CVE-2004-0397

Publication date 7 July 2004

Last updated 24 July 2024

Ubuntu priority

Stack-based buffer overflow during the apr_time_t data conversion in Subversion 1.0.2 and earlier allows remote attackers to execute arbitrary code via a (1) DAV2 REPORT query or (2) get-dated-rev svn-protocol command.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
subversion	7.04 feisty	Fixed 1.3.1-3ubuntu1
	6.10 edgy	Fixed 1.3.1-3ubuntu1
	6.06 LTS dapper	Fixed 1.3.1-3ubuntu1

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2004-0397