subversion (1.6.12dfsg-1ubuntu1.1) maverick-security; urgency=low
* SECURITY UPDATE: restriction bypass via named repo as a rule scope
- debian/patches/CVE-2010-3315.patch: use repo_basename in
subversion/mod_dav_svn/authz.c.
- CVE-2010-3315
* SECURITY UPDATE: denial of service via SVNParentPath walking
- debian/patches/CVE-2010-4539.patch: don't try and walk SVNParentPath
collection in subversion/mod_dav_svn/repos.c.
- CVE-2010-4539
* SECURITY UPDATE: denial of service via -g memory leaks
- debian/patches/CVE-2010-4644.patch: improve logic in
subversion/libsvn_repos/rev_hunt.c.
- CVE-2010-4644
Date: Fri, 14 Jan 2011 12:25:49 -0600
Changed-By: Marc Deslauriers <[email protected]>
Maintainer: Ubuntu Developers <[email protected]>
https://launchpad.net/ubuntu/maverick/+source/subversion/1.6.12dfsg-1ubuntu1.1
Format: 1.8
Date: Fri, 14 Jan 2011 12:25:49 -0600
Source: subversion
Binary: subversion libsvn1 libsvn-dev libsvn-doc libapache2-svn
python-subversion python-subversion-dbg subversion-tools libsvn-java
libsvn-perl libsvn-ruby1.8 libsvn-ruby
Architecture: source
Version: 1.6.12dfsg-1ubuntu1.1
Distribution: maverick-security
Urgency: low
Maintainer: Ubuntu Developers <[email protected]>
Changed-By: Marc Deslauriers <[email protected]>
Description:
libapache2-svn - Subversion server modules for Apache
libsvn-dev - Development files for Subversion libraries
libsvn-doc - Developer documentation for libsvn
libsvn-java - Java bindings for Subversion
libsvn-perl - Perl bindings for Subversion
libsvn-ruby - Ruby bindings for Subversion (dummy package)
libsvn-ruby1.8 - Ruby bindings for Subversion
libsvn1 - Shared libraries used by Subversion
python-subversion - Python bindings for Subversion
python-subversion-dbg - Python bindings for Subversion (debug extension)
subversion - Advanced version control system
subversion-tools - Assorted tools related to Subversion
Changes:
subversion (1.6.12dfsg-1ubuntu1.1) maverick-security; urgency=low
.
* SECURITY UPDATE: restriction bypass via named repo as a rule scope
- debian/patches/CVE-2010-3315.patch: use repo_basename in
subversion/mod_dav_svn/authz.c.
- CVE-2010-3315
* SECURITY UPDATE: denial of service via SVNParentPath walking
- debian/patches/CVE-2010-4539.patch: don't try and walk SVNParentPath
collection in subversion/mod_dav_svn/repos.c.
- CVE-2010-4539
* SECURITY UPDATE: denial of service via -g memory leaks
- debian/patches/CVE-2010-4644.patch: improve logic in
subversion/libsvn_repos/rev_hunt.c.
- CVE-2010-4644
Checksums-Sha1:
ad83a2cd47df65dccebf8aceaf5a40c9bba02228 2690
subversion_1.6.12dfsg-1ubuntu1.1.dsc
0c4e2d5ffc4fa874e211c6773b3629f56e8aae6d 107675
subversion_1.6.12dfsg-1ubuntu1.1.diff.gz
Checksums-Sha256:
7c34613fe793eeb6d8f9b43180c58aff5cc2629b356fab9dbdd1037e25e8fc38 2690
subversion_1.6.12dfsg-1ubuntu1.1.dsc
fc7f85de49003609fc8ab692f064ae927b0d58f00890780a014ef2ea011bc3a9 107675
subversion_1.6.12dfsg-1ubuntu1.1.diff.gz
Files:
372a74a9e774f0af4352793b7bb83ee0 2690 vcs optional
subversion_1.6.12dfsg-1ubuntu1.1.dsc
549f00a8d2d401ccb4dfd0d59bdef88c 107675 vcs optional
subversion_1.6.12dfsg-1ubuntu1.1.diff.gz
Original-Maintainer: Peter Samuelson <[email protected]>
--
Maverick-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/maverick-changes
