CVE-2013-4131: Buffer Overflow
First published: Fri Jul 19 2013(Updated: )
A denial of service flaw was found in the way mod_dav_svn module of Subversion (SVN), a concurrent version control system, used to process certain MOVE, COPY, or DELETE HTTP requests (requests that originated or targeted against a revision root). A remote attacker, with commit access / privileges could use this flaw to cause denial of service (depending on the Apache httpd web server configuration either child assertion failure or crash [prefork MPM configuration] or failure to handle other requests, originally scheduled to be handled within the same thread [threaded MPM configuration] due to a process termination) by issuing a specially-crafted SVN commit request. Vulnerable package versions: * Subversion HTTPD servers 1.7.0 through 1.7.10 (inclusive) * Subversion HTTPD servers 1.8.0 (including 1.8.0 release candidates). * svnserve (any version) is not vulnerable. * Subversion 1.6.x is not vulnerable.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| redhat/Subversion | <1.8.1 | 1.8.1 |
| redhat/Subversion | <1.7.11 | 1.7.11 |
| Subversion | =1.7.0 | |
| Subversion | =1.7.1 | |
| Subversion | =1.7.2 | |
| Subversion | =1.7.3 | |
| Subversion | =1.7.4 | |
| Subversion | =1.7.5 | |
| Subversion | =1.7.6 | |
| Subversion | =1.7.7 | |
| Subversion | =1.7.8 | |
| Subversion | =1.7.9 | |
| Subversion | =1.7.10 | |
| Subversion | =1.8.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- https://bugzilla.redhat.com/show_bug.cgi/show_bug.cgi?id=988145
- http://subversion.apache.org/security/CVE-2013-4131-advisory.txt
- https://bugzilla.redhat.com/show_bug.cgi?id=986194
- http://lists.opensuse.org/opensuse-updates/2013-08/msg00000.html
- http://www.securityfocus.com/bid/61454
- https://exchange.xforce.ibmcloud.com/vulnerabilities/85983
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18621
Frequently Asked Questions
What is the severity of CVE-2013-4131?
CVE-2013-4131 has been rated as a denial of service vulnerability due to its potential to cause server crashes.
How do I fix CVE-2013-4131?
To fix CVE-2013-4131, you should upgrade your Subversion installation to a version that is not affected such as 1.8.2 or later.
Which versions are affected by CVE-2013-4131?
CVE-2013-4131 affects Subversion versions 1.7.0 up to 1.8.1.
Can a remote attacker exploit CVE-2013-4131?
Yes, a remote attacker with commit access can exploit CVE-2013-4131 by sending specially crafted HTTP requests.
Is CVE-2013-4131 related to mod_dav_svn?
Yes, CVE-2013-4131 specifically affects the mod_dav_svn module used in Subversion.
- collector/redhat-bugzilla
- alias/CVE-2013-4131
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/severity
- agent/weakness
- agent/references
- agent/author
- agent/softwarecombine
- agent/description
- agent/event
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- package-manager/redhat
- vendor/apache
- canonical/subversion
- version/subversion/1.7.0
- version/subversion/1.7.1
- version/subversion/1.7.2
- version/subversion/1.7.3
- version/subversion/1.7.4
- version/subversion/1.7.5
- version/subversion/1.7.6
- version/subversion/1.7.7
- version/subversion/1.7.8
- version/subversion/1.7.9
- version/subversion/1.7.10
- version/subversion/1.8.0