CVE-2013-1968
subversion - several
EPSS 1.2%
Description
Subversion before 1.6.23 and 1.7.x before 1.7.10 allows remote authenticated users to cause a denial of service (FSFS repository corruption) via a newline character in a file name.
How to fix CVE-2013-1968
To remediate CVE-2013-1968, upgrade the affected package to a fixed version below.
- Debian/subversion—upgrade to 1.7.9-1+nmu2 or later
- Debian/subversion—upgrade to 1.6.12dfsg-7 or later
Is CVE-2013-1968 being exploited?
Low — EPSS is 1.2%, meaning exploitation activity has not been observed at scale.
Affected packages (2)
- from 0, < 1.7.9-1+nmu2
- from 0, < 1.6.12dfsg-7