ports/opt (3.1): [notify] subversion: updated to 1.8.5

crux at crux.nu crux at crux.nu
Sun Jan 19 21:05:40 UTC 2014


commit db934dff5aaa7928d1fbaeda1b1e4f58f60539f7
Author: Jose V Beneyto <sepen at crux.nu>
Date:   Tue Nov 26 12:18:06 2013 +0100

    [notify] subversion: updated to 1.8.5
    
    This release addresses two security issues:
        CVE-2013-4505: mod_dontdothat does not restrict requests from serf clients.
        CVE-2013-4558: mod_dav_svn assertion triggered by autoversioning commits.
    
    More information on these vulnerabilities, including the relevant
    advisories and potential attack vectors and workarounds, can be found
    on the Subversion security website:
        http://subversion.apache.org/security/
    
    For a complete list of changes, please see:
        http://svn.apache.org/repos/asf/subversion/tags/1.8.5/CHANGES

diff --git a/subversion/.md5sum b/subversion/.md5sum
index a450f78..fc6335c 100644
--- a/subversion/.md5sum
+++ b/subversion/.md5sum
@@ -1 +1 @@
-a73a5caad3c442fe88e1f9c0e794d212  subversion-1.8.4.tar.bz2
+77349caf0ef5a612c9718c53516a9934  subversion-1.8.5.tar.bz2
diff --git a/subversion/Pkgfile b/subversion/Pkgfile
index 81ab3cb..aae48d0 100644
--- a/subversion/Pkgfile
+++ b/subversion/Pkgfile
@@ -5,7 +5,7 @@
 # Depends on: apr serf expat sqlite3
 
 name=subversion
-version=1.8.4
+version=1.8.5
 release=1
 source=(http://www.apache.org/dist/$name/$name-$version.tar.bz2)
 



More information about the CRUX mailing list