Launchpad CVE tracker

CVE 2009-2411

Multiple integer overflows in the libsvn_delta library in Subversion before 1.5.7, and 1.6.x before 1.6.4, allow remote authenticated users and remote Subversion servers to execute arbitrary code via an svndiff stream with large windows that trigger a heap-based buffer overflow, a related issue to CVE-2009-2412.

Related bugs and status

CVE-2009-2411 (Candidate) is related to these bugs:

Bug #301632: [Hardy] Update kernel to Linux 2.6.24.5

Summary				In	Importance	Status
	301632	[Hardy] Update kernel to Linux 2.6.24.5		linux (Ubuntu)	Undecided	Invalid
	301632	[Hardy] Update kernel to Linux 2.6.24.5		linux (Ubuntu Hardy)	High	Fix Released

Bug #406245: Merge subversion 1.6.5dfsg-1 (main) from Debian unstable (main).

Summary				In	Importance	Status
	406245	Merge subversion 1.6.5dfsg-1 (main) from Debian unstable (main).		subversion (Ubuntu)	Medium	Fix Released

Bug #411849: Please backport security fix for USN-812-1 in subversion 1.5

Summary				In	Importance	Status
	411849	Please backport security fix for USN-812-1 in subversion 1.5		Hardy Backports	Undecided	Fix Released

Bug #413113: SubversionException: ('Svndiff contains a too-large window', 185001)

Summary				In	Importance	Status
	413113	SubversionException: ('Svndiff contains a too-large window', 185001)		Bazaar Subversion Plugin	High	Invalid
	413113	SubversionException: ('Svndiff contains a too-large window', 185001)		subvertpy	High	Fix Released

See the

CVE page on Mitre.org for more details.

Launchpad.net

CVE 2009-2411

References