CVE ID: CVE-2010-3315 Description: - The in the module for the Apache HTTP Server, as distributed in Apache Subversion 1.5.x before 1.5.8 and 1.6.x before 1.6.13, when is enabled, does not properly handle a named repository as a rule scope. This allows remote authenticated users to bypass intended access restrictions via commands. References: - DSA-2118-1 Vulnerable and Fixed Packages: - is fixed in various releases with versions: - : 1.14.1-3+deb11u1, 1.14.1-3+deb11u2 - : 1.14.2+deb12u1 - : 1.14.5-3 - : 1.14.5-4 Fixed Versions: - For source: - : 1.5.1dfsg1-5 with origin DSA-2118-1 - : 1.6.12dfsg-2 with low urgency