
"name": "[subversion-announce] 20160428 [ANNOUNCE][SECURITY] Apache Subversion 1.9.4 released",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ%40mail.gmail.com%3E"
},
{
"name": "89320",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/89320"
},
{
"name": "openSUSE-SU-2016:1263",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html"
},
{
"name": "DSA-3561",
"tags": [
"vendor-advisory",
"x_refsource_DEBIAN"
],
"url": "http://www.debian.org/security/2016/dsa-3561"
},
{
"name": "GLSA-201610-05",
"tags": [
"vendor-advisory",
"x_refsource_GENTOO"
],
"url": "https://security.gentoo.org/glsa/201610-05"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://subversion.apache.org/security/CVE-2016-2168-advisory.txt"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-2168",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "FEDORA-2016-20cc04ac50",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html"
},
{
"name": "[subversion-announce] 20160428 [ANNOUNCE][SECURITY] Apache Subversion 1.8.16 released",
"refsource": "MLIST",
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA@mail.gmail.com%3E"
},
{
"name": "SSA:2016-121-01",
"refsource": "SLACKWARE",
"url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2016\u0026m=slackware-security.417496"
},
{
"name": "openSUSE-SU-2016:1264",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html"
},
{
"name": "1035707",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1035707"
},
{
"name": "[subversion-announce] 20160428 [ANNOUNCE][SECURITY] Apache Subversion 1.9.4 released",
"refsource": "MLIST",
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ@mail.gmail.com%3E"
},
{
"name": "89320",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/89320"
},
{
"name": "openSUSE-SU-2016:1263",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html"
},
{
"name": "DSA-3561",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2016/dsa-3561"
},
{
"name": "GLSA-201610-05",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201610-05"
},
{
"name": "https://www.oracle.com/security-alerts/cpuoct2020.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
},
{
"name": "http://subversion.apache.org/security/CVE-2016-2168-advisory.txt",
"refsource": "CONFIRM",
"url": "http://subversion.apache.org/security/CVE-2016-2168-advisory.txt"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2016-2168",
"datePublished": "2016-05-05T18:00:00",
"dateReserved": "2016-01-29T00:00:00",
"dateUpdated": "2024-08-05T23:17:50.607Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"nvd": "{\"cve\":{\"id\":\"CVE-2016-2168\",\"sourceIdentifier\":\"secalert@redhat.com\",\"published\":\"2016-05-05T18:59:01.710\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.\"},{\"lang\":\"es\",\"value\":\"La funci\u00f3n req_check_access en el m\u00f3dulo mod_authz_svn en el servidor httpd en Apache Subversion en versiones anteriores a 1.8.16 y 1.9.x en versiones anteriores a 1.9.4 permite a usuarios remotos autenticados provocar una denegaci\u00f3n de servicio (referencia a puntero NULL y ca\u00edda) a trav\u00e9s de una cabecera manipulada en una petici\u00f3n (1) MOVE o (2) COPY, involucrando una verificaci\u00f3n de autorizaci\u00f3n.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:S/C:N/I:N/A:P\",\"baseScore\":4.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"SINGLE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":8.0,\"impactScore\":2.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:subversion:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"1.8.15\",\"matchCriteriaId\":\"DD9BA15E-397D-4B1F-B755-8FFBBF58AE59\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:subversion:1.9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"892FF423-1848-4E69-8C4C-E1972B656196\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:subversion:1.9.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9ACF37C7-8752-4A8F-B7E3-2E813C4A0DF0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:subversion:1.9.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"74200C33-9505-48EB-964D-6CA28C7F6DB8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:apache:subversion:1.9.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09FBAFE7-986D-4B24-8122-FDCC380331C9\"}]}]}],\"references\":[{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA%40mail.gmail.com%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ%40mail.gmail.com%3E\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://subversion.apache.org/security/CVE-2016-2168-advisory.txt\",\"source\":\"secalert@redhat.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.debian.org/security/2016/dsa-3561\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securityfocus.com/bid/89320\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.securitytracker.com/id/1035707\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2016\u0026m=slackware-security.417496\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://security.gentoo.org/glsa/201610-05\",\"source\":\"secalert@redhat.com\"},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2020.html\",\"source\":\"secalert@redhat.com\"},{\"url\":\"http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA%40mail.gmail.com%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ%40mail.gmail.com%3E\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://subversion.apache.org/security/CVE-2016-2168-advisory.txt\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.debian.org/security/2016/dsa-3561\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/89320\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id/1035707\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2016\u0026m=slackware-security.417496\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://security.gentoo.org/glsa/201610-05\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://www.oracle.com/security-alerts/cpuoct2020.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"evaluatorComment\":\"\u003ca href=\\\"http://cwe.mitre.org/data/definitions/476.html\\\"\u003eCWE-476: NULL Pointer Dereference\u003c/a\u003e\"}}"
}
}
ghsa-h8ww-x8qq-fcxm
Vulnerability from github
Published
2022-05-13 01:14
Modified
2025-04-12 12:59
Severity ?
VLAI Severity ?
Details
The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.
{
"affected": [],
"aliases": [
"CVE-2016-2168"
],
"database_specific": {
"cwe_ids": [],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2016-05-05T18:59:00Z",
"severity": "MODERATE"
},
"details": "The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.",
"id": "GHSA-h8ww-x8qq-fcxm",
"modified": "2025-04-12T12:59:30Z",
"published": "2022-05-13T01:14:25Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2016-2168"
},
{
"type": "WEB",
"url": "https://security.gentoo.org/glsa/201610-05"
},
{
"type": "WEB",
"url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
},
{
"type": "WEB",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html"
},
{
"type": "WEB",
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA%40mail.gmail.com%3E"
},
{
"type": "WEB",
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA@mail.gmail.com%3E"
},
{
"type": "WEB",
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ%40mail.gmail.com%3E"
},
{
"type": "WEB",
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ@mail.gmail.com%3E"
},
{
"type": "WEB",
"url": "http://subversion.apache.org/security/CVE-2016-2168-advisory.txt"
},
{
"type": "WEB",
"url": "http://www.debian.org/security/2016/dsa-3561"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/89320"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1035707"
},
{
"type": "WEB",
"url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2016\u0026m=slackware-security.417496"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
suse-su-2017:2200-1
Vulnerability from csaf_suse
Published
2017-08-17 06:38
Modified
2017-08-17 06:38
Summary
Security update for subversion
Notes
Title of the patch
Security update for subversion
Description of the patch
This update for subversion fixes the following issues:
- CVE-2017-9800: A malicious, compromised server or MITM may cause svn client to
execute arbitrary commands by sending repository content with
svn:externals definitions pointing to crafted svn+ssh URLs. (bsc#1051362)
- Malicious user may commit SHA-1 collisions and cause repository inconsistencies (bsc#1026936)
- CVE-2016-8734: Unrestricted XML entity expansion in
mod_dontdothat and Subversion clients using http(s):// could lead to denial of service (bsc#1011552)
- CVE-2016-2167: svnserve/sasl may authenticate users using the wrong realm (bsc#976849)
- CVE-2016-2168: Remotely triggerable DoS vulnerability in mod_authz_svn during COPY/MOVE authorization check (bsc#976850)
- mod_authz_svn: fix authz with mod_auth_kerb/mod_auth_ntlm (bsc#977424)
- make the subversion package conflict with KWallet and Gnome
Keyring packages with do not require matching subversion versions
in SLE 12 and openSUSE Leap 42.1 and thus break the main package
upon partial upgrade. (bsc#969159)
- CVE-2015-5343: Remotely triggerable heap overflow and out-of-bounds read in
mod_dav_svn caused by integer overflow when parsing skel-encoded
request bodies. (bsc#958300)
- Avoid recommending 180+ new pkgs for installation on minimal
setup due subversion-password-store (bsc#942819)
- CVE-2015-3184: mod_authz_svn: mixed anonymous/authenticated
httpd (dav) configurations could lead to information leak (bsc#939514)
- CVE-2015-3187: do not leak paths that were hidden by path-based authz (bsc#939517)
- CVE-2015-0202: Subversion HTTP servers with FSFS repositories were vulnerable
to a remotely triggerable excessive memory use with certain
REPORT requests. (bsc#923793)
- CVE-2015-0248: Subversion mod_dav_svn and svnserve were vulnerable to a
remotely triggerable assertion DoS vulnerability for certain
requests with dynamically evaluated revision numbers.
(bsc#923794)
- CVE-2015-0251: Subversion HTTP servers allow spoofing svn:author property
values for new revisions (bsc#923795)
- fix sample configuration comments in subversion.conf (bsc#916286)
- fix sysconfig file generation (bsc#911620)
- CVE-2014-3580: mod_dav_svn invalid REPORT requests could lead to denial of service (bsc#909935)
- CVE-2014-8108: mod_dav_svn use of invalid transaction names could lead to denial of service (bsc#909935)
- INSTALL#SQLite says 'Subversion 1.8 requires SQLite version 3.7.12 or above';
therefore I lowered the sqlite requirement to make the subversion run on
older system versions, tooi. [bsc#897033]
Patchnames
SUSE-SLE-SDK-12-SP2-2017-1340,SUSE-SLE-SDK-12-SP3-2017-1340
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "important"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for subversion",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for subversion fixes the following issues:\n\n\n- CVE-2017-9800: A malicious, compromised server or MITM may cause svn client to\n execute arbitrary commands by sending repository content with\n svn:externals definitions pointing to crafted svn+ssh URLs. (bsc#1051362)\n\n- Malicious user may commit SHA-1 collisions and cause repository inconsistencies (bsc#1026936)\n\n- CVE-2016-8734: Unrestricted XML entity expansion in\n mod_dontdothat and Subversion clients using http(s):// could lead to denial of service (bsc#1011552) \n\n- CVE-2016-2167: svnserve/sasl may authenticate users using the wrong realm (bsc#976849)\n\n- CVE-2016-2168: Remotely triggerable DoS vulnerability in mod_authz_svn during COPY/MOVE authorization check (bsc#976850)\n\n- mod_authz_svn: fix authz with mod_auth_kerb/mod_auth_ntlm (bsc#977424)\n\n- make the subversion package conflict with KWallet and Gnome\n Keyring packages with do not require matching subversion versions \n in SLE 12 and openSUSE Leap 42.1 and thus break the main package\n upon partial upgrade. (bsc#969159)\n\n- CVE-2015-5343: Remotely triggerable heap overflow and out-of-bounds read in\n mod_dav_svn caused by integer overflow when parsing skel-encoded\n request bodies. (bsc#958300)\n\n- Avoid recommending 180+ new pkgs for installation on minimal\n setup due subversion-password-store (bsc#942819)\n\n- CVE-2015-3184: mod_authz_svn: mixed anonymous/authenticated\n httpd (dav) configurations could lead to information leak (bsc#939514) \n\n- CVE-2015-3187: do not leak paths that were hidden by path-based authz (bsc#939517)\n\n- CVE-2015-0202: Subversion HTTP servers with FSFS repositories were vulnerable\n to a remotely triggerable excessive memory use with certain\n REPORT requests. (bsc#923793)\n \n- CVE-2015-0248: Subversion mod_dav_svn and svnserve were vulnerable to a\n remotely triggerable assertion DoS vulnerability for certain\n requests with dynamically evaluated revision numbers.\n (bsc#923794)\n \n- CVE-2015-0251: Subversion HTTP servers allow spoofing svn:author property\n values for new revisions (bsc#923795)\n\n- fix sample configuration comments in subversion.conf (bsc#916286)\n\n- fix sysconfig file generation (bsc#911620)\n\n- CVE-2014-3580: mod_dav_svn invalid REPORT requests could lead to denial of service (bsc#909935)\n \n- CVE-2014-8108: mod_dav_svn use of invalid transaction names could lead to denial of service (bsc#909935)\n\n- INSTALL#SQLite says \u0027Subversion 1.8 requires SQLite version 3.7.12 or above\u0027;\n therefore I lowered the sqlite requirement to make the subversion run on\n older system versions, tooi. [bsc#897033]\n\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-SDK-12-SP2-2017-1340,SUSE-SLE-SDK-12-SP3-2017-1340",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2017_2200-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2017:2200-1",
"url": "https://www.suse.com/support/update/announcement/2017/suse-su-20172200-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2017:2200-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2017-August/003142.html"
},
{
"category": "self",
"summary": "SUSE Bug 1011552",
"url": "https://bugzilla.suse.com/1011552"
},
{
"category": "self",
"summary": "SUSE Bug 1026936",
"url": "https://bugzilla.suse.com/1026936"
},
{
"category": "self",
"summary": "SUSE Bug 1051362",
"url": "https://bugzilla.suse.com/1051362"
},
{
"category": "self",
"summary": "SUSE Bug 897033",
"url": "https://bugzilla.suse.com/897033"
},
{
"category": "self",
"summary": "SUSE Bug 909935",
"url": "https://bugzilla.suse.com/909935"
},
{
"category": "self",
"summary": "SUSE Bug 911620",
"url": "https://bugzilla.suse.com/911620"
},
{
"category": "self",
"summary": "SUSE Bug 916286",
"url": "https://bugzilla.suse.com/916286"
},
{
"category": "self",
"summary": "SUSE Bug 923793",
"url": "https://bugzilla.suse.com/923793"
},
{
"category": "self",
"summary": "SUSE Bug 923794",
"url": "https://bugzilla.suse.com/923794"
},
{
"category": "self",
"summary": "SUSE Bug 923795",
"url": "https://bugzilla.suse.com/923795"
},
{
"category": "self",
"summary": "SUSE Bug 939514",
"url": "https://bugzilla.suse.com/939514"
},
{
"category": "self",
"summary": "SUSE Bug 939517",
"url": "https://bugzilla.suse.com/939517"
},
{
"category": "self",
"summary": "SUSE Bug 942819",
"url": "https://bugzilla.suse.com/942819"
},
{
"category": "self",
"summary": "SUSE Bug 958300",
"url": "https://bugzilla.suse.com/958300"
},
{
"category": "self",
"summary": "SUSE Bug 969159",
"url": "https://bugzilla.suse.com/969159"
},
{
"category": "self",
"summary": "SUSE Bug 976849",
"url": "https://bugzilla.suse.com/976849"
},
{
"category": "self",
"summary": "SUSE Bug 976850",
"url": "https://bugzilla.suse.com/976850"
},
{
"category": "self",
"summary": "SUSE Bug 977424",
"url": "https://bugzilla.suse.com/977424"
},
{
"category": "self",
"summary": "SUSE Bug 983938",
"url": "https://bugzilla.suse.com/983938"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3580 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3580/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8108 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0202 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0248 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0248/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0251 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0251/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3184 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3184/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3187 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5343 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5343/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2167 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2168 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-8734 page",
"url": "https://www.suse.com/security/cve/CVE-2016-8734/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2017-9800 page",
"url": "https://www.suse.com/security/cve/CVE-2017-9800/"
}
],
"title": "Security update for subversion",
"tracking": {
"current_release_date": "2017-08-17T06:38:37Z",
"generator": {
"date": "2017-08-17T06:38:37Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2017:2200-1",
"initial_release_date": "2017-08-17T06:38:37Z",
"revision_history": [
{
"date": "2017-08-17T06:38:37Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"product": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"product_id": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-1.8.19-25.3.1.aarch64",
"product": {
"name": "subversion-1.8.19-25.3.1.aarch64",
"product_id": "subversion-1.8.19-25.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.8.19-25.3.1.aarch64",
"product": {
"name": "subversion-devel-1.8.19-25.3.1.aarch64",
"product_id": "subversion-devel-1.8.19-25.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.8.19-25.3.1.aarch64",
"product": {
"name": "subversion-perl-1.8.19-25.3.1.aarch64",
"product_id": "subversion-perl-1.8.19-25.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-python-1.8.19-25.3.1.aarch64",
"product": {
"name": "subversion-python-1.8.19-25.3.1.aarch64",
"product_id": "subversion-python-1.8.19-25.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-server-1.8.19-25.3.1.aarch64",
"product": {
"name": "subversion-server-1.8.19-25.3.1.aarch64",
"product_id": "subversion-server-1.8.19-25.3.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.8.19-25.3.1.aarch64",
"product": {
"name": "subversion-tools-1.8.19-25.3.1.aarch64",
"product_id": "subversion-tools-1.8.19-25.3.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "subversion-bash-completion-1.8.19-25.3.1.noarch",
"product": {
"name": "subversion-bash-completion-1.8.19-25.3.1.noarch",
"product_id": "subversion-bash-completion-1.8.19-25.3.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"product": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"product_id": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-1.8.19-25.3.1.ppc64le",
"product": {
"name": "subversion-1.8.19-25.3.1.ppc64le",
"product_id": "subversion-1.8.19-25.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.8.19-25.3.1.ppc64le",
"product": {
"name": "subversion-devel-1.8.19-25.3.1.ppc64le",
"product_id": "subversion-devel-1.8.19-25.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.8.19-25.3.1.ppc64le",
"product": {
"name": "subversion-perl-1.8.19-25.3.1.ppc64le",
"product_id": "subversion-perl-1.8.19-25.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-python-1.8.19-25.3.1.ppc64le",
"product": {
"name": "subversion-python-1.8.19-25.3.1.ppc64le",
"product_id": "subversion-python-1.8.19-25.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-server-1.8.19-25.3.1.ppc64le",
"product": {
"name": "subversion-server-1.8.19-25.3.1.ppc64le",
"product_id": "subversion-server-1.8.19-25.3.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.8.19-25.3.1.ppc64le",
"product": {
"name": "subversion-tools-1.8.19-25.3.1.ppc64le",
"product_id": "subversion-tools-1.8.19-25.3.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"product": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"product_id": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-1.8.19-25.3.1.s390x",
"product": {
"name": "subversion-1.8.19-25.3.1.s390x",
"product_id": "subversion-1.8.19-25.3.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.8.19-25.3.1.s390x",
"product": {
"name": "subversion-devel-1.8.19-25.3.1.s390x",
"product_id": "subversion-devel-1.8.19-25.3.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.8.19-25.3.1.s390x",
"product": {
"name": "subversion-perl-1.8.19-25.3.1.s390x",
"product_id": "subversion-perl-1.8.19-25.3.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-python-1.8.19-25.3.1.s390x",
"product": {
"name": "subversion-python-1.8.19-25.3.1.s390x",
"product_id": "subversion-python-1.8.19-25.3.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-server-1.8.19-25.3.1.s390x",
"product": {
"name": "subversion-server-1.8.19-25.3.1.s390x",
"product_id": "subversion-server-1.8.19-25.3.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.8.19-25.3.1.s390x",
"product": {
"name": "subversion-tools-1.8.19-25.3.1.s390x",
"product_id": "subversion-tools-1.8.19-25.3.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"product": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"product_id": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-1.8.19-25.3.1.x86_64",
"product": {
"name": "subversion-1.8.19-25.3.1.x86_64",
"product_id": "subversion-1.8.19-25.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.8.19-25.3.1.x86_64",
"product": {
"name": "subversion-devel-1.8.19-25.3.1.x86_64",
"product_id": "subversion-devel-1.8.19-25.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.8.19-25.3.1.x86_64",
"product": {
"name": "subversion-perl-1.8.19-25.3.1.x86_64",
"product_id": "subversion-perl-1.8.19-25.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-python-1.8.19-25.3.1.x86_64",
"product": {
"name": "subversion-python-1.8.19-25.3.1.x86_64",
"product_id": "subversion-python-1.8.19-25.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-server-1.8.19-25.3.1.x86_64",
"product": {
"name": "subversion-server-1.8.19-25.3.1.x86_64",
"product_id": "subversion-server-1.8.19-25.3.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.8.19-25.3.1.x86_64",
"product": {
"name": "subversion-tools-1.8.19-25.3.1.x86_64",
"product_id": "subversion-tools-1.8.19-25.3.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP2",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp2"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64"
},
"product_reference": "subversion-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le"
},
"product_reference": "subversion-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x"
},
"product_reference": "subversion-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64"
},
"product_reference": "subversion-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-bash-completion-1.8.19-25.3.1.noarch as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch"
},
"product_reference": "subversion-bash-completion-1.8.19-25.3.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64"
},
"product_reference": "subversion-devel-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le"
},
"product_reference": "subversion-devel-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x"
},
"product_reference": "subversion-devel-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64"
},
"product_reference": "subversion-devel-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64"
},
"product_reference": "subversion-perl-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le"
},
"product_reference": "subversion-perl-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x"
},
"product_reference": "subversion-perl-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64"
},
"product_reference": "subversion-perl-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64"
},
"product_reference": "subversion-python-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le"
},
"product_reference": "subversion-python-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x"
},
"product_reference": "subversion-python-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64"
},
"product_reference": "subversion-python-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64"
},
"product_reference": "subversion-server-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le"
},
"product_reference": "subversion-server-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x"
},
"product_reference": "subversion-server-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64"
},
"product_reference": "subversion-server-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64"
},
"product_reference": "subversion-tools-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le"
},
"product_reference": "subversion-tools-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x"
},
"product_reference": "subversion-tools-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP2",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64"
},
"product_reference": "subversion-tools-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64"
},
"product_reference": "subversion-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le"
},
"product_reference": "subversion-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x"
},
"product_reference": "subversion-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64"
},
"product_reference": "subversion-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-bash-completion-1.8.19-25.3.1.noarch as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch"
},
"product_reference": "subversion-bash-completion-1.8.19-25.3.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64"
},
"product_reference": "subversion-devel-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le"
},
"product_reference": "subversion-devel-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x"
},
"product_reference": "subversion-devel-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64"
},
"product_reference": "subversion-devel-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64"
},
"product_reference": "subversion-perl-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le"
},
"product_reference": "subversion-perl-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x"
},
"product_reference": "subversion-perl-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64"
},
"product_reference": "subversion-perl-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64"
},
"product_reference": "subversion-python-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le"
},
"product_reference": "subversion-python-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x"
},
"product_reference": "subversion-python-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64"
},
"product_reference": "subversion-python-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64"
},
"product_reference": "subversion-server-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le"
},
"product_reference": "subversion-server-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x"
},
"product_reference": "subversion-server-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64"
},
"product_reference": "subversion-server-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.19-25.3.1.aarch64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64"
},
"product_reference": "subversion-tools-1.8.19-25.3.1.aarch64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.19-25.3.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le"
},
"product_reference": "subversion-tools-1.8.19-25.3.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.19-25.3.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x"
},
"product_reference": "subversion-tools-1.8.19-25.3.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.19-25.3.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP3",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
},
"product_reference": "subversion-tools-1.8.19-25.3.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2014-3580",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3580"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a REPORT request for a resource that does not exist.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3580",
"url": "https://www.suse.com/security/cve/CVE-2014-3580"
},
{
"category": "external",
"summary": "SUSE Bug 909935 for CVE-2014-3580",
"url": "https://bugzilla.suse.com/909935"
},
{
"category": "external",
"summary": "SUSE Bug 910376 for CVE-2014-3580",
"url": "https://bugzilla.suse.com/910376"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-17T06:38:37Z",
"details": "moderate"
}
],
"title": "CVE-2014-3580"
},
{
"cve": "CVE-2014-8108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8108"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.7.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a request for a URI that triggers a lookup for a virtual transaction name that does not exist.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8108",
"url": "https://www.suse.com/security/cve/CVE-2014-8108"
},
{
"category": "external",
"summary": "SUSE Bug 909935 for CVE-2014-8108",
"url": "https://bugzilla.suse.com/909935"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-17T06:38:37Z",
"details": "moderate"
}
],
"title": "CVE-2014-8108"
},
{
"cve": "CVE-2015-0202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0202"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn server in Subversion 1.8.0 through 1.8.11 allows remote attackers to cause a denial of service (memory consumption) via a large number of REPORT requests, which trigger the traversal of FSFS repository nodes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0202",
"url": "https://www.suse.com/security/cve/CVE-2015-0202"
},
{
"category": "external",
"summary": "SUSE Bug 923793 for CVE-2015-0202",
"url": "https://bugzilla.suse.com/923793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-17T06:38:37Z",
"details": "important"
}
],
"title": "CVE-2015-0202"
},
{
"cve": "CVE-2015-0248",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0248"
}
],
"notes": [
{
"category": "general",
"text": "The (1) mod_dav_svn and (2) svnserve servers in Subversion 1.6.0 through 1.7.19 and 1.8.0 through 1.8.11 allow remote attackers to cause a denial of service (assertion failure and abort) via crafted parameter combinations related to dynamically evaluated revision numbers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0248",
"url": "https://www.suse.com/security/cve/CVE-2015-0248"
},
{
"category": "external",
"summary": "SUSE Bug 923794 for CVE-2015-0248",
"url": "https://bugzilla.suse.com/923794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-17T06:38:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-0248"
},
{
"cve": "CVE-2015-0251",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0251"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn server in Subversion 1.5.0 through 1.7.19 and 1.8.0 through 1.8.11 allows remote authenticated users to spoof the svn:author property via a crafted v1 HTTP protocol request sequences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0251",
"url": "https://www.suse.com/security/cve/CVE-2015-0251"
},
{
"category": "external",
"summary": "SUSE Bug 923795 for CVE-2015-0251",
"url": "https://bugzilla.suse.com/923795"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-17T06:38:37Z",
"details": "low"
}
],
"title": "CVE-2015-0251"
},
{
"cve": "CVE-2015-3184",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3184"
}
],
"notes": [
{
"category": "general",
"text": "mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x before 1.8.14, when using Apache httpd 2.4.x, does not properly restrict anonymous access, which allows remote anonymous users to read hidden files via the path name.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3184",
"url": "https://www.suse.com/security/cve/CVE-2015-3184"
},
{
"category": "external",
"summary": "SUSE Bug 938723 for CVE-2015-3184",
"url": "https://bugzilla.suse.com/938723"
},
{
"category": "external",
"summary": "SUSE Bug 939514 for CVE-2015-3184",
"url": "https://bugzilla.suse.com/939514"
},
{
"category": "external",
"summary": "SUSE Bug 939516 for CVE-2015-3184",
"url": "https://bugzilla.suse.com/939516"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-17T06:38:37Z",
"details": "moderate"
}
],
"title": "CVE-2015-3184"
},
{
"cve": "CVE-2015-3187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3187"
}
],
"notes": [
{
"category": "general",
"text": "The svn_repos_trace_node_locations function in Apache Subversion before 1.7.21 and 1.8.x before 1.8.14, when path-based authorization is used, allows remote authenticated users to obtain sensitive path information by reading the history of a node that has been moved from a hidden path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3187",
"url": "https://www.suse.com/security/cve/CVE-2015-3187"
},
{
"category": "external",
"summary": "SUSE Bug 939517 for CVE-2015-3187",
"url": "https://bugzilla.suse.com/939517"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-17T06:38:37Z",
"details": "low"
}
],
"title": "CVE-2015-3187"
},
{
"cve": "CVE-2015-5343",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5343"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in util.c in mod_dav_svn in Apache Subversion 1.7.x, 1.8.x before 1.8.15, and 1.9.x before 1.9.3 allows remote authenticated users to cause a denial of service (subversion server crash or memory consumption) and possibly execute arbitrary code via a skel-encoded request body, which triggers an out-of-bounds read and heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5343",
"url": "https://www.suse.com/security/cve/CVE-2015-5343"
},
{
"category": "external",
"summary": "SUSE Bug 958300 for CVE-2015-5343",
"url": "https://bugzilla.suse.com/958300"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-17T06:38:37Z",
"details": "important"
}
],
"title": "CVE-2015-5343"
},
{
"cve": "CVE-2016-2167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2167"
}
],
"notes": [
{
"category": "general",
"text": "The canonicalize_username function in svnserve/cyrus_auth.c in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4, when Cyrus SASL authentication is used, allows remote attackers to authenticate and bypass intended access restrictions via a realm string that is a prefix of an expected repository realm string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2167",
"url": "https://www.suse.com/security/cve/CVE-2016-2167"
},
{
"category": "external",
"summary": "SUSE Bug 976849 for CVE-2016-2167",
"url": "https://bugzilla.suse.com/976849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-17T06:38:37Z",
"details": "low"
}
],
"title": "CVE-2016-2167"
},
{
"cve": "CVE-2016-2168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2168"
}
],
"notes": [
{
"category": "general",
"text": "The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2168",
"url": "https://www.suse.com/security/cve/CVE-2016-2168"
},
{
"category": "external",
"summary": "SUSE Bug 976850 for CVE-2016-2168",
"url": "https://bugzilla.suse.com/976850"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-17T06:38:37Z",
"details": "moderate"
}
],
"title": "CVE-2016-2168"
},
{
"cve": "CVE-2016-8734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-8734"
}
],
"notes": [
{
"category": "general",
"text": "Apache Subversion\u0027s mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by exponential XML entity expansion. The attack can cause the targeted process to consume an excessive amount of CPU resources or memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-8734",
"url": "https://www.suse.com/security/cve/CVE-2016-8734"
},
{
"category": "external",
"summary": "SUSE Bug 1011552 for CVE-2016-8734",
"url": "https://bugzilla.suse.com/1011552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-17T06:38:37Z",
"details": "low"
}
],
"title": "CVE-2016-8734"
},
{
"cve": "CVE-2017-9800",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2017-9800"
}
],
"notes": [
{
"category": "general",
"text": "A maliciously constructed svn+ssh:// URL would cause Subversion clients before 1.8.19, 1.9.x before 1.9.7, and 1.10.0.x through 1.10.0-alpha3 to run an arbitrary shell command. Such a URL could be generated by a malicious server, by a malicious user committing to a honest server (to attack another user of that server\u0027s repositories), or by a proxy server. The vulnerability affects all clients, including those that use file://, http://, and plain (untunneled) svn://.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2017-9800",
"url": "https://www.suse.com/security/cve/CVE-2017-9800"
},
{
"category": "external",
"summary": "SUSE Bug 1051362 for CVE-2017-9800",
"url": "https://bugzilla.suse.com/1051362"
},
{
"category": "external",
"summary": "SUSE Bug 1052481 for CVE-2017-9800",
"url": "https://bugzilla.suse.com/1052481"
},
{
"category": "external",
"summary": "SUSE Bug 1052696 for CVE-2017-9800",
"url": "https://bugzilla.suse.com/1052696"
},
{
"category": "external",
"summary": "SUSE Bug 1052932 for CVE-2017-9800",
"url": "https://bugzilla.suse.com/1052932"
},
{
"category": "external",
"summary": "SUSE Bug 1053364 for CVE-2017-9800",
"url": "https://bugzilla.suse.com/1053364"
},
{
"category": "external",
"summary": "SUSE Bug 1054653 for CVE-2017-9800",
"url": "https://bugzilla.suse.com/1054653"
},
{
"category": "external",
"summary": "SUSE Bug 1066430 for CVE-2017-9800",
"url": "https://bugzilla.suse.com/1066430"
},
{
"category": "external",
"summary": "SUSE Bug 1071709 for CVE-2017-9800",
"url": "https://bugzilla.suse.com/1071709"
},
{
"category": "external",
"summary": "SUSE Bug 1128150 for CVE-2017-9800",
"url": "https://bugzilla.suse.com/1128150"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.1,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP2:subversion-tools-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:libsvn_auth_gnome_keyring-1-0-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-bash-completion-1.8.19-25.3.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-devel-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-perl-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-python-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-server-1.8.19-25.3.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.aarch64",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP3:subversion-tools-1.8.19-25.3.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2017-08-17T06:38:37Z",
"details": "important"
}
],
"title": "CVE-2017-9800"
}
]
}
suse-su-2016:1249-1
Vulnerability from csaf_suse
Published
2016-05-06 07:50
Modified
2016-05-06 07:50
Summary
Security update for subversion
Notes
Title of the patch
Security update for subversion
Description of the patch
This update for subversion fixes the following issues:
- CVE-2016-2167: mod_authz_svn: DoS in MOVE/COPY authorization check (bsc#976849)
- CVE-2016-2168: svnserve/sasl may authenticate users using the wrong realm (bsc#976850)
The following non-security bugs were fixed:
- bsc#969159: subversion dependencies did not enforce matching password store
- bsc#911620: svnserve could not be started via YaST Service manager
Patchnames
SUSE-SLE-SDK-12-2016-726,SUSE-SLE-SDK-12-SP1-2016-726
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for subversion",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for subversion fixes the following issues:\n\n- CVE-2016-2167: mod_authz_svn: DoS in MOVE/COPY authorization check (bsc#976849)\n- CVE-2016-2168: svnserve/sasl may authenticate users using the wrong realm (bsc#976850)\n\nThe following non-security bugs were fixed:\n\n- bsc#969159: subversion dependencies did not enforce matching password store\n- bsc#911620: svnserve could not be started via YaST Service manager\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "SUSE-SLE-SDK-12-2016-726,SUSE-SLE-SDK-12-SP1-2016-726",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2016_1249-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2016:1249-1",
"url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161249-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2016:1249-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2016-May/002045.html"
},
{
"category": "self",
"summary": "SUSE Bug 911620",
"url": "https://bugzilla.suse.com/911620"
},
{
"category": "self",
"summary": "SUSE Bug 969159",
"url": "https://bugzilla.suse.com/969159"
},
{
"category": "self",
"summary": "SUSE Bug 976849",
"url": "https://bugzilla.suse.com/976849"
},
{
"category": "self",
"summary": "SUSE Bug 976850",
"url": "https://bugzilla.suse.com/976850"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2167 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2168 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2168/"
}
],
"title": "Security update for subversion",
"tracking": {
"current_release_date": "2016-05-06T07:50:15Z",
"generator": {
"date": "2016-05-06T07:50:15Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2016:1249-1",
"initial_release_date": "2016-05-06T07:50:15Z",
"revision_history": [
{
"date": "2016-05-06T07:50:15Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "subversion-bash-completion-1.8.10-21.1.noarch",
"product": {
"name": "subversion-bash-completion-1.8.10-21.1.noarch",
"product_id": "subversion-bash-completion-1.8.10-21.1.noarch"
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"product": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"product_id": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"product": {
"name": "libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"product_id": "libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-1.8.10-21.1.ppc64le",
"product": {
"name": "subversion-1.8.10-21.1.ppc64le",
"product_id": "subversion-1.8.10-21.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.8.10-21.1.ppc64le",
"product": {
"name": "subversion-devel-1.8.10-21.1.ppc64le",
"product_id": "subversion-devel-1.8.10-21.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.8.10-21.1.ppc64le",
"product": {
"name": "subversion-perl-1.8.10-21.1.ppc64le",
"product_id": "subversion-perl-1.8.10-21.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-python-1.8.10-21.1.ppc64le",
"product": {
"name": "subversion-python-1.8.10-21.1.ppc64le",
"product_id": "subversion-python-1.8.10-21.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-server-1.8.10-21.1.ppc64le",
"product": {
"name": "subversion-server-1.8.10-21.1.ppc64le",
"product_id": "subversion-server-1.8.10-21.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.8.10-21.1.ppc64le",
"product": {
"name": "subversion-tools-1.8.10-21.1.ppc64le",
"product_id": "subversion-tools-1.8.10-21.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"product": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"product_id": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x"
}
},
{
"category": "product_version",
"name": "libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"product": {
"name": "libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"product_id": "libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-1.8.10-21.1.s390x",
"product": {
"name": "subversion-1.8.10-21.1.s390x",
"product_id": "subversion-1.8.10-21.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.8.10-21.1.s390x",
"product": {
"name": "subversion-devel-1.8.10-21.1.s390x",
"product_id": "subversion-devel-1.8.10-21.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.8.10-21.1.s390x",
"product": {
"name": "subversion-perl-1.8.10-21.1.s390x",
"product_id": "subversion-perl-1.8.10-21.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-python-1.8.10-21.1.s390x",
"product": {
"name": "subversion-python-1.8.10-21.1.s390x",
"product_id": "subversion-python-1.8.10-21.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-server-1.8.10-21.1.s390x",
"product": {
"name": "subversion-server-1.8.10-21.1.s390x",
"product_id": "subversion-server-1.8.10-21.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.8.10-21.1.s390x",
"product": {
"name": "subversion-tools-1.8.10-21.1.s390x",
"product_id": "subversion-tools-1.8.10-21.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"product": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"product_id": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64"
}
},
{
"category": "product_version",
"name": "libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"product": {
"name": "libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"product_id": "libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-1.8.10-21.1.x86_64",
"product": {
"name": "subversion-1.8.10-21.1.x86_64",
"product_id": "subversion-1.8.10-21.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.8.10-21.1.x86_64",
"product": {
"name": "subversion-devel-1.8.10-21.1.x86_64",
"product_id": "subversion-devel-1.8.10-21.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.8.10-21.1.x86_64",
"product": {
"name": "subversion-perl-1.8.10-21.1.x86_64",
"product_id": "subversion-perl-1.8.10-21.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-python-1.8.10-21.1.x86_64",
"product": {
"name": "subversion-python-1.8.10-21.1.x86_64",
"product_id": "subversion-python-1.8.10-21.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-server-1.8.10-21.1.x86_64",
"product": {
"name": "subversion-server-1.8.10-21.1.x86_64",
"product_id": "subversion-server-1.8.10-21.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.8.10-21.1.x86_64",
"product": {
"name": "subversion-tools-1.8.10-21.1.x86_64",
"product_id": "subversion-tools-1.8.10-21.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12"
}
}
},
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 12 SP1",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-sdk:12:sp1"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le"
},
"product_reference": "libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x"
},
"product_reference": "libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64"
},
"product_reference": "libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.ppc64le"
},
"product_reference": "subversion-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.s390x"
},
"product_reference": "subversion-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.x86_64"
},
"product_reference": "subversion-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-bash-completion-1.8.10-21.1.noarch as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-bash-completion-1.8.10-21.1.noarch"
},
"product_reference": "subversion-bash-completion-1.8.10-21.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.ppc64le"
},
"product_reference": "subversion-devel-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.s390x"
},
"product_reference": "subversion-devel-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.x86_64"
},
"product_reference": "subversion-devel-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.ppc64le"
},
"product_reference": "subversion-perl-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.s390x"
},
"product_reference": "subversion-perl-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.x86_64"
},
"product_reference": "subversion-perl-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.ppc64le"
},
"product_reference": "subversion-python-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.s390x"
},
"product_reference": "subversion-python-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.x86_64"
},
"product_reference": "subversion-python-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.ppc64le"
},
"product_reference": "subversion-server-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.s390x"
},
"product_reference": "subversion-server-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.x86_64"
},
"product_reference": "subversion-server-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.ppc64le"
},
"product_reference": "subversion-tools-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.s390x"
},
"product_reference": "subversion-tools-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12",
"product_id": "SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.x86_64"
},
"product_reference": "subversion-tools-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le"
},
"product_reference": "libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x"
},
"product_reference": "libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64"
},
"product_reference": "libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.ppc64le"
},
"product_reference": "subversion-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.s390x"
},
"product_reference": "subversion-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.x86_64"
},
"product_reference": "subversion-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-bash-completion-1.8.10-21.1.noarch as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-bash-completion-1.8.10-21.1.noarch"
},
"product_reference": "subversion-bash-completion-1.8.10-21.1.noarch",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.ppc64le"
},
"product_reference": "subversion-devel-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.s390x"
},
"product_reference": "subversion-devel-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.x86_64"
},
"product_reference": "subversion-devel-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.ppc64le"
},
"product_reference": "subversion-perl-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.s390x"
},
"product_reference": "subversion-perl-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.x86_64"
},
"product_reference": "subversion-perl-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.ppc64le"
},
"product_reference": "subversion-python-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.s390x"
},
"product_reference": "subversion-python-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.x86_64"
},
"product_reference": "subversion-python-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.ppc64le"
},
"product_reference": "subversion-server-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.s390x"
},
"product_reference": "subversion-server-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.x86_64"
},
"product_reference": "subversion-server-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.10-21.1.ppc64le as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.ppc64le"
},
"product_reference": "subversion-tools-1.8.10-21.1.ppc64le",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.10-21.1.s390x as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.s390x"
},
"product_reference": "subversion-tools-1.8.10-21.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.8.10-21.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 12 SP1",
"product_id": "SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.x86_64"
},
"product_reference": "subversion-tools-1.8.10-21.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 12 SP1"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2016-2167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2167"
}
],
"notes": [
{
"category": "general",
"text": "The canonicalize_username function in svnserve/cyrus_auth.c in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4, when Cyrus SASL authentication is used, allows remote attackers to authenticate and bypass intended access restrictions via a realm string that is a prefix of an expected repository realm string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-bash-completion-1.8.10-21.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-bash-completion-1.8.10-21.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2167",
"url": "https://www.suse.com/security/cve/CVE-2016-2167"
},
{
"category": "external",
"summary": "SUSE Bug 976849 for CVE-2016-2167",
"url": "https://bugzilla.suse.com/976849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-bash-completion-1.8.10-21.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-bash-completion-1.8.10-21.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-bash-completion-1.8.10-21.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-bash-completion-1.8.10-21.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-05-06T07:50:15Z",
"details": "low"
}
],
"title": "CVE-2016-2167"
},
{
"cve": "CVE-2016-2168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2168"
}
],
"notes": [
{
"category": "general",
"text": "The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-bash-completion-1.8.10-21.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-bash-completion-1.8.10-21.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2168",
"url": "https://www.suse.com/security/cve/CVE-2016-2168"
},
{
"category": "external",
"summary": "SUSE Bug 976850 for CVE-2016-2168",
"url": "https://bugzilla.suse.com/976850"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-bash-completion-1.8.10-21.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-bash-completion-1.8.10-21.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-bash-completion-1.8.10-21.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-devel-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-perl-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-python-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-server-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12 SP1:subversion-tools-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_gnome_keyring-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:libsvn_auth_kwallet-1-0-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-bash-completion-1.8.10-21.1.noarch",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-devel-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-perl-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-python-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-server-1.8.10-21.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.ppc64le",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.s390x",
"SUSE Linux Enterprise Software Development Kit 12:subversion-tools-1.8.10-21.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-05-06T07:50:15Z",
"details": "moderate"
}
],
"title": "CVE-2016-2168"
}
]
}
suse-su-2016:1511-1
Vulnerability from csaf_suse
Published
2016-06-07 11:41
Modified
2016-06-07 11:41
Summary
Security update for subversion
Notes
Title of the patch
Security update for subversion
Description of the patch
This update for subversion fixes the following issues:
- CVE-2015-3187: svn_repos_trace_node_locations() reveals paths hidden by authz (bsc#939517)
- CVE-2016-2167: mod_authz_svn: DoS in MOVE/COPY authorization check (bsc#976849)
- CVE-2016-2168: svnserve/sasl may authenticate users using the wrong realm (bsc#976850)
Patchnames
sdksp4-subversion-12599,slestso13-subversion-12599
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "Security update for subversion",
"title": "Title of the patch"
},
{
"category": "description",
"text": "This update for subversion fixes the following issues:\n\n- CVE-2015-3187: svn_repos_trace_node_locations() reveals paths hidden by authz (bsc#939517)\n- CVE-2016-2167: mod_authz_svn: DoS in MOVE/COPY authorization check (bsc#976849)\n- CVE-2016-2168: svnserve/sasl may authenticate users using the wrong realm (bsc#976850)\n",
"title": "Description of the patch"
},
{
"category": "details",
"text": "sdksp4-subversion-12599,slestso13-subversion-12599",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/suse-su-2016_1511-1.json"
},
{
"category": "self",
"summary": "URL for SUSE-SU-2016:1511-1",
"url": "https://www.suse.com/support/update/announcement/2016/suse-su-20161511-1/"
},
{
"category": "self",
"summary": "E-Mail link for SUSE-SU-2016:1511-1",
"url": "https://lists.suse.com/pipermail/sle-security-updates/2016-June/002100.html"
},
{
"category": "self",
"summary": "SUSE Bug 939517",
"url": "https://bugzilla.suse.com/939517"
},
{
"category": "self",
"summary": "SUSE Bug 976849",
"url": "https://bugzilla.suse.com/976849"
},
{
"category": "self",
"summary": "SUSE Bug 976850",
"url": "https://bugzilla.suse.com/976850"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3187 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2167 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2168 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2168/"
}
],
"title": "Security update for subversion",
"tracking": {
"current_release_date": "2016-06-07T11:41:15Z",
"generator": {
"date": "2016-06-07T11:41:15Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "SUSE-SU-2016:1511-1",
"initial_release_date": "2016-06-07T11:41:15Z",
"revision_history": [
{
"date": "2016-06-07T11:41:15Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "subversion-1.6.17-1.35.1.i586",
"product": {
"name": "subversion-1.6.17-1.35.1.i586",
"product_id": "subversion-1.6.17-1.35.1.i586"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.6.17-1.35.1.i586",
"product": {
"name": "subversion-devel-1.6.17-1.35.1.i586",
"product_id": "subversion-devel-1.6.17-1.35.1.i586"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.6.17-1.35.1.i586",
"product": {
"name": "subversion-perl-1.6.17-1.35.1.i586",
"product_id": "subversion-perl-1.6.17-1.35.1.i586"
}
},
{
"category": "product_version",
"name": "subversion-python-1.6.17-1.35.1.i586",
"product": {
"name": "subversion-python-1.6.17-1.35.1.i586",
"product_id": "subversion-python-1.6.17-1.35.1.i586"
}
},
{
"category": "product_version",
"name": "subversion-server-1.6.17-1.35.1.i586",
"product": {
"name": "subversion-server-1.6.17-1.35.1.i586",
"product_id": "subversion-server-1.6.17-1.35.1.i586"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.6.17-1.35.1.i586",
"product": {
"name": "subversion-tools-1.6.17-1.35.1.i586",
"product_id": "subversion-tools-1.6.17-1.35.1.i586"
}
}
],
"category": "architecture",
"name": "i586"
},
{
"branches": [
{
"category": "product_version",
"name": "subversion-1.6.17-1.35.1.ia64",
"product": {
"name": "subversion-1.6.17-1.35.1.ia64",
"product_id": "subversion-1.6.17-1.35.1.ia64"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.6.17-1.35.1.ia64",
"product": {
"name": "subversion-devel-1.6.17-1.35.1.ia64",
"product_id": "subversion-devel-1.6.17-1.35.1.ia64"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.6.17-1.35.1.ia64",
"product": {
"name": "subversion-perl-1.6.17-1.35.1.ia64",
"product_id": "subversion-perl-1.6.17-1.35.1.ia64"
}
},
{
"category": "product_version",
"name": "subversion-python-1.6.17-1.35.1.ia64",
"product": {
"name": "subversion-python-1.6.17-1.35.1.ia64",
"product_id": "subversion-python-1.6.17-1.35.1.ia64"
}
},
{
"category": "product_version",
"name": "subversion-server-1.6.17-1.35.1.ia64",
"product": {
"name": "subversion-server-1.6.17-1.35.1.ia64",
"product_id": "subversion-server-1.6.17-1.35.1.ia64"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.6.17-1.35.1.ia64",
"product": {
"name": "subversion-tools-1.6.17-1.35.1.ia64",
"product_id": "subversion-tools-1.6.17-1.35.1.ia64"
}
}
],
"category": "architecture",
"name": "ia64"
},
{
"branches": [
{
"category": "product_version",
"name": "subversion-1.6.17-1.35.1.ppc64",
"product": {
"name": "subversion-1.6.17-1.35.1.ppc64",
"product_id": "subversion-1.6.17-1.35.1.ppc64"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.6.17-1.35.1.ppc64",
"product": {
"name": "subversion-devel-1.6.17-1.35.1.ppc64",
"product_id": "subversion-devel-1.6.17-1.35.1.ppc64"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.6.17-1.35.1.ppc64",
"product": {
"name": "subversion-perl-1.6.17-1.35.1.ppc64",
"product_id": "subversion-perl-1.6.17-1.35.1.ppc64"
}
},
{
"category": "product_version",
"name": "subversion-python-1.6.17-1.35.1.ppc64",
"product": {
"name": "subversion-python-1.6.17-1.35.1.ppc64",
"product_id": "subversion-python-1.6.17-1.35.1.ppc64"
}
},
{
"category": "product_version",
"name": "subversion-server-1.6.17-1.35.1.ppc64",
"product": {
"name": "subversion-server-1.6.17-1.35.1.ppc64",
"product_id": "subversion-server-1.6.17-1.35.1.ppc64"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.6.17-1.35.1.ppc64",
"product": {
"name": "subversion-tools-1.6.17-1.35.1.ppc64",
"product_id": "subversion-tools-1.6.17-1.35.1.ppc64"
}
}
],
"category": "architecture",
"name": "ppc64"
},
{
"branches": [
{
"category": "product_version",
"name": "subversion-1.6.17-1.35.1.s390x",
"product": {
"name": "subversion-1.6.17-1.35.1.s390x",
"product_id": "subversion-1.6.17-1.35.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.6.17-1.35.1.s390x",
"product": {
"name": "subversion-devel-1.6.17-1.35.1.s390x",
"product_id": "subversion-devel-1.6.17-1.35.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.6.17-1.35.1.s390x",
"product": {
"name": "subversion-perl-1.6.17-1.35.1.s390x",
"product_id": "subversion-perl-1.6.17-1.35.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-python-1.6.17-1.35.1.s390x",
"product": {
"name": "subversion-python-1.6.17-1.35.1.s390x",
"product_id": "subversion-python-1.6.17-1.35.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-server-1.6.17-1.35.1.s390x",
"product": {
"name": "subversion-server-1.6.17-1.35.1.s390x",
"product_id": "subversion-server-1.6.17-1.35.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.6.17-1.35.1.s390x",
"product": {
"name": "subversion-tools-1.6.17-1.35.1.s390x",
"product_id": "subversion-tools-1.6.17-1.35.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "subversion-1.6.17-1.35.1.x86_64",
"product": {
"name": "subversion-1.6.17-1.35.1.x86_64",
"product_id": "subversion-1.6.17-1.35.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.6.17-1.35.1.x86_64",
"product": {
"name": "subversion-devel-1.6.17-1.35.1.x86_64",
"product_id": "subversion-devel-1.6.17-1.35.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.6.17-1.35.1.x86_64",
"product": {
"name": "subversion-perl-1.6.17-1.35.1.x86_64",
"product_id": "subversion-perl-1.6.17-1.35.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-python-1.6.17-1.35.1.x86_64",
"product": {
"name": "subversion-python-1.6.17-1.35.1.x86_64",
"product_id": "subversion-python-1.6.17-1.35.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-server-1.6.17-1.35.1.x86_64",
"product": {
"name": "subversion-server-1.6.17-1.35.1.x86_64",
"product_id": "subversion-server-1.6.17-1.35.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.6.17-1.35.1.x86_64",
"product": {
"name": "subversion-tools-1.6.17-1.35.1.x86_64",
"product_id": "subversion-tools-1.6.17-1.35.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product": {
"name": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_identification_helper": {
"cpe": "cpe:/a:suse:sle-sdk:11:sp4"
}
}
},
{
"category": "product_name",
"name": "SUSE Studio Onsite 1.3",
"product": {
"name": "SUSE Studio Onsite 1.3",
"product_id": "SUSE Studio Onsite 1.3",
"product_identification_helper": {
"cpe": "cpe:/o:suse:sle-studioonsite:1.3"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.6.17-1.35.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.i586"
},
"product_reference": "subversion-1.6.17-1.35.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.6.17-1.35.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ia64"
},
"product_reference": "subversion-1.6.17-1.35.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.6.17-1.35.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ppc64"
},
"product_reference": "subversion-1.6.17-1.35.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.6.17-1.35.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.s390x"
},
"product_reference": "subversion-1.6.17-1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.6.17-1.35.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.x86_64"
},
"product_reference": "subversion-1.6.17-1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.6.17-1.35.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.i586"
},
"product_reference": "subversion-devel-1.6.17-1.35.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.6.17-1.35.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ia64"
},
"product_reference": "subversion-devel-1.6.17-1.35.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.6.17-1.35.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ppc64"
},
"product_reference": "subversion-devel-1.6.17-1.35.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.6.17-1.35.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.s390x"
},
"product_reference": "subversion-devel-1.6.17-1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.6.17-1.35.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.x86_64"
},
"product_reference": "subversion-devel-1.6.17-1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.6.17-1.35.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.i586"
},
"product_reference": "subversion-perl-1.6.17-1.35.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.6.17-1.35.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ia64"
},
"product_reference": "subversion-perl-1.6.17-1.35.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.6.17-1.35.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ppc64"
},
"product_reference": "subversion-perl-1.6.17-1.35.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.6.17-1.35.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.s390x"
},
"product_reference": "subversion-perl-1.6.17-1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.6.17-1.35.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.x86_64"
},
"product_reference": "subversion-perl-1.6.17-1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.6.17-1.35.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.i586"
},
"product_reference": "subversion-python-1.6.17-1.35.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.6.17-1.35.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ia64"
},
"product_reference": "subversion-python-1.6.17-1.35.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.6.17-1.35.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ppc64"
},
"product_reference": "subversion-python-1.6.17-1.35.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.6.17-1.35.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.s390x"
},
"product_reference": "subversion-python-1.6.17-1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.6.17-1.35.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.x86_64"
},
"product_reference": "subversion-python-1.6.17-1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.6.17-1.35.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.i586"
},
"product_reference": "subversion-server-1.6.17-1.35.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.6.17-1.35.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ia64"
},
"product_reference": "subversion-server-1.6.17-1.35.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.6.17-1.35.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ppc64"
},
"product_reference": "subversion-server-1.6.17-1.35.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.6.17-1.35.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.s390x"
},
"product_reference": "subversion-server-1.6.17-1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.6.17-1.35.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.x86_64"
},
"product_reference": "subversion-server-1.6.17-1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.6.17-1.35.1.i586 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.i586"
},
"product_reference": "subversion-tools-1.6.17-1.35.1.i586",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.6.17-1.35.1.ia64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ia64"
},
"product_reference": "subversion-tools-1.6.17-1.35.1.ia64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.6.17-1.35.1.ppc64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ppc64"
},
"product_reference": "subversion-tools-1.6.17-1.35.1.ppc64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.6.17-1.35.1.s390x as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.s390x"
},
"product_reference": "subversion-tools-1.6.17-1.35.1.s390x",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.6.17-1.35.1.x86_64 as component of SUSE Linux Enterprise Software Development Kit 11 SP4",
"product_id": "SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.x86_64"
},
"product_reference": "subversion-tools-1.6.17-1.35.1.x86_64",
"relates_to_product_reference": "SUSE Linux Enterprise Software Development Kit 11 SP4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.6.17-1.35.1.x86_64 as component of SUSE Studio Onsite 1.3",
"product_id": "SUSE Studio Onsite 1.3:subversion-1.6.17-1.35.1.x86_64"
},
"product_reference": "subversion-1.6.17-1.35.1.x86_64",
"relates_to_product_reference": "SUSE Studio Onsite 1.3"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2015-3187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3187"
}
],
"notes": [
{
"category": "general",
"text": "The svn_repos_trace_node_locations function in Apache Subversion before 1.7.21 and 1.8.x before 1.8.14, when path-based authorization is used, allows remote authenticated users to obtain sensitive path information by reading the history of a node that has been moved from a hidden path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.x86_64",
"SUSE Studio Onsite 1.3:subversion-1.6.17-1.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3187",
"url": "https://www.suse.com/security/cve/CVE-2015-3187"
},
{
"category": "external",
"summary": "SUSE Bug 939517 for CVE-2015-3187",
"url": "https://bugzilla.suse.com/939517"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.x86_64",
"SUSE Studio Onsite 1.3:subversion-1.6.17-1.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-06-07T11:41:15Z",
"details": "low"
}
],
"title": "CVE-2015-3187"
},
{
"cve": "CVE-2016-2167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2167"
}
],
"notes": [
{
"category": "general",
"text": "The canonicalize_username function in svnserve/cyrus_auth.c in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4, when Cyrus SASL authentication is used, allows remote attackers to authenticate and bypass intended access restrictions via a realm string that is a prefix of an expected repository realm string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.x86_64",
"SUSE Studio Onsite 1.3:subversion-1.6.17-1.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2167",
"url": "https://www.suse.com/security/cve/CVE-2016-2167"
},
{
"category": "external",
"summary": "SUSE Bug 976849 for CVE-2016-2167",
"url": "https://bugzilla.suse.com/976849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.x86_64",
"SUSE Studio Onsite 1.3:subversion-1.6.17-1.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.x86_64",
"SUSE Studio Onsite 1.3:subversion-1.6.17-1.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-06-07T11:41:15Z",
"details": "low"
}
],
"title": "CVE-2016-2167"
},
{
"cve": "CVE-2016-2168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2168"
}
],
"notes": [
{
"category": "general",
"text": "The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.x86_64",
"SUSE Studio Onsite 1.3:subversion-1.6.17-1.35.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2168",
"url": "https://www.suse.com/security/cve/CVE-2016-2168"
},
{
"category": "external",
"summary": "SUSE Bug 976850 for CVE-2016-2168",
"url": "https://bugzilla.suse.com/976850"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.x86_64",
"SUSE Studio Onsite 1.3:subversion-1.6.17-1.35.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-devel-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-perl-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-python-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-server-1.6.17-1.35.1.x86_64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.i586",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ia64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.ppc64",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.s390x",
"SUSE Linux Enterprise Software Development Kit 11 SP4:subversion-tools-1.6.17-1.35.1.x86_64",
"SUSE Studio Onsite 1.3:subversion-1.6.17-1.35.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2016-06-07T11:41:15Z",
"details": "moderate"
}
],
"title": "CVE-2016-2168"
}
]
}
fkie_cve-2016-2168
Vulnerability from fkie_nvd
Published
2016-05-05 18:59
Modified
2025-04-12 10:46
Severity ?
Summary
The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.
References
| ▶ | URL | Tags | |
|---|---|---|---|
| secalert@redhat.com | http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html | ||
| secalert@redhat.com | http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html | ||
| secalert@redhat.com | http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html | ||
| secalert@redhat.com | http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA%40mail.gmail.com%3E | ||
| secalert@redhat.com | http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ%40mail.gmail.com%3E | ||
| secalert@redhat.com | http://subversion.apache.org/security/CVE-2016-2168-advisory.txt | Vendor Advisory | |
| secalert@redhat.com | http://www.debian.org/security/2016/dsa-3561 | ||
| secalert@redhat.com | http://www.securityfocus.com/bid/89320 | ||
| secalert@redhat.com | http://www.securitytracker.com/id/1035707 | ||
| secalert@redhat.com | http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.417496 | ||
| secalert@redhat.com | https://security.gentoo.org/glsa/201610-05 | ||
| secalert@redhat.com | https://www.oracle.com/security-alerts/cpuoct2020.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA%40mail.gmail.com%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ%40mail.gmail.com%3E | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://subversion.apache.org/security/CVE-2016-2168-advisory.txt | Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.debian.org/security/2016/dsa-3561 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/89320 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securitytracker.com/id/1035707 | ||
| af854a3a-2127-422b-91ae-364da2661108 | http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.417496 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://security.gentoo.org/glsa/201610-05 | ||
| af854a3a-2127-422b-91ae-364da2661108 | https://www.oracle.com/security-alerts/cpuoct2020.html |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| apache | subversion | * | |
| apache | subversion | 1.9.0 | |
| apache | subversion | 1.9.1 | |
| apache | subversion | 1.9.2 | |
| apache | subversion | 1.9.3 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:apache:subversion:*:*:*:*:*:*:*:*",
"matchCriteriaId": "DD9BA15E-397D-4B1F-B755-8FFBBF58AE59",
"versionEndIncluding": "1.8.15",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:subversion:1.9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "892FF423-1848-4E69-8C4C-E1972B656196",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:subversion:1.9.1:*:*:*:*:*:*:*",
"matchCriteriaId": "9ACF37C7-8752-4A8F-B7E3-2E813C4A0DF0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:subversion:1.9.2:*:*:*:*:*:*:*",
"matchCriteriaId": "74200C33-9505-48EB-964D-6CA28C7F6DB8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:apache:subversion:1.9.3:*:*:*:*:*:*:*",
"matchCriteriaId": "09FBAFE7-986D-4B24-8122-FDCC380331C9",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check."
},
{
"lang": "es",
"value": "La funci\u00f3n req_check_access en el m\u00f3dulo mod_authz_svn en el servidor httpd en Apache Subversion en versiones anteriores a 1.8.16 y 1.9.x en versiones anteriores a 1.9.4 permite a usuarios remotos autenticados provocar una denegaci\u00f3n de servicio (referencia a puntero NULL y ca\u00edda) a trav\u00e9s de una cabecera manipulada en una petici\u00f3n (1) MOVE o (2) COPY, involucrando una verificaci\u00f3n de autorizaci\u00f3n."
}
],
"evaluatorComment": "\u003ca href=\"http://cwe.mitre.org/data/definitions/476.html\"\u003eCWE-476: NULL Pointer Dereference\u003c/a\u003e",
"id": "CVE-2016-2168",
"lastModified": "2025-04-12T10:46:40.837",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "MEDIUM",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2016-05-05T18:59:01.710",
"references": [
{
"source": "secalert@redhat.com",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html"
},
{
"source": "secalert@redhat.com",
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html"
},
{
"source": "secalert@redhat.com",
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html"
},
{
"source": "secalert@redhat.com",
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA%40mail.gmail.com%3E"
},
{
"source": "secalert@redhat.com",
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ%40mail.gmail.com%3E"
},
{
"source": "secalert@redhat.com",
"tags": [
"Vendor Advisory"
],
"url": "http://subversion.apache.org/security/CVE-2016-2168-advisory.txt"
},
{
"source": "secalert@redhat.com",
"url": "http://www.debian.org/security/2016/dsa-3561"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securityfocus.com/bid/89320"
},
{
"source": "secalert@redhat.com",
"url": "http://www.securitytracker.com/id/1035707"
},
{
"source": "secalert@redhat.com",
"url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2016\u0026m=slackware-security.417496"
},
{
"source": "secalert@redhat.com",
"url": "https://security.gentoo.org/glsa/201610-05"
},
{
"source": "secalert@redhat.com",
"url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA%40mail.gmail.com%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ%40mail.gmail.com%3E"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Vendor Advisory"
],
"url": "http://subversion.apache.org/security/CVE-2016-2168-advisory.txt"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.debian.org/security/2016/dsa-3561"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securityfocus.com/bid/89320"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.securitytracker.com/id/1035707"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2016\u0026m=slackware-security.417496"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://security.gentoo.org/glsa/201610-05"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
}
],
"sourceIdentifier": "secalert@redhat.com",
"vulnStatus": "Deferred",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
opensuse-su-2024:10538-1
Vulnerability from csaf_opensuse
Published
2024-06-15 00:00
Modified
2024-06-15 00:00
Summary
libsvn_auth_gnome_keyring-1-0-1.9.5-1.1 on GA media
Notes
Title of the patch
libsvn_auth_gnome_keyring-1-0-1.9.5-1.1 on GA media
Description of the patch
These are all security issues fixed in the libsvn_auth_gnome_keyring-1-0-1.9.5-1.1 package on the GA media of openSUSE Tumbleweed.
Patchnames
openSUSE-Tumbleweed-2024-10538
Terms of use
CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the libsvn_auth_gnome_keyring-1-0-1.9.5-1.1 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-10538",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_10538-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2009-2411 page",
"url": "https://www.suse.com/security/cve/CVE-2009-2411/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-3315 page",
"url": "https://www.suse.com/security/cve/CVE-2010-3315/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-4539 page",
"url": "https://www.suse.com/security/cve/CVE-2010-4539/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2010-4644 page",
"url": "https://www.suse.com/security/cve/CVE-2010-4644/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-0715 page",
"url": "https://www.suse.com/security/cve/CVE-2011-0715/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-1752 page",
"url": "https://www.suse.com/security/cve/CVE-2011-1752/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-1783 page",
"url": "https://www.suse.com/security/cve/CVE-2011-1783/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2011-1921 page",
"url": "https://www.suse.com/security/cve/CVE-2011-1921/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1845 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1845/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1846 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1846/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1847 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1847/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1849 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1849/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1884 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1884/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-1968 page",
"url": "https://www.suse.com/security/cve/CVE-2013-1968/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-2088 page",
"url": "https://www.suse.com/security/cve/CVE-2013-2088/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-2112 page",
"url": "https://www.suse.com/security/cve/CVE-2013-2112/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-4131 page",
"url": "https://www.suse.com/security/cve/CVE-2013-4131/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-4246 page",
"url": "https://www.suse.com/security/cve/CVE-2013-4246/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-4262 page",
"url": "https://www.suse.com/security/cve/CVE-2013-4262/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-4277 page",
"url": "https://www.suse.com/security/cve/CVE-2013-4277/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-4505 page",
"url": "https://www.suse.com/security/cve/CVE-2013-4505/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2013-4558 page",
"url": "https://www.suse.com/security/cve/CVE-2013-4558/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-0032 page",
"url": "https://www.suse.com/security/cve/CVE-2014-0032/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3522 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3522/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3528 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3528/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-3580 page",
"url": "https://www.suse.com/security/cve/CVE-2014-3580/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2014-8108 page",
"url": "https://www.suse.com/security/cve/CVE-2014-8108/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0202 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0202/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0248 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0248/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-0251 page",
"url": "https://www.suse.com/security/cve/CVE-2015-0251/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3184 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3184/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-3187 page",
"url": "https://www.suse.com/security/cve/CVE-2015-3187/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5259 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5259/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2015-5343 page",
"url": "https://www.suse.com/security/cve/CVE-2015-5343/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2167 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2167/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-2168 page",
"url": "https://www.suse.com/security/cve/CVE-2016-2168/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2016-8734 page",
"url": "https://www.suse.com/security/cve/CVE-2016-8734/"
}
],
"title": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:10538-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"product": {
"name": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"product_id": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"product": {
"name": "libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"product_id": "libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-1.9.5-1.1.aarch64",
"product": {
"name": "subversion-1.9.5-1.1.aarch64",
"product_id": "subversion-1.9.5-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-bash-completion-1.9.5-1.1.aarch64",
"product": {
"name": "subversion-bash-completion-1.9.5-1.1.aarch64",
"product_id": "subversion-bash-completion-1.9.5-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.9.5-1.1.aarch64",
"product": {
"name": "subversion-devel-1.9.5-1.1.aarch64",
"product_id": "subversion-devel-1.9.5-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.9.5-1.1.aarch64",
"product": {
"name": "subversion-perl-1.9.5-1.1.aarch64",
"product_id": "subversion-perl-1.9.5-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-python-1.9.5-1.1.aarch64",
"product": {
"name": "subversion-python-1.9.5-1.1.aarch64",
"product_id": "subversion-python-1.9.5-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-python-ctypes-1.9.5-1.1.aarch64",
"product": {
"name": "subversion-python-ctypes-1.9.5-1.1.aarch64",
"product_id": "subversion-python-ctypes-1.9.5-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-ruby-1.9.5-1.1.aarch64",
"product": {
"name": "subversion-ruby-1.9.5-1.1.aarch64",
"product_id": "subversion-ruby-1.9.5-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-server-1.9.5-1.1.aarch64",
"product": {
"name": "subversion-server-1.9.5-1.1.aarch64",
"product_id": "subversion-server-1.9.5-1.1.aarch64"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.9.5-1.1.aarch64",
"product": {
"name": "subversion-tools-1.9.5-1.1.aarch64",
"product_id": "subversion-tools-1.9.5-1.1.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"product": {
"name": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"product_id": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"product": {
"name": "libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"product_id": "libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-1.9.5-1.1.ppc64le",
"product": {
"name": "subversion-1.9.5-1.1.ppc64le",
"product_id": "subversion-1.9.5-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-bash-completion-1.9.5-1.1.ppc64le",
"product": {
"name": "subversion-bash-completion-1.9.5-1.1.ppc64le",
"product_id": "subversion-bash-completion-1.9.5-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.9.5-1.1.ppc64le",
"product": {
"name": "subversion-devel-1.9.5-1.1.ppc64le",
"product_id": "subversion-devel-1.9.5-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.9.5-1.1.ppc64le",
"product": {
"name": "subversion-perl-1.9.5-1.1.ppc64le",
"product_id": "subversion-perl-1.9.5-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-python-1.9.5-1.1.ppc64le",
"product": {
"name": "subversion-python-1.9.5-1.1.ppc64le",
"product_id": "subversion-python-1.9.5-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-python-ctypes-1.9.5-1.1.ppc64le",
"product": {
"name": "subversion-python-ctypes-1.9.5-1.1.ppc64le",
"product_id": "subversion-python-ctypes-1.9.5-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-ruby-1.9.5-1.1.ppc64le",
"product": {
"name": "subversion-ruby-1.9.5-1.1.ppc64le",
"product_id": "subversion-ruby-1.9.5-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-server-1.9.5-1.1.ppc64le",
"product": {
"name": "subversion-server-1.9.5-1.1.ppc64le",
"product_id": "subversion-server-1.9.5-1.1.ppc64le"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.9.5-1.1.ppc64le",
"product": {
"name": "subversion-tools-1.9.5-1.1.ppc64le",
"product_id": "subversion-tools-1.9.5-1.1.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"product": {
"name": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"product_id": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x"
}
},
{
"category": "product_version",
"name": "libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"product": {
"name": "libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"product_id": "libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-1.9.5-1.1.s390x",
"product": {
"name": "subversion-1.9.5-1.1.s390x",
"product_id": "subversion-1.9.5-1.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-bash-completion-1.9.5-1.1.s390x",
"product": {
"name": "subversion-bash-completion-1.9.5-1.1.s390x",
"product_id": "subversion-bash-completion-1.9.5-1.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.9.5-1.1.s390x",
"product": {
"name": "subversion-devel-1.9.5-1.1.s390x",
"product_id": "subversion-devel-1.9.5-1.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.9.5-1.1.s390x",
"product": {
"name": "subversion-perl-1.9.5-1.1.s390x",
"product_id": "subversion-perl-1.9.5-1.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-python-1.9.5-1.1.s390x",
"product": {
"name": "subversion-python-1.9.5-1.1.s390x",
"product_id": "subversion-python-1.9.5-1.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-python-ctypes-1.9.5-1.1.s390x",
"product": {
"name": "subversion-python-ctypes-1.9.5-1.1.s390x",
"product_id": "subversion-python-ctypes-1.9.5-1.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-ruby-1.9.5-1.1.s390x",
"product": {
"name": "subversion-ruby-1.9.5-1.1.s390x",
"product_id": "subversion-ruby-1.9.5-1.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-server-1.9.5-1.1.s390x",
"product": {
"name": "subversion-server-1.9.5-1.1.s390x",
"product_id": "subversion-server-1.9.5-1.1.s390x"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.9.5-1.1.s390x",
"product": {
"name": "subversion-tools-1.9.5-1.1.s390x",
"product_id": "subversion-tools-1.9.5-1.1.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"product": {
"name": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"product_id": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"product": {
"name": "libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"product_id": "libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-1.9.5-1.1.x86_64",
"product": {
"name": "subversion-1.9.5-1.1.x86_64",
"product_id": "subversion-1.9.5-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-bash-completion-1.9.5-1.1.x86_64",
"product": {
"name": "subversion-bash-completion-1.9.5-1.1.x86_64",
"product_id": "subversion-bash-completion-1.9.5-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-devel-1.9.5-1.1.x86_64",
"product": {
"name": "subversion-devel-1.9.5-1.1.x86_64",
"product_id": "subversion-devel-1.9.5-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-perl-1.9.5-1.1.x86_64",
"product": {
"name": "subversion-perl-1.9.5-1.1.x86_64",
"product_id": "subversion-perl-1.9.5-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-python-1.9.5-1.1.x86_64",
"product": {
"name": "subversion-python-1.9.5-1.1.x86_64",
"product_id": "subversion-python-1.9.5-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-python-ctypes-1.9.5-1.1.x86_64",
"product": {
"name": "subversion-python-ctypes-1.9.5-1.1.x86_64",
"product_id": "subversion-python-ctypes-1.9.5-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-ruby-1.9.5-1.1.x86_64",
"product": {
"name": "subversion-ruby-1.9.5-1.1.x86_64",
"product_id": "subversion-ruby-1.9.5-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-server-1.9.5-1.1.x86_64",
"product": {
"name": "subversion-server-1.9.5-1.1.x86_64",
"product_id": "subversion-server-1.9.5-1.1.x86_64"
}
},
{
"category": "product_version",
"name": "subversion-tools-1.9.5-1.1.x86_64",
"product": {
"name": "subversion-tools-1.9.5-1.1.x86_64",
"product_id": "subversion-tools-1.9.5-1.1.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64"
},
"product_reference": "libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64"
},
"product_reference": "libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le"
},
"product_reference": "libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x"
},
"product_reference": "libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64"
},
"product_reference": "libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.9.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64"
},
"product_reference": "subversion-1.9.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.9.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le"
},
"product_reference": "subversion-1.9.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.9.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x"
},
"product_reference": "subversion-1.9.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-1.9.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64"
},
"product_reference": "subversion-1.9.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-bash-completion-1.9.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64"
},
"product_reference": "subversion-bash-completion-1.9.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-bash-completion-1.9.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le"
},
"product_reference": "subversion-bash-completion-1.9.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-bash-completion-1.9.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x"
},
"product_reference": "subversion-bash-completion-1.9.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-bash-completion-1.9.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64"
},
"product_reference": "subversion-bash-completion-1.9.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.9.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64"
},
"product_reference": "subversion-devel-1.9.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.9.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le"
},
"product_reference": "subversion-devel-1.9.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.9.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x"
},
"product_reference": "subversion-devel-1.9.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-devel-1.9.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64"
},
"product_reference": "subversion-devel-1.9.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.9.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64"
},
"product_reference": "subversion-perl-1.9.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.9.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le"
},
"product_reference": "subversion-perl-1.9.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.9.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x"
},
"product_reference": "subversion-perl-1.9.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-perl-1.9.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64"
},
"product_reference": "subversion-perl-1.9.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.9.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64"
},
"product_reference": "subversion-python-1.9.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.9.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le"
},
"product_reference": "subversion-python-1.9.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.9.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x"
},
"product_reference": "subversion-python-1.9.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-1.9.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64"
},
"product_reference": "subversion-python-1.9.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-ctypes-1.9.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64"
},
"product_reference": "subversion-python-ctypes-1.9.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-ctypes-1.9.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le"
},
"product_reference": "subversion-python-ctypes-1.9.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-ctypes-1.9.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x"
},
"product_reference": "subversion-python-ctypes-1.9.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-python-ctypes-1.9.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64"
},
"product_reference": "subversion-python-ctypes-1.9.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-ruby-1.9.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64"
},
"product_reference": "subversion-ruby-1.9.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-ruby-1.9.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le"
},
"product_reference": "subversion-ruby-1.9.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-ruby-1.9.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x"
},
"product_reference": "subversion-ruby-1.9.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-ruby-1.9.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64"
},
"product_reference": "subversion-ruby-1.9.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.9.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64"
},
"product_reference": "subversion-server-1.9.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.9.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le"
},
"product_reference": "subversion-server-1.9.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.9.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x"
},
"product_reference": "subversion-server-1.9.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-server-1.9.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64"
},
"product_reference": "subversion-server-1.9.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.9.5-1.1.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64"
},
"product_reference": "subversion-tools-1.9.5-1.1.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.9.5-1.1.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le"
},
"product_reference": "subversion-tools-1.9.5-1.1.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.9.5-1.1.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x"
},
"product_reference": "subversion-tools-1.9.5-1.1.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "subversion-tools-1.9.5-1.1.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
},
"product_reference": "subversion-tools-1.9.5-1.1.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2009-2411",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2009-2411"
}
],
"notes": [
{
"category": "general",
"text": "Multiple integer overflows in the libsvn_delta library in Subversion before 1.5.7, and 1.6.x before 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via an svndiff stream with large windows that trigger a heap-based buffer overflow, a related issue to CVE-2009-2412.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2009-2411",
"url": "https://www.suse.com/security/cve/CVE-2009-2411"
},
{
"category": "external",
"summary": "SUSE Bug 528714 for CVE-2009-2411",
"url": "https://bugzilla.suse.com/528714"
},
{
"category": "external",
"summary": "SUSE Bug 802057 for CVE-2009-2411",
"url": "https://bugzilla.suse.com/802057"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2009-2411"
},
{
"cve": "CVE-2010-3315",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-3315"
}
],
"notes": [
{
"category": "general",
"text": "authz.c in the mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x before 1.5.8 and 1.6.x before 1.6.13, when SVNPathAuthz short_circuit is enabled, does not properly handle a named repository as a rule scope, which allows remote authenticated users to bypass intended access restrictions via svn commands.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-3315",
"url": "https://www.suse.com/security/cve/CVE-2010-3315"
},
{
"category": "external",
"summary": "SUSE Bug 649861 for CVE-2010-3315",
"url": "https://bugzilla.suse.com/649861"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-3315"
},
{
"cve": "CVE-2010-4539",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-4539"
}
],
"notes": [
{
"category": "general",
"text": "The walk function in repos.c in the mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.15, allows remote authenticated users to cause a denial of service (NULL pointer dereference and daemon crash) via vectors that trigger the walking of SVNParentPath collections.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-4539",
"url": "https://www.suse.com/security/cve/CVE-2010-4539"
},
{
"category": "external",
"summary": "SUSE Bug 662030 for CVE-2010-4539",
"url": "https://bugzilla.suse.com/662030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2010-4539"
},
{
"cve": "CVE-2010-4644",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2010-4644"
}
],
"notes": [
{
"category": "general",
"text": "Multiple memory leaks in rev_hunt.c in Apache Subversion before 1.6.15 allow remote authenticated users to cause a denial of service (memory consumption and daemon crash) via the -g option to the blame command.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2010-4644",
"url": "https://www.suse.com/security/cve/CVE-2010-4644"
},
{
"category": "external",
"summary": "SUSE Bug 662030 for CVE-2010-4644",
"url": "https://bugzilla.suse.com/662030"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2010-4644"
},
{
"cve": "CVE-2011-0715",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-0715"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.16, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request that contains a lock token.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-0715",
"url": "https://www.suse.com/security/cve/CVE-2011-0715"
},
{
"category": "external",
"summary": "SUSE Bug 676949 for CVE-2011-0715",
"url": "https://bugzilla.suse.com/676949"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-0715"
},
{
"cve": "CVE-2011-1752",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-1752"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion before 1.6.17, allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via a request for a baselined WebDAV resource, as exploited in the wild in May 2011.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-1752",
"url": "https://www.suse.com/security/cve/CVE-2011-1752"
},
{
"category": "external",
"summary": "SUSE Bug 698205 for CVE-2011-1752",
"url": "https://bugzilla.suse.com/698205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-1752"
},
{
"cve": "CVE-2011-1783",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-1783"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz short_circuit option is enabled, allows remote attackers to cause a denial of service (infinite loop and memory consumption) in opportunistic circumstances by requesting data.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-1783",
"url": "https://www.suse.com/security/cve/CVE-2011-1783"
},
{
"category": "external",
"summary": "SUSE Bug 698205 for CVE-2011-1783",
"url": "https://bugzilla.suse.com/698205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-1783"
},
{
"cve": "CVE-2011-1921",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2011-1921"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x and 1.6.x before 1.6.17, when the SVNPathAuthz short_circuit option is disabled, does not properly enforce permissions for files that had been publicly readable in the past, which allows remote attackers to obtain sensitive information via a replay REPORT operation.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2011-1921",
"url": "https://www.suse.com/security/cve/CVE-2011-1921"
},
{
"category": "external",
"summary": "SUSE Bug 698205 for CVE-2011-1921",
"url": "https://bugzilla.suse.com/698205"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2011-1921"
},
{
"cve": "CVE-2013-1845",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1845"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of service (memory consumption) by (1) setting or (2) deleting a large number of properties for a file or directory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1845",
"url": "https://www.suse.com/security/cve/CVE-2013-1845"
},
{
"category": "external",
"summary": "SUSE Bug 813913 for CVE-2013-1845",
"url": "https://bugzilla.suse.com/813913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2013-1845"
},
{
"cve": "CVE-2013-1846",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1846"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x before 1.6.21 and 1.7.0 through 1.7.8 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a LOCK on an activity URL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1846",
"url": "https://www.suse.com/security/cve/CVE-2013-1846"
},
{
"category": "external",
"summary": "SUSE Bug 813913 for CVE-2013-1846",
"url": "https://bugzilla.suse.com/813913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2013-1846"
},
{
"cve": "CVE-2013-1847",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1847"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn Apache HTTPD server module in Subversion 1.6.0 through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an anonymous LOCK for a URL that does not exist.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1847",
"url": "https://www.suse.com/security/cve/CVE-2013-1847"
},
{
"category": "external",
"summary": "SUSE Bug 813913 for CVE-2013-1847",
"url": "https://bugzilla.suse.com/813913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-1847"
},
{
"cve": "CVE-2013-1849",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1849"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn Apache HTTPD server module in Subversion 1.6.x through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a PROPFIND request for an activity URL.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1849",
"url": "https://www.suse.com/security/cve/CVE-2013-1849"
},
{
"category": "external",
"summary": "SUSE Bug 813913 for CVE-2013-1849",
"url": "https://bugzilla.suse.com/813913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-1849"
},
{
"cve": "CVE-2013-1884",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1884"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (segmentation fault and crash) via a log REPORT request with an invalid limit, which triggers an access of an uninitialized variable.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1884",
"url": "https://www.suse.com/security/cve/CVE-2013-1884"
},
{
"category": "external",
"summary": "SUSE Bug 813913 for CVE-2013-1884",
"url": "https://bugzilla.suse.com/813913"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-1884"
},
{
"cve": "CVE-2013-1968",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-1968"
}
],
"notes": [
{
"category": "general",
"text": "Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote authenticated users to cause a denial of service (FSFS repository corruption) via a newline character in a file name.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-1968",
"url": "https://www.suse.com/security/cve/CVE-2013-1968"
},
{
"category": "external",
"summary": "SUSE Bug 821505 for CVE-2013-1968",
"url": "https://bugzilla.suse.com/821505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-1968"
},
{
"cve": "CVE-2013-2088",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-2088"
}
],
"notes": [
{
"category": "general",
"text": "contrib/hook-scripts/svn-keyword-check.pl in Subversion before 1.6.23 allows remote authenticated users with commit permissions to execute arbitrary commands via shell metacharacters in a filename.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-2088",
"url": "https://www.suse.com/security/cve/CVE-2013-2088"
},
{
"category": "external",
"summary": "SUSE Bug 821505 for CVE-2013-2088",
"url": "https://bugzilla.suse.com/821505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-2088"
},
{
"cve": "CVE-2013-2112",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-2112"
}
],
"notes": [
{
"category": "general",
"text": "The svnserve server in Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote attackers to cause a denial of service (exit) by aborting a connection.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-2112",
"url": "https://www.suse.com/security/cve/CVE-2013-2112"
},
{
"category": "external",
"summary": "SUSE Bug 821505 for CVE-2013-2112",
"url": "https://bugzilla.suse.com/821505"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-2112"
},
{
"cve": "CVE-2013-4131",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-4131"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through 1.7.10 and 1.8.x before 1.8.1 allows remote authenticated users to cause a denial of service (assertion failure or out-of-bounds read) via a certain (1) COPY, (2) DELETE, or (3) MOVE request against a revision root.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-4131",
"url": "https://www.suse.com/security/cve/CVE-2013-4131"
},
{
"category": "external",
"summary": "SUSE Bug 830031 for CVE-2013-4131",
"url": "https://bugzilla.suse.com/830031"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2013-4131"
},
{
"cve": "CVE-2013-4246",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-4246"
}
],
"notes": [
{
"category": "general",
"text": "libsvn_fs_fs/fs_fs.c in Apache Subversion 1.8.x before 1.8.2 might allow remote authenticated users with commit access to corrupt FSFS repositories and cause a denial of service or obtain sensitive information by editing packed revision properties.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-4246",
"url": "https://www.suse.com/security/cve/CVE-2013-4246"
},
{
"category": "external",
"summary": "SUSE Bug 836245 for CVE-2013-4246",
"url": "https://bugzilla.suse.com/836245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.8,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2013-4246"
},
{
"cve": "CVE-2013-4262",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-4262"
}
],
"notes": [
{
"category": "general",
"text": "svnwcsub.py in Subversion 1.8.0 before 1.8.3, when using the --pidfile option and running in foreground mode, allows local users to gain privileges via a symlink attack on the pid file. NOTE: this issue was SPLIT due to different affected versions (ADT3). The irkerbridge.py issue is covered by CVE-2013-7393.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-4262",
"url": "https://www.suse.com/security/cve/CVE-2013-4262"
},
{
"category": "external",
"summary": "SUSE Bug 844201 for CVE-2013-4262",
"url": "https://bugzilla.suse.com/844201"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2013-4262"
},
{
"cve": "CVE-2013-4277",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-4277"
}
],
"notes": [
{
"category": "general",
"text": "Svnserve in Apache Subversion 1.4.0 through 1.7.12 and 1.8.0 through 1.8.1 allows local users to overwrite arbitrary files or kill arbitrary processes via a symlink attack on the file specified by the --pid-file option.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-4277",
"url": "https://www.suse.com/security/cve/CVE-2013-4277"
},
{
"category": "external",
"summary": "SUSE Bug 836245 for CVE-2013-4277",
"url": "https://bugzilla.suse.com/836245"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2013-4277"
},
{
"cve": "CVE-2013-4505",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-4505"
}
],
"notes": [
{
"category": "general",
"text": "The is_this_legal function in mod_dontdothat for Apache Subversion 1.4.0 through 1.7.13 and 1.8.0 through 1.8.4 allows remote attackers to bypass intended access restrictions and possibly cause a denial of service (resource consumption) via a relative URL in a REPORT request.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-4505",
"url": "https://www.suse.com/security/cve/CVE-2013-4505"
},
{
"category": "external",
"summary": "SUSE Bug 850667 for CVE-2013-4505",
"url": "https://bugzilla.suse.com/850667"
},
{
"category": "external",
"summary": "SUSE Bug 850747 for CVE-2013-4505",
"url": "https://bugzilla.suse.com/850747"
},
{
"category": "external",
"summary": "SUSE Bug 862459 for CVE-2013-4505",
"url": "https://bugzilla.suse.com/862459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2013-4505"
},
{
"cve": "CVE-2013-4558",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2013-4558"
}
],
"notes": [
{
"category": "general",
"text": "The get_parent_resource function in repos.c in mod_dav_svn Apache HTTPD server module in Subversion 1.7.11 through 1.7.13 and 1.8.1 through 1.8.4, when built with assertions enabled and SVNAutoversioning is enabled, allows remote attackers to cause a denial of service (assertion failure and Apache process abort) via a non-canonical URL in a request, as demonstrated using a trailing /.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2013-4558",
"url": "https://www.suse.com/security/cve/CVE-2013-4558"
},
{
"category": "external",
"summary": "SUSE Bug 850667 for CVE-2013-4558",
"url": "https://bugzilla.suse.com/850667"
},
{
"category": "external",
"summary": "SUSE Bug 850747 for CVE-2013-4558",
"url": "https://bugzilla.suse.com/850747"
},
{
"category": "external",
"summary": "SUSE Bug 862459 for CVE-2013-4558",
"url": "https://bugzilla.suse.com/862459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2013-4558"
},
{
"cve": "CVE-2014-0032",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-0032"
}
],
"notes": [
{
"category": "general",
"text": "The get_resource function in repos.c in the mod_dav_svn module in Apache Subversion before 1.7.15 and 1.8.x before 1.8.6, when SVNListParentPath is enabled, allows remote attackers to cause a denial of service (crash) via vectors related to the server root and request methods other than GET, as demonstrated by the \"svn ls http://svn.example.com\" command.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-0032",
"url": "https://www.suse.com/security/cve/CVE-2014-0032"
},
{
"category": "external",
"summary": "SUSE Bug 862459 for CVE-2014-0032",
"url": "https://bugzilla.suse.com/862459"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-0032"
},
{
"cve": "CVE-2014-3522",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3522"
}
],
"notes": [
{
"category": "general",
"text": "The Serf RA layer in Apache Subversion 1.4.0 through 1.7.x before 1.7.18 and 1.8.x before 1.8.10 does not properly handle wildcards in the Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle attackers to spoof servers via a crafted certificate.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3522",
"url": "https://www.suse.com/security/cve/CVE-2014-3522"
},
{
"category": "external",
"summary": "SUSE Bug 890511 for CVE-2014-3522",
"url": "https://bugzilla.suse.com/890511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2014-3522"
},
{
"cve": "CVE-2014-3528",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3528"
}
],
"notes": [
{
"category": "general",
"text": "Apache Subversion 1.0.0 through 1.7.x before 1.7.17 and 1.8.x before 1.8.10 uses an MD5 hash of the URL and authentication realm to store cached credentials, which makes it easier for remote servers to obtain the credentials via a crafted authentication realm.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3528",
"url": "https://www.suse.com/security/cve/CVE-2014-3528"
},
{
"category": "external",
"summary": "SUSE Bug 889849 for CVE-2014-3528",
"url": "https://bugzilla.suse.com/889849"
},
{
"category": "external",
"summary": "SUSE Bug 890511 for CVE-2014-3528",
"url": "https://bugzilla.suse.com/890511"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2014-3528"
},
{
"cve": "CVE-2014-3580",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-3580"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and server crash) via a REPORT request for a resource that does not exist.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-3580",
"url": "https://www.suse.com/security/cve/CVE-2014-3580"
},
{
"category": "external",
"summary": "SUSE Bug 909935 for CVE-2014-3580",
"url": "https://bugzilla.suse.com/909935"
},
{
"category": "external",
"summary": "SUSE Bug 910376 for CVE-2014-3580",
"url": "https://bugzilla.suse.com/910376"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-3580"
},
{
"cve": "CVE-2014-8108",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2014-8108"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn Apache HTTPD server module in Apache Subversion 1.7.x before 1.7.19 and 1.8.x before 1.8.11 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a request for a URI that triggers a lookup for a virtual transaction name that does not exist.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2014-8108",
"url": "https://www.suse.com/security/cve/CVE-2014-8108"
},
{
"category": "external",
"summary": "SUSE Bug 909935 for CVE-2014-8108",
"url": "https://bugzilla.suse.com/909935"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2014-8108"
},
{
"cve": "CVE-2015-0202",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0202"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn server in Subversion 1.8.0 through 1.8.11 allows remote attackers to cause a denial of service (memory consumption) via a large number of REPORT requests, which trigger the traversal of FSFS repository nodes.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0202",
"url": "https://www.suse.com/security/cve/CVE-2015-0202"
},
{
"category": "external",
"summary": "SUSE Bug 923793 for CVE-2015-0202",
"url": "https://bugzilla.suse.com/923793"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2015-0202"
},
{
"cve": "CVE-2015-0248",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0248"
}
],
"notes": [
{
"category": "general",
"text": "The (1) mod_dav_svn and (2) svnserve servers in Subversion 1.6.0 through 1.7.19 and 1.8.0 through 1.8.11 allow remote attackers to cause a denial of service (assertion failure and abort) via crafted parameter combinations related to dynamically evaluated revision numbers.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0248",
"url": "https://www.suse.com/security/cve/CVE-2015-0248"
},
{
"category": "external",
"summary": "SUSE Bug 923794 for CVE-2015-0248",
"url": "https://bugzilla.suse.com/923794"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-0248"
},
{
"cve": "CVE-2015-0251",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-0251"
}
],
"notes": [
{
"category": "general",
"text": "The mod_dav_svn server in Subversion 1.5.0 through 1.7.19 and 1.8.0 through 1.8.11 allows remote authenticated users to spoof the svn:author property via a crafted v1 HTTP protocol request sequences.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-0251",
"url": "https://www.suse.com/security/cve/CVE-2015-0251"
},
{
"category": "external",
"summary": "SUSE Bug 923795 for CVE-2015-0251",
"url": "https://bugzilla.suse.com/923795"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2015-0251"
},
{
"cve": "CVE-2015-3184",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3184"
}
],
"notes": [
{
"category": "general",
"text": "mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x before 1.8.14, when using Apache httpd 2.4.x, does not properly restrict anonymous access, which allows remote anonymous users to read hidden files via the path name.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3184",
"url": "https://www.suse.com/security/cve/CVE-2015-3184"
},
{
"category": "external",
"summary": "SUSE Bug 938723 for CVE-2015-3184",
"url": "https://bugzilla.suse.com/938723"
},
{
"category": "external",
"summary": "SUSE Bug 939514 for CVE-2015-3184",
"url": "https://bugzilla.suse.com/939514"
},
{
"category": "external",
"summary": "SUSE Bug 939516 for CVE-2015-3184",
"url": "https://bugzilla.suse.com/939516"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2015-3184"
},
{
"cve": "CVE-2015-3187",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-3187"
}
],
"notes": [
{
"category": "general",
"text": "The svn_repos_trace_node_locations function in Apache Subversion before 1.7.21 and 1.8.x before 1.8.14, when path-based authorization is used, allows remote authenticated users to obtain sensitive path information by reading the history of a node that has been moved from a hidden path.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-3187",
"url": "https://www.suse.com/security/cve/CVE-2015-3187"
},
{
"category": "external",
"summary": "SUSE Bug 939517 for CVE-2015-3187",
"url": "https://bugzilla.suse.com/939517"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2015-3187"
},
{
"cve": "CVE-2015-5259",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5259"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in the read_string function in libsvn_ra_svn/marshal.c in Apache Subversion 1.9.x before 1.9.3 allows remote attackers to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5259",
"url": "https://www.suse.com/security/cve/CVE-2015-5259"
},
{
"category": "external",
"summary": "SUSE Bug 958299 for CVE-2015-5259",
"url": "https://bugzilla.suse.com/958299"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2015-5259"
},
{
"cve": "CVE-2015-5343",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2015-5343"
}
],
"notes": [
{
"category": "general",
"text": "Integer overflow in util.c in mod_dav_svn in Apache Subversion 1.7.x, 1.8.x before 1.8.15, and 1.9.x before 1.9.3 allows remote authenticated users to cause a denial of service (subversion server crash or memory consumption) and possibly execute arbitrary code via a skel-encoded request body, which triggers an out-of-bounds read and heap-based buffer overflow.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2015-5343",
"url": "https://www.suse.com/security/cve/CVE-2015-5343"
},
{
"category": "external",
"summary": "SUSE Bug 958300 for CVE-2015-5343",
"url": "https://bugzilla.suse.com/958300"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 7.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2015-5343"
},
{
"cve": "CVE-2016-2167",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2167"
}
],
"notes": [
{
"category": "general",
"text": "The canonicalize_username function in svnserve/cyrus_auth.c in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4, when Cyrus SASL authentication is used, allows remote attackers to authenticate and bypass intended access restrictions via a realm string that is a prefix of an expected repository realm string.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2167",
"url": "https://www.suse.com/security/cve/CVE-2016-2167"
},
{
"category": "external",
"summary": "SUSE Bug 976849 for CVE-2016-2167",
"url": "https://bugzilla.suse.com/976849"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.8,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-2167"
},
{
"cve": "CVE-2016-2168",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-2168"
}
],
"notes": [
{
"category": "general",
"text": "The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-2168",
"url": "https://www.suse.com/security/cve/CVE-2016-2168"
},
{
"category": "external",
"summary": "SUSE Bug 976850 for CVE-2016-2168",
"url": "https://bugzilla.suse.com/976850"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "moderate"
}
],
"title": "CVE-2016-2168"
},
{
"cve": "CVE-2016-8734",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2016-8734"
}
],
"notes": [
{
"category": "general",
"text": "Apache Subversion\u0027s mod_dontdothat module and HTTP clients 1.4.0 through 1.8.16, and 1.9.0 through 1.9.4 are vulnerable to a denial-of-service attack caused by exponential XML entity expansion. The attack can cause the targeted process to consume an excessive amount of CPU resources or memory.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2016-8734",
"url": "https://www.suse.com/security/cve/CVE-2016-8734"
},
{
"category": "external",
"summary": "SUSE Bug 1011552 for CVE-2016-8734",
"url": "https://bugzilla.suse.com/1011552"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_gnome_keyring-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:libsvn_auth_kwallet-1-0-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-bash-completion-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-devel-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-perl-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-python-ctypes-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-ruby-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-server-1.9.5-1.1.x86_64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.aarch64",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.ppc64le",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.s390x",
"openSUSE Tumbleweed:subversion-tools-1.9.5-1.1.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "low"
}
],
"title": "CVE-2016-8734"
}
]
}
gsd-2016-2168
Vulnerability from gsd
Modified
2023-12-13 01:21
Details
The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2016-2168",
"description": "The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.",
"id": "GSD-2016-2168",
"references": [
"https://www.suse.com/security/cve/CVE-2016-2168.html",
"https://www.debian.org/security/2016/dsa-3561",
"https://advisories.mageia.org/CVE-2016-2168.html",
"https://alas.aws.amazon.com/cve/html/CVE-2016-2168.html"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2016-2168"
],
"details": "The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check.",
"id": "GSD-2016-2168",
"modified": "2023-12-13T01:21:19.449248Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-2168",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "FEDORA-2016-20cc04ac50",
"refsource": "FEDORA",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html"
},
{
"name": "[subversion-announce] 20160428 [ANNOUNCE][SECURITY] Apache Subversion 1.8.16 released",
"refsource": "MLIST",
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA@mail.gmail.com%3E"
},
{
"name": "SSA:2016-121-01",
"refsource": "SLACKWARE",
"url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2016\u0026m=slackware-security.417496"
},
{
"name": "openSUSE-SU-2016:1264",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html"
},
{
"name": "1035707",
"refsource": "SECTRACK",
"url": "http://www.securitytracker.com/id/1035707"
},
{
"name": "[subversion-announce] 20160428 [ANNOUNCE][SECURITY] Apache Subversion 1.9.4 released",
"refsource": "MLIST",
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ@mail.gmail.com%3E"
},
{
"name": "89320",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/89320"
},
{
"name": "openSUSE-SU-2016:1263",
"refsource": "SUSE",
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html"
},
{
"name": "DSA-3561",
"refsource": "DEBIAN",
"url": "http://www.debian.org/security/2016/dsa-3561"
},
{
"name": "GLSA-201610-05",
"refsource": "GENTOO",
"url": "https://security.gentoo.org/glsa/201610-05"
},
{
"name": "https://www.oracle.com/security-alerts/cpuoct2020.html",
"refsource": "MISC",
"url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
},
{
"name": "http://subversion.apache.org/security/CVE-2016-2168-advisory.txt",
"refsource": "CONFIRM",
"url": "http://subversion.apache.org/security/CVE-2016-2168-advisory.txt"
}
]
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:apache:subversion:1.9.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:subversion:1.9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:subversion:1.9.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:subversion:1.9.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:apache:subversion:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "1.8.15",
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2016-2168"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "The req_check_access function in the mod_authz_svn module in the httpd server in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4 allows remote authenticated users to cause a denial of service (NULL pointer dereference and crash) via a crafted header in a (1) MOVE or (2) COPY request, involving an authorization check."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "NVD-CWE-Other"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "[subversion-announce] 20160428 [ANNOUNCE][SECURITY] Apache Subversion 1.8.16 released",
"refsource": "MLIST",
"tags": [],
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA@mail.gmail.com%3E"
},
{
"name": "DSA-3561",
"refsource": "DEBIAN",
"tags": [],
"url": "http://www.debian.org/security/2016/dsa-3561"
},
{
"name": "http://subversion.apache.org/security/CVE-2016-2168-advisory.txt",
"refsource": "CONFIRM",
"tags": [
"Vendor Advisory"
],
"url": "http://subversion.apache.org/security/CVE-2016-2168-advisory.txt"
},
{
"name": "[subversion-announce] 20160428 [ANNOUNCE][SECURITY] Apache Subversion 1.9.4 released",
"refsource": "MLIST",
"tags": [],
"url": "http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ@mail.gmail.com%3E"
},
{
"name": "1035707",
"refsource": "SECTRACK",
"tags": [],
"url": "http://www.securitytracker.com/id/1035707"
},
{
"name": "89320",
"refsource": "BID",
"tags": [],
"url": "http://www.securityfocus.com/bid/89320"
},
{
"name": "SSA:2016-121-01",
"refsource": "SLACKWARE",
"tags": [],
"url": "http://www.slackware.com/security/viewer.php?l=slackware-security\u0026y=2016\u0026m=slackware-security.417496"
},
{
"name": "openSUSE-SU-2016:1264",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html"
},
{
"name": "openSUSE-SU-2016:1263",
"refsource": "SUSE",
"tags": [],
"url": "http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html"
},
{
"name": "FEDORA-2016-20cc04ac50",
"refsource": "FEDORA",
"tags": [],
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html"
},
{
"name": "GLSA-201610-05",
"refsource": "GENTOO",
"tags": [],
"url": "https://security.gentoo.org/glsa/201610-05"
},
{
"name": "https://www.oracle.com/security-alerts/cpuoct2020.html",
"refsource": "MISC",
"tags": [],
"url": "https://www.oracle.com/security-alerts/cpuoct2020.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "SINGLE",
"availabilityImpact": "PARTIAL",
"baseScore": 4.0,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P",
"version": "2.0"
},
"exploitabilityScore": 8.0,
"impactScore": 2.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 2.8,
"impactScore": 3.6
}
},
"lastModifiedDate": "2020-10-20T22:15Z",
"publishedDate": "2016-05-05T18:59Z"
}
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…