This may allow an attacker to execute arbitrary code on the server. How might I avoid this? It is recommended that you upgrade your Subversion installation to the latest version.
If you cannot upgrade your Subversion installation, then you can disable path-based authorization. You can do this by setting svn_auth_pwd_enable to Off in your Apache configuration. password-based authentication can be disabled by setting svn_auth_pwd_enable to Off. Subversion's mod_dav_svn is vulnerable to memory corruption. While looking up path-based authorization rules, mod_dav_svn servers may attempt to use memory which has already been freed. This may allow an attacker to execute arbitrary code on the server.
What is Subversion?
Subversion is a version control system (VCS) that allows you to keep track of and manage software projects. It is used by software developers and IT projects teams to manage code. Subversion is designed to scale well, requires very little setup time, and can be installed on both Unix-like systems and Microsoft Windows.
Summary
The Subversion Apache module is vulnerable to memory corruption. While looking up path-based authorization rules, mod_dav_svn servers may attempt to use memory which has already been freed. This may allow an attacker to execute arbitrary code on the server.
Timeline
Published on: 04/12/2022 18:15:00 UTC
Last modified on: 07/22/2022 06:15:00 UTC
References
- https://bz.apache.org/bugzilla/show_bug.cgi?id=65861
- https://issues.apache.org/jira/browse/SVN-4880
- https://cwiki.apache.org/confluence/display/HTTPD/ModuleLife
- https://www.debian.org/security/2022/dsa-5119
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/YJPMCWCGWBN3QWCDVILWQWPC75RR67LT/
- https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/PZ4ARNGLMGYBKYDX2B7DRBNMF6EH3A6R/
- https://support.apple.com/kb/HT213345
- http://seclists.org/fulldisclosure/2022/Jul/18
- https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-24070