What is the severity of CVE-2013-2112?

CVE-2013-2112 has a severity rating of medium due to its potential to cause denial of service.

What versions of Subversion are affected by CVE-2013-2112?

CVE-2013-2112 affects Subversion versions before 1.6.23 and 1.7.x before 1.7.10.

How do I fix CVE-2013-2112?

To fix CVE-2013-2112, upgrade to Subversion version 1.6.23 or 1.7.10 or later.

What type of attack does CVE-2013-2112 facilitate?

CVE-2013-2112 facilitates a denial of service attack by allowing remote attackers to abort a connection.

Is there a workaround for CVE-2013-2112?

A workaround for CVE-2013-2112 is to restrict access to the svnserve server until the software is updated.

Vulnerability/
CVE-2013-2112

high

7.8

31/7/2013

6/8/2024

CVE-2013-2112

First published: Wed Jul 31 2013(Updated: )

The svnserve server in Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote attackers to cause a denial of service (exit) by aborting a connection.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Subversion	<=1.6.21
Subversion	=1.6.0
Subversion	=1.6.1
Subversion	=1.6.2
Subversion	=1.6.3
Subversion	=1.6.4
Subversion	=1.6.5
Subversion	=1.6.6
Subversion	=1.6.7
Subversion	=1.6.8
Subversion	=1.6.9
Subversion	=1.6.10
Subversion	=1.6.11
Subversion	=1.6.12
Subversion	=1.6.13
Subversion	=1.6.14
Subversion	=1.6.15
Subversion	=1.6.16
Subversion	=1.6.17
Subversion	=1.6.18
Subversion	=1.6.19
Subversion	=1.6.20
Apache Subversion	=1.6.17
Subversion	=1.7.0
Subversion	=1.7.1
Subversion	=1.7.2
Subversion	=1.7.3
Subversion	=1.7.4
Subversion	=1.7.5
Subversion	=1.7.6
Subversion	=1.7.7
Subversion	=1.7.8
Subversion	=1.7.9
Ubuntu	=12.04
Ubuntu	=12.10
Ubuntu	=13.04
openSUSE	=11.4

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2013-2112?
CVE-2013-2112 has a severity rating of medium due to its potential to cause denial of service.
What versions of Subversion are affected by CVE-2013-2112?
CVE-2013-2112 affects Subversion versions before 1.6.23 and 1.7.x before 1.7.10.
How do I fix CVE-2013-2112?
To fix CVE-2013-2112, upgrade to Subversion version 1.6.23 or 1.7.10 or later.
What type of attack does CVE-2013-2112 facilitate?
CVE-2013-2112 facilitates a denial of service attack by allowing remote attackers to abort a connection.
Is there a workaround for CVE-2013-2112?
A workaround for CVE-2013-2112 is to restrict access to the svnserve server until the software is updated.

agent/references
agent/type
agent/author
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/first-publish-date
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/apache
canonical/subversion
version/subversion/1.6.21
version/subversion/1.6.0
version/subversion/1.6.1
version/subversion/1.6.2
version/subversion/1.6.3
version/subversion/1.6.4
version/subversion/1.6.5
version/subversion/1.6.6
version/subversion/1.6.7
version/subversion/1.6.8
version/subversion/1.6.9
version/subversion/1.6.10
version/subversion/1.6.11
version/subversion/1.6.12
version/subversion/1.6.13
version/subversion/1.6.14
version/subversion/1.6.15
version/subversion/1.6.16
version/subversion/1.6.17
version/subversion/1.6.18
version/subversion/1.6.19
version/subversion/1.6.20
vendor/collabnet
canonical/apache subversion
version/apache subversion/1.6.17
version/subversion/1.7.0
version/subversion/1.7.1
version/subversion/1.7.2
version/subversion/1.7.3
version/subversion/1.7.4
version/subversion/1.7.5
version/subversion/1.7.6
version/subversion/1.7.7
version/subversion/1.7.8
version/subversion/1.7.9
vendor/canonical
canonical/ubuntu
version/ubuntu/12.04
version/ubuntu/12.10
version/ubuntu/13.04
vendor/opensuse
canonical/opensuse
version/opensuse/11.4