CVE-2022-24070

Published: Apr 12, 2022Modified: Jun 17, 2026

7.5

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Subversion's mod_dav_svn is vulnerable to memory corruption. While looking up path-based authorization rules, mod_dav_svn servers may attempt to use memory which has already been freed. Affected Subversion mod_dav_svn servers 1.10.0 through 1.14.1 (inclusive). Servers that do not use mod_dav_svn are not affected.

Affected (7)

Products: Apache: Subversion · Debian: Debian Linux · Fedoraproject: Fedora · +1 more

Show all products

Apache: Subversion · Debian: Debian Linux · Fedoraproject: Fedora · Apple: Macos

1 product

1 product

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Apache Subversion	From 1.10.0 to 1.10.8
Apache Subversion	From 1.14.0 to 1.14.2

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Debian Debian Linux	Version 10.0
Debian Debian Linux	Version 11.0

Configuration C

2 vulnerable

Vulnerable Software	Affected Versions
Fedoraproject Fedora	Version 35
Fedoraproject Fedora	Version 36

Configuration D

1 vulnerable

Vulnerable Software	Affected Versions
Apple Macos	From 12.0 to 12.5

Related CWEs

The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (16)

http://seclists.org/fulldisclosure/2022/Jul/18

Source: security@apache.org

Mailing ListThird Party Advisory

https://bz.apache.org/bugzilla/show_bug.cgi?id=65861

Source: security@apache.org

Issue TrackingVendor Advisory

https://cwiki.apache.org/confluence/display/HTTPD/ModuleLife

Source: security@apache.org

Vendor Advisory

https://issues.apache.org/jira/browse/SVN-4880

Source: security@apache.org

Issue TrackingVendor Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PZ4ARNGLMGYBKYDX2B7DRBNMF6EH3A6R/

Source: security@apache.org

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YJPMCWCGWBN3QWCDVILWQWPC75RR67LT/

Source: security@apache.org

https://support.apple.com/kb/HT213345

Source: security@apache.org

Third Party Advisory

https://www.debian.org/security/2022/dsa-5119

Source: security@apache.org

Third Party Advisory

http://seclists.org/fulldisclosure/2022/Jul/18

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing ListThird Party Advisory

https://bz.apache.org/bugzilla/show_bug.cgi?id=65861

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingVendor Advisory

https://cwiki.apache.org/confluence/display/HTTPD/ModuleLife

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

https://issues.apache.org/jira/browse/SVN-4880

Source: af854a3a-2127-422b-91ae-364da2661108

Issue TrackingVendor Advisory

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PZ4ARNGLMGYBKYDX2B7DRBNMF6EH3A6R/

Source: af854a3a-2127-422b-91ae-364da2661108

https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YJPMCWCGWBN3QWCDVILWQWPC75RR67LT/

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.apple.com/kb/HT213345

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

https://www.debian.org/security/2022/dsa-5119

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party Advisory

Timeline

No history available yet.