Accepted viewvc 1.1.5-1.3 (source all)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Format: 1.8
Date: Sun, 14 Oct 2012 20:12:07 +0000
Source: viewvc
Binary: viewvc viewvc-query
Architecture: source all
Version: 1.1.5-1.3
Distribution: unstable
Urgency: low
Maintainer: David Martínez Moreno <ender@debian.org>
Changed-By: Thijs Kinkhorst <thijs@debian.org>
Description:
viewvc - web interface for CVS and/or Subversion repositories
viewvc-query - utility to query CVS and Subversion commit database
Closes: 671482 679069
Changes:
viewvc (1.1.5-1.3) unstable; urgency=low
.
* Non-maintainer upload.
.
[ gregor herrmann ]
* [SECURITY] Fix "CVE-2012-3356 / CVE-2012-3357":
- CVE-2012-3356: * security fix: complete authz support for remote SVN views
- CVE-2012-3357: * security fix: log msg leak in SVN revision view with
unreadable copy source
Add patches "CVE-2012-3356" and "CVE-2012-3357", taken from upstream svn.
(Closes: #679069)
.
[ Ben Hutchings ]
* view_query: No longer allow an undocumented URL parameter to
override the admin-declared SQL row limit, which could result
in excessive CPU usage and memory consumption (CVE-2009-5024)
(Closes: #671482)
Checksums-Sha1:
e8f722eefbd046db5cccc86ea358d7efb9122765 1462 viewvc_1.1.5-1.3.dsc
0408927320d2c8683ce9562d677f9c3bdf2243ee 29835 viewvc_1.1.5-1.3.diff.gz
f8196929e603705c989753737d5ef4e26bf523e6 606516 viewvc_1.1.5-1.3_all.deb
e334694ab1bd10908665c91ddafbdc72a9fd0c2f 12114 viewvc-query_1.1.5-1.3_all.deb
Checksums-Sha256:
411e3a36179603b5a097cbb6570a52b659ea131fd63d3b0406cecf04c8926eba 1462 viewvc_1.1.5-1.3.dsc
76e0f4201958c59f262c9b02a32ab7932f45a420e53536668b0b10d6116501e7 29835 viewvc_1.1.5-1.3.diff.gz
7dbe4d488d0e4c9bc8d6a53e7ed0e6586dca6a526ecf4873a26b399adbfc415c 606516 viewvc_1.1.5-1.3_all.deb
834d341965ffe1029e78a913b373de0a39de40eea6a84d87645da26b64f7ff68 12114 viewvc-query_1.1.5-1.3_all.deb
Files:
3cdd704b2a03a593a04c08c86733ddc0 1462 vcs optional viewvc_1.1.5-1.3.dsc
aa2e3704af494f107351a7a0a2662200 29835 vcs optional viewvc_1.1.5-1.3.diff.gz
6604f55ee46ad534b98f12caa37d0f84 606516 vcs optional viewvc_1.1.5-1.3_all.deb
78df85ec268919b90f9ab845ec434d98 12114 vcs optional viewvc-query_1.1.5-1.3_all.deb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.12 (GNU/Linux)
iQEcBAEBAgAGBQJQex37AAoJEFb2GnlAHawEZFwH/22cGocgU2vTgoD4OAdILy6U
MFhaS+r6D1WR/NQ+i7odr+5vczdfFZwDrAnDgarXnQbb4BQwhGxxtOQmwpc32bBM
/Zv6MiXFblD77JbUZCbhbYm2N+dWId4b1zU+GAaxdaN0tOCwOF2K4ZhfC5q0BbRa
0ZS6L+g5HbCdW63YuLap3kJkzNrwzxLNZwDdVOmk86Lp/zFThBdYqv4aYkMFHDh5
fXGj9YknStYiQF7scNEOG9C6l9yZxWyM0Gheh6ybcAk8bC2das+R/rFTFl3aIp4O
3UsgQFkJ9Al4MHewb8dZM0b/Dtvum45DUd0nsLEXqUiutRCkfAI8t1uSi9Ju4as=
=UJzW
-----END PGP SIGNATURE-----
Reply to: