VDB

GCVE-110-MAGEIA-2017-273

GCVE-110-MAGEIA-2017-273
Advisory Published
Vulnetix · Advisory published August 16, 2017
A Subversion client sometimes connects to URLs provided by the repository. A maliciously constructed svn+ssh:// URL would cause Subversion clients to run an arbitrary shell command. Such a URL could be generated by a malicious server, by a malicious user committing to an honest server (to attack another user of that server's repositories), or by a proxy server (CVE-2017-9800).

Affected Products

VendorProductVersionsPlatforms
Mageiasubversion0 (affected), 1.9.7-1.mga6 (unaffected)
Mageiasubversion1.8.19-1.mga5 (unaffected), 0 (affected)

Browse GCVE Records

73,442 records in the GCVE database · Updated July 17, 2026

No matching records found.

Explore Further

Investigate this vulnerability in the interactive console or download the raw GCVE record.

$ Console Community · 100/wk Open console ›