Vulnerability Description
Multiple integer overflows in the libsvn_delta library in Subversion before 1.5.7, and 1.6.x before 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via an svndiff stream with large windows that trigger a heap-based buffer overflow, a related issue to CVE-2009-2412.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Subversion | Subversion | <= 1.5.6 |
Related Weaknesses (CWE)
References
- http://archives.neohapsis.com/archives/bugtraq/2009-08/0056.html
- http://lists.apple.com/archives/security-announce/2009/Nov/msg00000.html
- http://osvdb.org/56856
- http://secunia.com/advisories/36184Vendor Advisory
- http://secunia.com/advisories/36224
- http://secunia.com/advisories/36232
- http://secunia.com/advisories/36257
- http://secunia.com/advisories/36262
- http://subversion.tigris.org/security/CVE-2009-2411-advisory.txt
- http://support.apple.com/kb/HT3937
- http://svn.collab.net/repos/svn/tags/1.5.7/CHANGES
- http://svn.collab.net/repos/svn/tags/1.6.4/CHANGES
- http://svn.haxx.se/dev/archive-2009-08/0107.shtml
- http://svn.haxx.se/dev/archive-2009-08/0108.shtml
- http://svn.haxx.se/dev/archive-2009-08/0110.shtml
FAQ
What is CVE-2009-2411?
CVE-2009-2411 is a vulnerability with a CVSS score of 8.5 (HIGH). Multiple integer overflows in the libsvn_delta library in Subversion before 1.5.7, and 1.6.x before 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via ...
How severe is CVE-2009-2411?
CVE-2009-2411 has been rated HIGH with a CVSS base score of 8.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-2411?
Check the references section above for vendor advisories and patch information. Affected products include: Subversion Subversion.