CVE-2022-24070
12.04.2022, 18:15
Subversion's mod_dav_svn is vulnerable to memory corruption. While looking up path-based authorization rules, mod_dav_svn servers may attempt to use memory which has already been freed. Affected Subversion mod_dav_svn servers 1.10.0 through 1.14.1 (inclusive). Servers that do not use mod_dav_svn are not affected.Enginsight
| Vendor | Product | Version |
|---|---|---|
| apache | subversion | 1.10.0 ≤ 𝑥 < 1.10.8 |
| apache | subversion | 1.14.0 ≤ 𝑥 < 1.14.2 |
| debian | debian_linux | 10.0 |
| debian | debian_linux | 11.0 |
| apple | macos | 12.0 ≤ 𝑥 < 12.5 |
𝑥
= Vulnerable software versions
Debian Releases
Ubuntu Releases
Common Weakness Enumeration
References