subversion (1.6.12dfsg-1ubuntu1.3) maverick-security; urgency=low
* SECURITY UPDATE: denial of service via baselined WebDAV resource
request
- debian/patches/CVE-2011-1752.patch: disallow GETs of baselined
versions of resources in subversion/mod_dav_svn/repos.c.
- CVE-2011-1752
* SECURITY UPDATE: mod_dav_svn resource exhaustion via infinite loop
- debian/patches/CVE-2011-1783.patch: validate path in
subversion/libsvn_repos/authz.c.
- CVE-2011-1783
* SECURITY UPDATE: mod_dav_svn permissions bypass via incorrect
resource URL
- debian/patches/CVE-2011-1921.patch: validate path in
subversion/mod_dav_svn/authz.c.
- CVE-2011-1921
Date: Thu, 02 Jun 2011 13:25:34 -0400
Changed-By: Marc Deslauriers <[email protected]>
Maintainer: Ubuntu Developers <[email protected]>
https://launchpad.net/ubuntu/maverick/+source/subversion/1.6.12dfsg-1ubuntu1.3
Format: 1.8
Date: Thu, 02 Jun 2011 13:25:34 -0400
Source: subversion
Binary: subversion libsvn1 libsvn-dev libsvn-doc libapache2-svn
python-subversion python-subversion-dbg subversion-tools libsvn-java
libsvn-perl libsvn-ruby1.8 libsvn-ruby
Architecture: source
Version: 1.6.12dfsg-1ubuntu1.3
Distribution: maverick-security
Urgency: low
Maintainer: Ubuntu Developers <[email protected]>
Changed-By: Marc Deslauriers <[email protected]>
Description:
libapache2-svn - Subversion server modules for Apache
libsvn-dev - Development files for Subversion libraries
libsvn-doc - Developer documentation for libsvn
libsvn-java - Java bindings for Subversion
libsvn-perl - Perl bindings for Subversion
libsvn-ruby - Ruby bindings for Subversion (dummy package)
libsvn-ruby1.8 - Ruby bindings for Subversion
libsvn1 - Shared libraries used by Subversion
python-subversion - Python bindings for Subversion
python-subversion-dbg - Python bindings for Subversion (debug extension)
subversion - Advanced version control system
subversion-tools - Assorted tools related to Subversion
Changes:
subversion (1.6.12dfsg-1ubuntu1.3) maverick-security; urgency=low
.
* SECURITY UPDATE: denial of service via baselined WebDAV resource
request
- debian/patches/CVE-2011-1752.patch: disallow GETs of baselined
versions of resources in subversion/mod_dav_svn/repos.c.
- CVE-2011-1752
* SECURITY UPDATE: mod_dav_svn resource exhaustion via infinite loop
- debian/patches/CVE-2011-1783.patch: validate path in
subversion/libsvn_repos/authz.c.
- CVE-2011-1783
* SECURITY UPDATE: mod_dav_svn permissions bypass via incorrect
resource URL
- debian/patches/CVE-2011-1921.patch: validate path in
subversion/mod_dav_svn/authz.c.
- CVE-2011-1921
Checksums-Sha1:
e0d015c808d3c201d901b6526cd6609e74741023 2690
subversion_1.6.12dfsg-1ubuntu1.3.dsc
af356c1cead12a00913f3700e3f5389b3fce4c66 109087
subversion_1.6.12dfsg-1ubuntu1.3.diff.gz
Checksums-Sha256:
0c52052dfa603b9c9b77e6b92965f25b78fd8f307743a6f4eb2868cb714b05c3 2690
subversion_1.6.12dfsg-1ubuntu1.3.dsc
b19472e945396100ef824501a0f241dbf1d9a40f08f6a24586d511dc3ddc43a6 109087
subversion_1.6.12dfsg-1ubuntu1.3.diff.gz
Files:
53f4726a0d50631fe4f96a9075bfe041 2690 vcs optional
subversion_1.6.12dfsg-1ubuntu1.3.dsc
a13a71137c4668028f746766f18e1bb2 109087 vcs optional
subversion_1.6.12dfsg-1ubuntu1.3.diff.gz
Original-Maintainer: Peter Samuelson <[email protected]>
--
Maverick-changes mailing list
[email protected]
Modify settings or unsubscribe at:
https://lists.ubuntu.com/mailman/listinfo/maverick-changes
