subversion: unrestricted XML entity expansion in mod_dontdothat and Subversion clients using http(s):// (CVE-2016-8734)
Subversion’s mod_dontdothat module and clients using http(s):// are
vulnerable to a denial-of-service attack caused by exponential
XML entity expansion. The attack, otherwise known as the “billion laughs
attack”, targets XML parsers and can cause the targeted process
to consume an excessive amount of CPU resources or memory.
Fixed In Version:
subversion 1.8.17, subversion 1.9.5
Reference:
https://subversion.apache.org/security/CVE-2016-8734-advisory.txt
(from redmine: issue id 6647, created on 2017-01-09, closed on 2017-01-16)
- Relations:
- child #6648 (closed)
- child #6649 (closed)
- child #6650 (closed)