C. Michael Pilat

**Name of the Vulnerable Software and Affected Versions** Apache Subversion versions 1.5.x through 1.5.7 Apache Subversion versions 1.6.x through 1.6.12 **Description** The issue allows remote authenticated users to bypass intended access restrictions via svn commands, due to improper handling of a named repository as a rule scope in the mod dav svn module when SVNPathAuthz short circuit is enabled. **Recommendations** For Apache Subversion versions 1.5.x through 1.5.7, update to version 1.5.8 or later. For Apache Subversion versions 1.6.x through 1.6.12, update to version 1.6.13 or later.