CVE-2009-2411: Buffer Overflow
First published: Fri Aug 07 2009(Updated: )
Multiple integer overflows in the libsvn_delta library in Subversion before 1.5.7, and 1.6.x before 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via an svndiff stream with large windows that trigger a heap-based buffer overflow, a related issue to CVE-2009-2412.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Apache Subversion | <=1.5.6 | |
| Apache Subversion | =0.22.1 | |
| Apache Subversion | =0.23.0 | |
| Apache Subversion | =0.24.0 | |
| Apache Subversion | =0.24.1 | |
| Apache Subversion | =0.24.2 | |
| Apache Subversion | =0.25.0 | |
| Apache Subversion | =0.27.0 | |
| Apache Subversion | =0.28.0 | |
| Apache Subversion | =0.28.1 | |
| Apache Subversion | =0.28.2 | |
| Apache Subversion | =0.29.0 | |
| Apache Subversion | =0.30.0 | |
| Apache Subversion | =0.31.0 | |
| Apache Subversion | =0.32.0 | |
| Apache Subversion | =0.32.1 | |
| Apache Subversion | =0.33.0 | |
| Apache Subversion | =0.33.1 | |
| Apache Subversion | =0.34.0 | |
| Apache Subversion | =0.35.0 | |
| Apache Subversion | =0.35.1 | |
| Apache Subversion | =0.36.0 | |
| Apache Subversion | =0.37.0 | |
| Apache Subversion | =1.0 | |
| Apache Subversion | =1.0.0 | |
| Apache Subversion | =1.0.1 | |
| Apache Subversion | =1.0.2 | |
| Apache Subversion | =1.0.3 | |
| Apache Subversion | =1.0.4 | |
| Apache Subversion | =1.0.5 | |
| Apache Subversion | =1.0.6 | |
| Apache Subversion | =1.0.7 | |
| Apache Subversion | =1.0.8 | |
| Apache Subversion | =1.0.9 | |
| Apache Subversion | =1.1.0 | |
| Apache Subversion | =1.1.0_rc1 | |
| Apache Subversion | =1.1.0_rc2 | |
| Apache Subversion | =1.1.0_rc3 | |
| Apache Subversion | =1.1.1 | |
| Apache Subversion | =1.1.2 | |
| Apache Subversion | =1.1.3 | |
| Apache Subversion | =1.1.4 | |
| Apache Subversion | =1.2.0 | |
| Apache Subversion | =1.2.1 | |
| Apache Subversion | =1.2.2 | |
| Apache Subversion | =1.2.3 | |
| Apache Subversion | =1.3.0 | |
| Apache Subversion | =1.3.1 | |
| Apache Subversion | =1.3.2 | |
| Apache Subversion | =1.4.0 | |
| Apache Subversion | =1.4.1 | |
| Apache Subversion | =1.4.2 | |
| Apache Subversion | =1.4.3 | |
| Apache Subversion | =1.4.4 | |
| Apache Subversion | =1.4.5 | |
| Apache Subversion | =1.5.0 | |
| Apache Subversion | =1.5.1 | |
| Apache Subversion | =1.5.3 | |
| Apache Subversion | =1.5.4 | |
| Apache Subversion | =1.5.5 | |
| Apache Subversion | =1.6.0 | |
| Apache Subversion | =1.6.1 | |
| Apache Subversion | =1.6.2 | |
| Apache Subversion | =1.6.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://secunia.com/advisories/36184
- http://svn.collab.net/repos/svn/tags/1.5.7/CHANGES
- http://svn.haxx.se/dev/archive-2009-08/0108.shtml
- http://subversion.tigris.org/security/CVE-2009-2411-advisory.txt
- http://svn.haxx.se/dev/archive-2009-08/0107.shtml
- http://svn.collab.net/repos/svn/tags/1.6.4/CHANGES
- http://www.vupen.com/english/advisories/2009/2180
- http://svn.haxx.se/dev/archive-2009-08/0110.shtml
- http://www.securityfocus.com/bid/35983
- http://secunia.com/advisories/36232
- https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00485.html
- http://archives.neohapsis.com/archives/bugtraq/2009-08/0056.html
- http://www.mandriva.com/security/advisories?name=MDVSA-2009:199
- http://www.debian.org/security/2009/dsa-1855
- http://www.securitytracker.com/id?1022697
- https://www.redhat.com/archives/fedora-package-announce/2009-August/msg00469.html
- http://secunia.com/advisories/36224
- http://osvdb.org/56856
- http://www.ubuntu.com/usn/usn-812-1
- http://www.redhat.com/support/errata/RHSA-2009-1203.html
- http://secunia.com/advisories/36262
- http://secunia.com/advisories/36257
- http://support.apple.com/kb/HT3937
- http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html
- http://www.vupen.com/english/advisories/2009/3184
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11465
Frequently Asked Questions
What is the severity of CVE-2009-2411?
CVE-2009-2411 is classified as a critical vulnerability that can lead to remote code execution.
How do I fix CVE-2009-2411?
To fix CVE-2009-2411, upgrade Subversion to version 1.5.7 or later, or 1.6.4 or later.
What type of vulnerability is CVE-2009-2411?
CVE-2009-2411 is an integer overflow vulnerability in the libsvn_delta library.
What versions of Subversion are affected by CVE-2009-2411?
CVE-2009-2411 affects Subversion versions prior to 1.5.7 and 1.6.x before 1.6.4.
Can CVE-2009-2411 be exploited remotely?
Yes, CVE-2009-2411 can be exploited by remote authenticated users via specially crafted svndiff streams.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/author
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/subversion
- canonical/apache subversion
- version/apache subversion/1.5.6
- version/apache subversion/0.22.1
- version/apache subversion/0.23.0
- version/apache subversion/0.24.0
- version/apache subversion/0.24.1
- version/apache subversion/0.24.2
- version/apache subversion/0.25.0
- version/apache subversion/0.27.0
- version/apache subversion/0.28.0
- version/apache subversion/0.28.1
- version/apache subversion/0.28.2
- version/apache subversion/0.29.0
- version/apache subversion/0.30.0
- version/apache subversion/0.31.0
- version/apache subversion/0.32.0
- version/apache subversion/0.32.1
- version/apache subversion/0.33.0
- version/apache subversion/0.33.1
- version/apache subversion/0.34.0
- version/apache subversion/0.35.0
- version/apache subversion/0.35.1
- version/apache subversion/0.36.0
- version/apache subversion/0.37.0
- version/apache subversion/1.0
- version/apache subversion/1.0.0
- version/apache subversion/1.0.1
- version/apache subversion/1.0.2
- version/apache subversion/1.0.3
- version/apache subversion/1.0.4
- version/apache subversion/1.0.5
- version/apache subversion/1.0.6
- version/apache subversion/1.0.7
- version/apache subversion/1.0.8
- version/apache subversion/1.0.9
- version/apache subversion/1.1.0
- version/apache subversion/1.1.0_rc1
- version/apache subversion/1.1.0_rc2
- version/apache subversion/1.1.0_rc3
- version/apache subversion/1.1.1
- version/apache subversion/1.1.2
- version/apache subversion/1.1.3
- version/apache subversion/1.1.4
- version/apache subversion/1.2.0
- version/apache subversion/1.2.1
- version/apache subversion/1.2.2
- version/apache subversion/1.2.3
- version/apache subversion/1.3.0
- version/apache subversion/1.3.1
- version/apache subversion/1.3.2
- version/apache subversion/1.4.0
- version/apache subversion/1.4.1
- version/apache subversion/1.4.2
- version/apache subversion/1.4.3
- version/apache subversion/1.4.4
- version/apache subversion/1.4.5
- version/apache subversion/1.5.0
- version/apache subversion/1.5.1
- version/apache subversion/1.5.3
- version/apache subversion/1.5.4
- version/apache subversion/1.5.5
- version/apache subversion/1.6.0
- version/apache subversion/1.6.1
- version/apache subversion/1.6.2
- version/apache subversion/1.6.3