Candidate: CVE-2013-4131
PublicDate: 2013-07-31 13:20:00 UTC
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-4131
 http://subversion.apache.org/security/CVE-2013-4131-advisory.txt
Description:
 The mod_dav_svn Apache HTTPD server module in Subversion 1.7.0 through
 1.7.10 and 1.8.x before 1.8.1 allows remote authenticated users to cause a
 denial of service (assertion failure or out-of-bounds read) via a certain
 (1) COPY, (2) DELETE, or (3) MOVE request against a revision root.
Ubuntu-Description:
Notes:
 mdeslaur> 1.6.x isn't affected
Bugs:
 http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=717794
Priority: medium
Discovered-by: Daniel Shahaf
Assigned-to:
CVSS: 

Patches_subversion:
Tags_subversion: universe-binary
upstream_subversion: released (1.7.11,1.8.1)
lucid_subversion: ignored (reached end-of-life)
precise_subversion: not-affected (1.6.17dfsg-3ubuntu3.3)
quantal_subversion: ignored (reached end-of-life)
raring_subversion: ignored (reached end-of-life)
saucy_subversion: ignored (reached end-of-life)
trusty_subversion: not-affected (1.7.13-2ubuntu2)
trusty/esm_subversion: DNE (trusty was not-affected [1.7.13-2ubuntu2])
devel_subversion: not-affected (1.7.13-2ubuntu2)