Ubuntu

“subversion” 1.6.17dfsg-3ubuntu3.3 source package in Ubuntu

Changelog

subversion (1.6.17dfsg-3ubuntu3.3) precise-security; urgency=low

  * SECURITY UPDATE: denial of service in mod_dav_svn
    - debian/patches/CVE-2013-1845.patch: handle multiple calls in
      subversion/mod_dav_svn/dav_svn.h, subversion/mod_dav_svn/deadprops.c.
    - CVE-2013-1845
  * SECURITY UPDATE: denial of service in mod_dav_svn via LOCK
    - debian/patches/CVE-2013-1846_1847.patch: properly validate locks in
      subversion/mod_dav_svn/lock.c.
    - CVE-2013-1846
    - CVE-2013-1847
  * SECURITY UPDATE: denial of service in mod_dav_svn via PROPFIND
    - debian/patches/CVE-2013-1849.patch: validate type in
      subversion/mod_dav_svn/liveprops.c.
    - CVE-2013-1849
  * SECURITY UPDATE: repo corruption via newline chars in filenames
    - debian/patches/CVE-2013-1968.patch: properly escape paths in
      subversion/libsvn_fs_fs/tree.c, added test to
      subversion/tests/libsvn_fs/fs-test.c.
    - CVE-2013-1968
  * SECURITY UPDATE: denial of service via closed connection
    - debian/patches/CVE-2013-2112.patch: check for closed connections in
      subversion/svnserve/main.c.
    - CVE-2013-2112
  * Fix FTBFS from test suite failure because of APR hash ordering change:
    - debian/patches/fix_apr_ftbfs.patch: ignore ordering in
      subversion/bindings/swig/python/tests/repository.py,
      subversion/bindings/swig/python/tests/trac/versioncontrol/tests/svn_fs.py,
      subversion/bindings/swig/python/tests/wc.py,
      subversion/bindings/swig/ruby/test/test_client.rb,
      subversion/bindings/swig/ruby/test/test_wc.rb,
      subversion/tests/cmdline/stat_tests.py,
      subversion/tests/cmdline/svnlook_tests.py,
      subversion/tests/cmdline/svntest/actions.py,
      subversion/tests/cmdline/svntest/verify.py,
      subversion/tests/cmdline/switch_tests.py,
      subversion/tests/cmdline/diff_tests.py,
      subversion/tests/cmdline/svnsync_tests.py,
      subversion/tests/cmdline/update_tests.py,
      subversion/tests/cmdline/svnadmin_tests.py,
      disable test in subversion/bindings/swig/ruby/test/test_repos.rb,
      disable diff_repos_wc_add_with_props test in
      subversion/tests/cmdline/diff_tests.py.
 -- Marc Deslauriers <email address hidden>   Wed, 26 Jun 2013 15:19:45 -0400

Upload details

Uploaded by:
Marc Deslauriers on 2013-06-26
Uploaded to:
Precise
Original maintainer:
Ubuntu Developers
Component:
main
Architectures:
any all
Section:
vcs
Urgency:
Low Urgency

See full publishing history Publishing

Series Pocket Published Component Section
Precise updates on 2013-06-27 main devel
Precise security on 2013-06-27 main devel

Downloads

File Size MD5 Checksum
subversion_1.6.17dfsg.orig.tar.gz 7.4 MiB 2bb85bcf6f1fb1ccec11dc2b4c89463b
subversion_1.6.17dfsg-3ubuntu3.3.diff.gz 120.7 KiB 73f4eabeae84492994284c326e1ca9b4
subversion_1.6.17dfsg-3ubuntu3.3.dsc 3.1 KiB e7d93cff35adcd671ea3f764ed89a50b

Binary packages built by this source

libapache2-svn: Subversion server modules for Apache

 This package provides the mod_dav_svn and mod_authz_svn modules for
 the Apache 2.2 web server. These modules provide Subversion's WebDAV
 server backend, to serve repositories over the http and https
 protocols. See the 'subversion' package for more information.

libsvn-dev: Development files for Subversion libraries

 This package contains the symlinks, headers, and object files needed
 to compile and link programs which use libsvn1, the Subversion
 libraries. This package is needed only in order to compile software
 that uses libsvn1.

libsvn-doc: Developer documentation for libsvn

 This package contains development (API) documentation for libsvn1, the
 Subversion libraries. See the 'libsvn1' package for more information.

libsvn-java: Java bindings for Subversion

 This is a set of Java classes which provide the functionality of
 libsvn, the Subversion libraries. It is useful if you want to, for
 example, write a Java class that manipulates a Subversion repository
 or working copy. See the 'subversion' package for more information.

libsvn-perl: Perl bindings for Subversion

 This is a set of Perl interfaces to libsvn, the Subversion libraries.
 It is useful if you want to, for example, write a Perl script that
 manipulates a Subversion repository or working copy. See the
 'subversion' package for more information.

libsvn-ruby: Ruby bindings for Subversion (dummy package)

 This is a dummy package to install the Subversion library bindings for
 the default version of Ruby.

libsvn-ruby1.8: Ruby bindings for Subversion

 This is a set of Ruby interfaces to libsvn, the Subversion libraries.
 It is useful if you want to, for example, write a Ruby script that
 manipulates a Subversion repository or working copy. See the
 'subversion' package for more information.

libsvn1: Shared libraries used by Subversion

 This package includes shared libraries to manipulate Subversion (svn)
 repositories and working copies. See the 'subversion' package for
 more information.

python-subversion: Python bindings for Subversion

 This is a set of Python interfaces to libsvn, the Subversion
 libraries. It is useful if you want to, for example, write a Python
 script that manipulates a Subversion repository or working copy. See
 the 'subversion' package for more information.

python-subversion-dbg: Python bindings for Subversion (debug extension)

 This is a set of Python interfaces to libsvn, the Subversion
 libraries. It is useful if you want to, for example, write a Python
 script that manipulates a Subversion repository or working copy. See
 the 'subversion' package for more information.
 .
 This package contains the extension built for the python debug interpreter.

subversion: Advanced version control system

 Subversion, also known as svn, is a version control system much like
 the Concurrent Versions System (CVS). Version control systems allow
 many individuals (who may be distributed geographically) to
 collaborate on a set of files (typically source code). Subversion has
 all the major features of CVS, plus certain new features that CVS
 users often wish they had.
 .
 This package includes the Subversion client (svn), tools to create a
 Subversion repository (svnadmin) and to make a repository available
 over a network (svnserve).

subversion-tools: Assorted tools related to Subversion

 This package includes miscellaneous tools for use with Subversion
 clients and servers:
  * svn-backup-dumps: Incremental dumpfile-based backup script
  * svn-bisect: Bisect revisions to find a regression
  * svn-clean: Remove unversioned files from a working copy
  * svn-fast-backup: rsync-based backup script for FSFS repositories
  * svn-hot-backup: Backup script, primarily for BDB repositories
  * svn_apply_autoprops: Apply property settings from
    .subversion/config file to an existing repository
  * svn_load_dirs: Sophisticated replacement for 'svn import'
  * svn2cl: Generate GNU-style changelog from repository history
  * svnmerge: Maintain merge history between two related branches
    (mostly obsolete as of Subversion 1.5)
  * svnwrap: Set umask to 002 before calling svn or svnserve
  * several example hook scripts: commit-access-control, commit-email,
    log-police, mailer, svnperms, verify-po
 .
 NOTE that some of these scripts are unsupported by upstream, and may
 change radically or disappear in future releases. The Recommended
 packages are each required by at least one of these scripts.