NEWS:
=
See CHANGES (URL below) for more information about the differences
between 1.8.0 and previous Subversion releases.
IMPORTANT: Please read the release notes (URL below) before
upgrading from a previous major release. 1.8 includes a new working
copy format with a manual upgrade
SECURITY:
=
This release fixes two security issues:
CVE-2015-5259:
Remotely triggerable heap overflow and out-of-bounds read caused
by integer overflow in the svn:// protocol parser.
http://subversion.apache.org/security/CVE-2015-5259-advisory.txt
CVE-2015-5343:
Hi Cygwin friends and users,
I released TEST version 2.4.0-0.11 of Cygwin.
So 0.10 was *not* the last test release...
Anyway, compared to 0.10 there's only a single change:
- Fix a potential crash reading invalid passwd and group entries from
/etc/passwd and /etc/group.
Addresses:
