CVE-2013-1847

The mod_dav_svn Apache HTTPD server module in Subversion 1.6.0 through 1.6.20 and 1.7.0 through 1.7.8 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via an anonymous LOCK for a URL that does not exist.

Date published : 2013-05-02

http://subversion.apache.org/security/CVE-2013-1847-advisory.txt

https://bugzilla.redhat.com/show_bug.cgi?id=929090