SUSE-SU-2024:4366-1
- Source
- https://www.suse.com/support/update/announcement/2024/suse-su-20244366-1/
- Import Source
- https://ftp.suse.com/pub/projects/security/osv/SUSE-SU-2024:4366-1.json
- JSON Data
- https://api.test.osv.dev/v1/vulns/SUSE-SU-2024:4366-1
- Related
- Published
- 2024-12-17T16:38:27Z
- Modified
- 2024-12-17T16:38:27Z
- Summary
- Security update for subversion
- Details
-
This update for subversion fixes the following issues:
- CVE-2024-46901: Fixed denial-of-service via control characters in paths in moddavsvn (bsc#1234317)
- References
Affected packages
SUSE:Linux Enterprise Module for Basesystem 15 SP5 / subversion
Package
- Name
- subversion
- Purl
- pkg:rpm/suse/subversion&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP5
SUSE:Linux Enterprise Module for Basesystem 15 SP6 / subversion
Package
- Name
- subversion
- Purl
- pkg:rpm/suse/subversion&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Basesystem%2015%20SP6
SUSE:Linux Enterprise Module for Development Tools 15 SP5 / subversion
Package
- Name
- subversion
- Purl
- pkg:rpm/suse/subversion&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP5
SUSE:Linux Enterprise Module for Development Tools 15 SP6 / subversion
Package
- Name
- subversion
- Purl
- pkg:rpm/suse/subversion&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Development%20Tools%2015%20SP6
SUSE:Linux Enterprise Module for Server Applications 15 SP5 / subversion
Package
- Name
- subversion
- Purl
- pkg:rpm/suse/subversion&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP5
SUSE:Linux Enterprise Module for Server Applications 15 SP6 / subversion
Package
- Name
- subversion
- Purl
- pkg:rpm/suse/subversion&distro=SUSE%20Linux%20Enterprise%20Module%20for%20Server%20Applications%2015%20SP6
openSUSE:Leap 15.5 / subversion
Package
- Name
- subversion
- Purl
- pkg:rpm/opensuse/subversion&distro=openSUSE%20Leap%2015.5
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.14.1-150400.5.3.1
Ecosystem specific
{
"binaries": [
{
"libsvn_auth_kwallet-1-0": "1.14.1-150400.5.3.1",
"subversion-devel": "1.14.1-150400.5.3.1",
"subversion-tools": "1.14.1-150400.5.3.1",
"subversion": "1.14.1-150400.5.3.1",
"libsvn_auth_gnome_keyring-1-0": "1.14.1-150400.5.3.1",
"subversion-bash-completion": "1.14.1-150400.5.3.1",
"subversion-ruby": "1.14.1-150400.5.3.1",
"subversion-python": "1.14.1-150400.5.3.1",
"subversion-server": "1.14.1-150400.5.3.1",
"subversion-perl": "1.14.1-150400.5.3.1"
}
]
}
openSUSE:Leap 15.6 / subversion
Package
- Name
- subversion
- Purl
- pkg:rpm/opensuse/subversion&distro=openSUSE%20Leap%2015.6
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedFixed1.14.1-150400.5.3.1
Ecosystem specific
{
"binaries": [
{
"libsvn_auth_kwallet-1-0": "1.14.1-150400.5.3.1",
"subversion-devel": "1.14.1-150400.5.3.1",
"subversion-tools": "1.14.1-150400.5.3.1",
"subversion": "1.14.1-150400.5.3.1",
"libsvn_auth_gnome_keyring-1-0": "1.14.1-150400.5.3.1",
"subversion-bash-completion": "1.14.1-150400.5.3.1",
"subversion-ruby": "1.14.1-150400.5.3.1",
"subversion-python": "1.14.1-150400.5.3.1",
"subversion-server": "1.14.1-150400.5.3.1",
"subversion-perl": "1.14.1-150400.5.3.1"
}
]
}