Red Hat Bugzilla – Bug 640317
CVE-2010-3315 Subversion: Access restriction bypass by checkout of the root of the repository
Last modified: 2015-07-29 09:02:59 EDT
Common Vulnerabilities and Exposures assigned an identifier CVE-2010-3315 to
the following vulnerability:
authz.c in the mod_dav_svn module for the Apache HTTP Server, as
distributed in Apache Subversion 1.5.x before 1.5.8 and 1.6.x before
1.6.13, when SVNPathAuthz short_circuit is enabled, does not properly
handle a named repository as a rule scope, which allows remote
authenticated users to bypass intended access restrictions via svn
This issue did NOT affect the versions of the subversion package,
as shipped with Red Hat Enterprise Linux 4 and 5.
This issue affects the versions of the subversion package, as shipped
with Fedora release of 12 and 13.
Created attachment 451684 [details]
Local copy of upstream CVE-2010-3315 advisory
Doesn't this affect the version of subversion included in RHEL 6? The package's changelog suggests this hasn't been fixed.
Created subversion tracking bugs for this issue
Affects: fedora-all [bug 672680]
Links to the upstream fix, and the bug in the issue tracker:
(In reply to comment #6)
> Doesn't this affect the version of subversion included in RHEL 6? The package's
> changelog suggests this hasn't been fixed.
It does affect RHEL6. We are currently working on updates that will resolve this issue.
This issue has been addressed in following products:
Red Hat Enterprise Linux 6
Via RHSA-2011:0258 https://rhn.redhat.com/errata/RHSA-2011-0258.html