commit patchinfo.3339 for openSUSE:12.3:Update

Mon, 29 Dec 2014 07:27:06 -0800 

Hello community,

here is the log from the commit of package patchinfo.3339 for 
openSUSE:12.3:Update checked in at 2014-12-29 16:26:26
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:12.3:Update/patchinfo.3339 (Old)
 and      /work/SRC/openSUSE:12.3:Update/.patchinfo.3339.new (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "patchinfo.3339"

Changes:
--------
New Changes file:

NO CHANGES FILE!!!

New:
----
  _patchinfo

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ _patchinfo ++++++
<patchinfo incident="3339">
  <issue id="909935" tracker="bnc">VUL-0: CVE-2014-3580, CVE-2014-8108: 
subversion: remotely triggerable segfault DoS vulnerabilities</issue>
  <issue id="CVE-2014-8108" tracker="cve" />
  <issue id="CVE-2014-3580" tracker="cve" />
  <category>security</category>
  <rating>moderate</rating>
  <packager>AndreasStieger</packager>
  <description>This Apache Subversion update fixes the following security and 
non 
security issues.

- Apache Subversion 1.8.11
- This release addresses two security issues: [boo#909935]
  * CVE-2014-3580: mod_dav_svn DoS from invalid REPORT requests.
  * CVE-2014-8108: mod_dav_svn DoS from use of invalid transaction
    names.
- Client-side bugfixes:
  * checkout/update: fix file externals failing to follow history
    and subsequently silently failing
  * patch: don't skip targets in valid --git difs
  * diff: make property output in diffs stable
  * diff: fix diff of local copied directory with props
  * diff: fix changelist filter for repos-WC and WC-WC
  * remove broken conflict resolver menu options that always error
    out
  * improve gpg-agent support
  * fix crash in eclipse IDE with GNOME Keyring
  * fix externals shadowing a versioned directory
  * fix problems working on unix file systems that don't support
    permissions
  * upgrade: keep external registrations
  * cleanup: iprove performance of recorded timestamp fixups
  * translation updates for German
- Server-side bugfixes:
  * disable revprop caching feature due to cache invalidation
    problems
  * skip generating uniquifiers if rep-sharing is not supported
  * mod_dav_svn: reject requests with missing repository paths
  * mod_dav_svn: reject requests with invalid virtual transaction
    names
  * mod_dav_svn: avoid unneeded memory growth in resource walking
</description>
  <summary>Security update for subversion</summary>
</patchinfo>
-- 
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Reply via email to