CVE-2013-4131

Name of the Vulnerable Software and Affected Versions Subversion versions 1.7.0 through 1.7.10 Subversion versions 1.8.x before 1.8.1

Description The issue allows remote authenticated users to cause a denial of service, potentially resulting in an assertion failure or out-of-bounds read. This can be achieved by sending a certain request against a revision root, specifically via COPY, DELETE, or MOVE requests.

Recommendations For Subversion versions 1.7.0 through 1.7.10, update to a version outside of this range to resolve the issue. For Subversion versions 1.8.x before 1.8.1, update to version 1.8.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the mod dav svn Apache HTTPD server module until a patch is available.