CVE Published: 17/03/2021 |
CVE Updated: 04/08/2024 |
CVE Year: 2020 Source: apache |
Vendor: Apache Software Foundation |
Product: Apache Subversion Status : PUBLISHED
CVE-2020-17525 Description
Subversion\'s mod_authz_svn module will crash if the server is using in-repository authz rules with the AuthzSVNReposRelativeAccessFile option and a client sends a request for a non-existing repository URL. This can lead to disruption for users of the service. This issue was fixed in mod_dav_svn+mod_authz_svn servers 1.14.1 and mod_dav_svn+mod_authz_svn servers 1.10.7