Lucene search
SuseSUSE-SU-2022:1162-1HistoryApr 12, 2022 - 12:00 a.m.
Security update for subversion (important)
2022-04-1200:00:00
lists.opensuse.org
17
0.003 Low
EPSS
Percentile
68.7%
An update that fixes two vulnerabilities is now available.
Description:
This update for subversion fixes the following issues:
- CVE-2022-24070: Fixed a memory corruption issue in mod_dav_svn as used
by Apache HTTP server. This could be exploited by a remote attacker to
cause a denial of service (bsc#1197940). - CVE-2021-28544: Fixed an information leak issue where Subversion servers
may reveal the original path of files protected by path-based
authorization (bsc#1197939).
Patch Instructions:
To install this SUSE Security Update use the SUSE recommended installation methods
like YaST online_update or “zypper patch”.
Alternatively you can run the command listed for your product:
-
openSUSE Leap 15.4:
zypper in -t patch openSUSE-SLE-15.4-2022-1162=1
-
openSUSE Leap 15.3:
zypper in -t patch openSUSE-SLE-15.3-2022-1162=1
-
SUSE Linux Enterprise Module for Server Applications 15-SP3:
zypper in -t patch SUSE-SLE-Module-Server-Applications-15-SP3-2022-1162=1
-
SUSE Linux Enterprise Module for Development Tools 15-SP3:
zypper in -t patch SUSE-SLE-Module-Development-Tools-15-SP3-2022-1162=1
-
SUSE Linux Enterprise Module for Basesystem 15-SP3:
zypper in -t patch SUSE-SLE-Module-Basesystem-15-SP3-2022-1162=1
Related
nessus
nessus
SUSE SLED15 / SLES15 Security Update : subversion (SUSE-SU-2022:1162-1)
2022-04-13 00:00:00
Ubuntu 22.04 LTS : Subversion vulnerabilities (USN-5450-1)
2022-05-27 00:00:00
EulerOS 2.0 SP10 : subversion (EulerOS-SA-2022-2172)
2022-07-29 00:00:00
mageia
mageia
Updated subversion packages fix security vulnerability
2022-04-13 19:06:19
openvas
openvas
Mageia: Security Advisory (MGASA-2022-0140)
2022-04-14 00:00:00
Fedora: Security Advisory for subversion (FEDORA-2022-13cc09ecf2)
2022-07-16 00:00:00
Debian: Security Advisory (DSA-5119-1)
2022-04-14 00:00:00
osv
osv
subversion vulnerabilities
2022-05-27 01:00:42
subversion vulnerabilities
2022-04-12 17:08:51
subversion - security update
2022-04-13 00:00:00
ubuntu
ubuntu
Subversion vulnerabilities
2022-05-27 00:00:00
Subversion vulnerabilities
2022-04-12 00:00:00
photon
photon
Important Photon OS Security Update - PHSA-2022-0389
2022-05-03 00:00:00
Important Photon OS Security Update - PHSA-2022-3.0-0389
2022-05-03 00:00:00
Critical Photon OS Security Update - PHSA-2022-0189
2022-05-27 00:00:00
debian
debian
[SECURITY] [DSA 5119-1] subversion security update
2022-04-13 04:21:54
fedora
fedora
[SECURITY] Fedora 35 Update: subversion-1.14.2-5.fc35
2022-07-15 01:36:38
[SECURITY] Fedora 36 Update: subversion-1.14.2-5.fc36
2022-07-15 01:17:37
freebsd
freebsd
Subversion -- Multiple vulnerabilities in server code
2022-04-12 00:00:00
prion
prion
Path traversal
2022-04-12 18:15:00
Memory corruption
2022-04-12 18:15:00
veracode
veracode
Denial Of Service (DoS)
2022-04-13 14:34:49
Information Disclosure
2022-04-13 15:52:02
rocky
rocky
subversion:1.14 security update
2022-06-08 08:20:16
subversion:1.10 security update
2022-05-12 13:15:51
subversion security update
2022-05-18 00:11:20
redhat
redhat
(RHSA-2022:2222) Important: subversion:1.10 security update
2022-05-11 20:49:09
(RHSA-2022:4941) Important: subversion:1.14 security update
2022-06-08 08:20:16
(RHSA-2022:2237) Important: subversion:1.10 security update
2022-05-12 13:19:08
ibm
ibm
cve
cve
CVE-2021-28544
2022-04-12 18:15:08
CVE-2022-24070
2022-04-12 18:15:09
redhatcve
redhatcve
CVE-2021-28544
2022-04-13 05:22:18
CVE-2022-24070
2022-04-13 05:37:22
cvelist
cvelist
nvd
nvd
CVE-2021-28544
2022-04-12 18:15:08
CVE-2022-24070
2022-04-12 18:15:09
almalinux
almalinux
Important: subversion:1.10 security update
2022-05-12 13:15:51
oraclelinux
oraclelinux
subversion security update
2022-06-30 00:00:00
subversion:1.14 security update
2022-06-09 00:00:00
subversion:1.10 security update
2022-05-19 00:00:00
cbl_mariner
cbl_mariner
CVE-2022-24070 affecting package subversion 1.14.0-4
2022-05-12 02:16:39
CVE-2022-24070 affecting package subversion for versions less than 1.14.2-1
2022-06-26 03:29:34
CVE-2021-28544 affecting package subversion 1.14.0-4
2022-05-12 02:16:39
debiancve
debiancve
CVE-2021-28544
2022-04-12 18:15:08
CVE-2022-24070
2022-04-12 18:15:09
alpinelinux
alpinelinux
CVE-2021-28544
2022-04-12 18:15:08
CVE-2022-24070
2022-04-12 18:15:09
ubuntucve
ubuntucve
CVE-2021-28544
2021-04-12 00:00:00
CVE-2022-24070
2021-04-12 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2023-2216
2023-08-15 09:37:11
apple
apple
About the security content of macOS Monterey 12.5
2022-07-20 00:00:00