Accepted cvs 1:1.12.5-1 (i386 source)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.7
Date: Fri, 02 Jan 2004 19:39:02 +0000
Source: cvs
Binary: cvs
Architecture: source i386
Version: 1:1.12.5-1
Distribution: unstable
Urgency: high
Maintainer: Steve McIntyre <93sam@debian.org>
Changed-By: Steve McIntyre <93sam@debian.org>
Description:
cvs - Concurrent Versions System
Closes: 219325 219950 221914 223655 224737
Changes:
cvs (1:1.12.5-1) unstable; urgency=high
.
* New upstream release:
+ Fix for potential security hole with no known exploits: previous
versions of cvs could attempt to create files and directories in
the filesystem root. Closes: #223655, #221914.
+ Fix for another potential security hole: don't allow pserver to
run as root.
+ Usage of the deprecated -l option now generates a warning from the
server, rather than an error. Closes: #219950, #224737.
+ Support for case-insensitivity in clients removed. Please see the
NEWS file before panicking about this!
* Included the upstream FAQ in the package. Closes: #219325.
Files:
23cc97f663e85ddcfbe197a718825ce9 693 devel optional cvs_1.12.5-1.dsc
b18fe63baff96da50669c2c686ed7fac 2365404 devel optional cvs_1.12.5.orig.tar.gz
e808d6e104062f94111418f0b65a60b6 46683 devel optional cvs_1.12.5-1.diff.gz
d792971ae25f3266b15f61793fb1f040 1369826 devel optional cvs_1.12.5-1_i386.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
iD8DBQE/9dXOfDt5cIjHwfcRAggEAJ4/aObRP0XGHN0f44+Z3YqLYmTt/QCdE82t
klsvBSWPmHOzxPJpQ2sGPF0=
=LL+E
-----END PGP SIGNATURE-----
Accepted:
cvs_1.12.5-1.diff.gz
to pool/main/c/cvs/cvs_1.12.5-1.diff.gz
cvs_1.12.5-1.dsc
to pool/main/c/cvs/cvs_1.12.5-1.dsc
cvs_1.12.5-1_i386.deb
to pool/main/c/cvs/cvs_1.12.5-1_i386.deb
cvs_1.12.5.orig.tar.gz
to pool/main/c/cvs/cvs_1.12.5.orig.tar.gz
Reply to: