VIR Vulnerability Intelligence Relay

CVE-2015-5259

high
Published 2016-01-08 · Modified 2026-05-06
CVSS v3
8.6
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
CVSS v2
9.0
VIR risk
8.6

Description

Integer overflow in the read_string function in libsvn_ra_svn/marshal.c in Apache Subversion 1.9.x before 1.9.3 allows remote attackers to execute arbitrary code via an svn:// protocol string, which triggers a heap-based buffer overflow and an out-of-bounds read.

Predictions

Exploit likelihood
91%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: debian — https://security-tracker.debian.org/tracker/CVE-2015-5259

vendor Authored 2026-05-27

Vendor advisory: secalert@redhat.com — http://subversion.apache.org/security/CVE-2015-5259-advisory.txt

vendor Authored 2026-05-27

Vendor advisory: suse — https://www.suse.com/security/cve/CVE-2015-5259.html

OS impact
OSVersionStatusFixed in
suse slesaffected
debian debianbookwormfixed1.9.3-1
debian debianbullseyefixed1.9.3-1
debian debianforkyfixed1.9.3-1
debian debiansidfixed1.9.3-1
debian debiantrixiefixed1.9.3-1

Application impact
VendorProductVersionsFixed
apache apachesubversion1.9.0
apache apachesubversion1.9.1
apache apachesubversion1.9.2

References

CWEs

CWE-119 CWE-189

Verify integrity in audit chain (admin only). AS-IS.