CVE-2016-2167

Published: May 5, 2016Modified: May 6, 2026

6.8

Vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:N

Exploitability: 1.6 / Impact: 5.2

Source: NVD

Description

The canonicalize_username function in svnserve/cyrus_auth.c in Apache Subversion before 1.8.16 and 1.9.x before 1.9.4, when Cyrus SASL authentication is used, allows remote attackers to authenticate and bypass intended access restrictions via a realm string that is a prefix of an expected repository realm string.

Affected (5)

Products: Apache: Subversion

1 product

Configuration A

5 vulnerable

Vulnerable Software	Affected Versions
Apache Subversion	Up to 1.8.15
Apache Subversion	Version 1.9.0
Apache Subversion	Version 1.9.1
Apache Subversion	Version 1.9.2
Apache Subversion	Version 1.9.3

Related CWEs

Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (24)

http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html

Source: secalert@redhat.com

http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html

Source: secalert@redhat.com

http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA%40mail.gmail.com%3E

Source: secalert@redhat.com

http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ%40mail.gmail.com%3E

Source: secalert@redhat.com

http://subversion.apache.org/security/CVE-2016-2167-advisory.txt

Source: secalert@redhat.com

Vendor Advisory

http://www.debian.org/security/2016/dsa-3561

Source: secalert@redhat.com

http://www.securityfocus.com/bid/89417

Source: secalert@redhat.com

http://www.securitytracker.com/id/1035706

Source: secalert@redhat.com

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.417496

Source: secalert@redhat.com

https://security.gentoo.org/glsa/201610-05

Source: secalert@redhat.com

https://www.oracle.com/security-alerts/cpuoct2020.html

Source: secalert@redhat.com

http://lists.fedoraproject.org/pipermail/package-announce/2016-May/184545.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2016-05/msg00043.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://lists.opensuse.org/opensuse-updates/2016-05/msg00044.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgJet+7_MAhomFVOXPgLtewcUw9w=k9zdPCkq5tvPxVMA%40mail.gmail.com%3E

Source: af854a3a-2127-422b-91ae-364da2661108

http://mail-archives.apache.org/mod_mbox/subversion-announce/201604.mbox/%3CCAP_GPNgfn1iKueW51EpmXzXi_URNfGNofZSgOyW1_jnSeNm5DQ%40mail.gmail.com%3E

Source: af854a3a-2127-422b-91ae-364da2661108

http://subversion.apache.org/security/CVE-2016-2167-advisory.txt

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.debian.org/security/2016/dsa-3561

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/89417

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id/1035706

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.slackware.com/security/viewer.php?l=slackware-security&y=2016&m=slackware-security.417496

Source: af854a3a-2127-422b-91ae-364da2661108

https://security.gentoo.org/glsa/201610-05

Source: af854a3a-2127-422b-91ae-364da2661108

https://www.oracle.com/security-alerts/cpuoct2020.html

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.