185 lines
15 KiB
XML
185 lines
15 KiB
XML
<?xml version="1.0" encoding="UTF-8"?>
|
|
<cvrfdoc xmlns="http://www.icasi.org/CVRF/schema/cvrf/1.1" xmlns:cvrf="http://www.icasi.org/CVRF/schema/cvrf/1.1">
|
|
<DocumentTitle xml:lang="en">An update for subversion is now available for openEuler-20.03-LTS-SP1, openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS</DocumentTitle>
|
|
<DocumentType>Security Advisory</DocumentType>
|
|
<DocumentPublisher Type="Vendor">
|
|
<ContactDetails>openeuler-security@openeuler.org</ContactDetails>
|
|
<IssuingAuthority>openEuler security committee</IssuingAuthority>
|
|
</DocumentPublisher>
|
|
<DocumentTracking>
|
|
<Identification>
|
|
<ID>openEuler-SA-2022-1647</ID>
|
|
</Identification>
|
|
<Status>Final</Status>
|
|
<Version>1.0</Version>
|
|
<RevisionHistory>
|
|
<Revision>
|
|
<Number>1.0</Number>
|
|
<Date>2022-05-11</Date>
|
|
<Description>Initial</Description>
|
|
</Revision>
|
|
</RevisionHistory>
|
|
<InitialReleaseDate>2022-05-11</InitialReleaseDate>
|
|
<CurrentReleaseDate>2022-05-11</CurrentReleaseDate>
|
|
<Generator>
|
|
<Engine>openEuler SA Tool V1.0</Engine>
|
|
<Date>2022-05-11</Date>
|
|
</Generator>
|
|
</DocumentTracking>
|
|
<DocumentNotes>
|
|
<Note Title="Synopsis" Type="General" Ordinal="1" xml:lang="en">subversion security update</Note>
|
|
<Note Title="Summary" Type="General" Ordinal="2" xml:lang="en">An update for subversion is now available for openEuler-20.03-LTS-SP1, openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS.</Note>
|
|
<Note Title="Description" Type="General" Ordinal="3" xml:lang="en">Subversion exists to be universally recognized and adopted as an open-source, centralized version control system characterized by its reliability as a safe haven for valuable data; the simplicity of its model and usage; and its ability to support the needs of a wide variety of users and projects, from individuals to large-scale enterprise operations.
|
|
|
|
Security Fix(es):
|
|
|
|
Apache Subversion SVN authz protected copyfrom paths regression Subversion servers reveal copyfrom paths that should be hidden according to configured path-based authorization (authz) rules. When a node has been copied from a protected location, users with access to the copy can see the copyfrom path of the original. This also reveals the fact that the node was copied. Only the copyfrom path is revealed; not its contents. Both httpd and svnserve servers are vulnerable.(CVE-2021-28544)
|
|
|
|
Subversion s mod_dav_svn is vulnerable to memory corruption. While looking up path-based authorization rules, mod_dav_svn servers may attempt to use memory which has already been freed. Affected Subversion mod_dav_svn servers 1.10.0 through 1.14.1 (inclusive). Servers that do not use mod_dav_svn are not affected.(CVE-2022-24070)</Note>
|
|
<Note Title="Topic" Type="General" Ordinal="4" xml:lang="en">An update for subversion is now available for openEuler-20.03-LTS-SP1, openEuler-20.03-LTS-SP3 and openEuler-22.03-LTS.
|
|
|
|
openEuler Security has rated this update as having a security impact of high. A Common Vunlnerability Scoring System(CVSS)base score,which gives a detailed severity rating, is available for each vulnerability from the CVElink(s) in the References section.</Note>
|
|
<Note Title="Severity" Type="General" Ordinal="5" xml:lang="en">High</Note>
|
|
<Note Title="Affected Component" Type="General" Ordinal="6" xml:lang="en">subversion</Note>
|
|
</DocumentNotes>
|
|
<DocumentReferences>
|
|
<Reference Type="Self">
|
|
<URL>https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1647</URL>
|
|
</Reference>
|
|
<Reference Type="openEuler CVE">
|
|
<URL>https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2021-28544</URL>
|
|
<URL>https://www.openeuler.org/en/security/cve/detail.html?id=CVE-2022-24070</URL>
|
|
</Reference>
|
|
<Reference Type="Other">
|
|
<URL>https://nvd.nist.gov/vuln/detail/CVE-2021-28544</URL>
|
|
<URL>https://nvd.nist.gov/vuln/detail/CVE-2022-24070</URL>
|
|
</Reference>
|
|
</DocumentReferences>
|
|
<ProductTree xmlns="http://www.icasi.org/CVRF/schema/prod/1.1">
|
|
<Branch Type="Product Name" Name="openEuler">
|
|
<FullProductName ProductID="openEuler-20.03-LTS-SP1" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">openEuler-20.03-LTS-SP1</FullProductName>
|
|
<FullProductName ProductID="openEuler-20.03-LTS-SP3" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">openEuler-20.03-LTS-SP3</FullProductName>
|
|
<FullProductName ProductID="openEuler-22.03-LTS" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">openEuler-22.03-LTS</FullProductName>
|
|
</Branch>
|
|
<Branch Type="Package Arch" Name="aarch64">
|
|
<FullProductName ProductID="perl-subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">perl-subversion-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="python3-subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">python3-subversion-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="ruby-subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">ruby-subversion-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">subversion-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-debuginfo-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">subversion-debuginfo-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-debugsource-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">subversion-debugsource-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-devel-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">subversion-devel-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="perl-subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">perl-subversion-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="python3-subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">python3-subversion-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="ruby-subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">ruby-subversion-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">subversion-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-debuginfo-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">subversion-debuginfo-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-debugsource-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">subversion-debugsource-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-devel-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">subversion-devel-1.12.2-4.oe1.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="perl-subversion-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">perl-subversion-1.14.1-2.oe2203.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="python3-subversion-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">python3-subversion-1.14.1-2.oe2203.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="ruby-subversion-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">ruby-subversion-1.14.1-2.oe2203.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">subversion-1.14.1-2.oe2203.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-debuginfo-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">subversion-debuginfo-1.14.1-2.oe2203.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-debugsource-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">subversion-debugsource-1.14.1-2.oe2203.aarch64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-devel-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">subversion-devel-1.14.1-2.oe2203.aarch64.rpm</FullProductName>
|
|
</Branch>
|
|
<Branch Type="Package Arch" Name="noarch">
|
|
<FullProductName ProductID="subversion-help-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">subversion-help-1.12.2-4.oe1.noarch.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-help-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">subversion-help-1.12.2-4.oe1.noarch.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-help-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">subversion-help-1.14.1-2.oe2203.noarch.rpm</FullProductName>
|
|
</Branch>
|
|
<Branch Type="Package Arch" Name="src">
|
|
<FullProductName ProductID="subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">subversion-1.12.2-4.oe1.src.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">subversion-1.12.2-4.oe1.src.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">subversion-1.14.1-2.oe2203.src.rpm</FullProductName>
|
|
</Branch>
|
|
<Branch Type="Package Arch" Name="x86_64">
|
|
<FullProductName ProductID="perl-subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">perl-subversion-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="python3-subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">python3-subversion-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="ruby-subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">ruby-subversion-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">subversion-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-debuginfo-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">subversion-debuginfo-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-debugsource-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">subversion-debugsource-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-devel-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP1">subversion-devel-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="perl-subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">perl-subversion-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="python3-subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">python3-subversion-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="ruby-subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">ruby-subversion-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">subversion-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-debuginfo-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">subversion-debuginfo-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-debugsource-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">subversion-debugsource-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-devel-1.12.2-4" CPE="cpe:/a:openEuler:openEuler:20.03-LTS-SP3">subversion-devel-1.12.2-4.oe1.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="perl-subversion-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">perl-subversion-1.14.1-2.oe2203.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="python3-subversion-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">python3-subversion-1.14.1-2.oe2203.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="ruby-subversion-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">ruby-subversion-1.14.1-2.oe2203.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">subversion-1.14.1-2.oe2203.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-debuginfo-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">subversion-debuginfo-1.14.1-2.oe2203.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-debugsource-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">subversion-debugsource-1.14.1-2.oe2203.x86_64.rpm</FullProductName>
|
|
<FullProductName ProductID="subversion-devel-1.14.1-2" CPE="cpe:/a:openEuler:openEuler:22.03-LTS">subversion-devel-1.14.1-2.oe2203.x86_64.rpm</FullProductName>
|
|
</Branch>
|
|
</ProductTree>
|
|
<Vulnerability Ordinal="1" xmlns="http://www.icasi.org/CVRF/schema/vuln/1.1">
|
|
<Notes>
|
|
<Note Title="Vulnerability Description" Type="General" Ordinal="1" xml:lang="en">Apache Subversion SVN authz protected copyfrom paths regression Subversion servers reveal copyfrom paths that should be hidden according to configured path-based authorization (authz) rules. When a node has been copied from a protected location, users with access to the copy can see the copyfrom path of the original. This also reveals the fact that the node was copied. Only the copyfrom path is revealed; not its contents. Both httpd and svnserve servers are vulnerable.</Note>
|
|
</Notes>
|
|
<ReleaseDate>2022-05-11</ReleaseDate>
|
|
<CVE>CVE-2021-28544</CVE>
|
|
<ProductStatuses>
|
|
<Status Type="Fixed">
|
|
<ProductID>openEuler-20.03-LTS-SP1</ProductID>
|
|
<ProductID>openEuler-20.03-LTS-SP3</ProductID>
|
|
<ProductID>openEuler-22.03-LTS</ProductID>
|
|
</Status>
|
|
</ProductStatuses>
|
|
<Threats>
|
|
<Threat Type="Impact">
|
|
<Description>Medium</Description>
|
|
</Threat>
|
|
</Threats>
|
|
<CVSSScoreSets>
|
|
<ScoreSet>
|
|
<BaseScore>4.3</BaseScore>
|
|
<Vector>AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N</Vector>
|
|
</ScoreSet>
|
|
</CVSSScoreSets>
|
|
<Remediations>
|
|
<Remediation Type="Vendor Fix">
|
|
<Description>subversion security update</Description>
|
|
<DATE>2022-05-11</DATE>
|
|
<URL>https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1647</URL>
|
|
</Remediation>
|
|
</Remediations>
|
|
</Vulnerability>
|
|
<Vulnerability Ordinal="2" xmlns="http://www.icasi.org/CVRF/schema/vuln/1.1">
|
|
<Notes>
|
|
<Note Title="Vulnerability Description" Type="General" Ordinal="2" xml:lang="en">Subversion s mod_dav_svn is vulnerable to memory corruption. While looking up path-based authorization rules, mod_dav_svn servers may attempt to use memory which has already been freed. Affected Subversion mod_dav_svn servers 1.10.0 through 1.14.1 (inclusive). Servers that do not use mod_dav_svn are not affected.</Note>
|
|
</Notes>
|
|
<ReleaseDate>2022-05-11</ReleaseDate>
|
|
<CVE>CVE-2022-24070</CVE>
|
|
<ProductStatuses>
|
|
<Status Type="Fixed">
|
|
<ProductID>openEuler-20.03-LTS-SP1</ProductID>
|
|
<ProductID>openEuler-20.03-LTS-SP3</ProductID>
|
|
<ProductID>openEuler-22.03-LTS</ProductID>
|
|
</Status>
|
|
</ProductStatuses>
|
|
<Threats>
|
|
<Threat Type="Impact">
|
|
<Description>High</Description>
|
|
</Threat>
|
|
</Threats>
|
|
<CVSSScoreSets>
|
|
<ScoreSet>
|
|
<BaseScore>7.5</BaseScore>
|
|
<Vector>AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H</Vector>
|
|
</ScoreSet>
|
|
</CVSSScoreSets>
|
|
<Remediations>
|
|
<Remediation Type="Vendor Fix">
|
|
<Description>subversion security update</Description>
|
|
<DATE>2022-05-11</DATE>
|
|
<URL>https://www.openeuler.org/en/security/safety-bulletin/detail.html?id=openEuler-SA-2022-1647</URL>
|
|
</Remediation>
|
|
</Remediations>
|
|
</Vulnerability>
|
|
</cvrfdoc> |