漏洞信息详情
Apache Subversion mod_dav_svn空指针解引用漏洞
- CNNVD编号:CNNVD-201106-021
- 危害等级: 中危
- CVE编号: CVE-2011-1752
- 漏洞类型: 代码问题
- 发布时间: 2011-06-07
- 威胁类型: 远程
- 更新时间: 2020-10-09
- 厂 商: apache
- 漏洞来源:
漏洞简介
分布于Apache Subversion 1.6.17之前版本中的Apache HTTP Server的mod_dav_svn模块中存在漏洞。远程攻击者可以借助对基线WebDAV资源的请求导致拒绝服务(空指针解引用和守护程序崩溃)。
漏洞公告
目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:
http://secunia.com/advisories/44681
参考网址
来源:CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple
链接:http://lists.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/archives/security-announce/2012/Feb/msg00000.HTML
来源:SECUNIA
链接:http://secunia.com/advisories/44633
来源:REDHAT
链接:http://www.redhat.com/support/errata/RHSA-2011-0861.HTML
来源:SECUNIA
链接:http://secunia.com/advisories/44888
来源:CONFIRM
链接:http://subversion.apache.org/security/CVE-2011-1752-advisory.txt
来源:REDHAT
链接:http://www.redhat.com/support/errata/RHSA-2011-0862.HTML
来源:CONFIRM
链接:http://svn.apache.org/repos/asf/subversion/tags/1.6.17/CHANGES
来源:SECUNIA
链接:http://secunia.com/advisories/44879
来源:CONFIRM
链接:https://bugzilla.redhat.com/show_bug.cgi?id=709111
来源:SECUNIA
链接:http://secunia.com/advisories/44849
来源:FEDORA
链接:http://lists.fedoraproject.org/pipermail/package-announce/2011-July/062211.HTML
来源:FEDORA
链接:http://lists.fedoraproject.org/pipermail/package-announce/2011-June/061913.HTML
来源:DEBIAN
链接:https://www.debian.org/security/2011/dsa-2251
来源:MANDRIVA
链接:http://www.mandriva.com/security/advisories?name=MDVSA-2011:106
来源:BID
链接:https://www.securityfocus.com/bid/48091
来源:SECUNIA
链接:http://secunia.com/advisories/45162
来源:CONFIRM
链接:http://support.CMS.zone.ci/e/tags/htag.php?tag=Apple target=_blank class=infotextkey>Apple.com/kb/HT5130
来源:SECUNIA
链接:http://secunia.com/advisories/44681
来源:SECTRACK
链接:http://www.securitytracker.com/id?1025617
来源:UBUNTU
链接:http://www.ubuntu.com/usn/USN-1144-1
来源:OVAL
链接:https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A18922
受影响实体
- Apache Subversion:1.0.4
- Apache Subversion:1.0.5
- Apache Subversion:1.0.2
- Apache Subversion:1.0.3
- Apache Subversion:1.0.0
补丁
- Apache Subversion mod_dav_svn空指针解引用漏洞的修复措施
评论