unblock subversion/1.6.12dfsg-2

To: debian-release@lists.debian.org
Subject: unblock subversion/1.6.12dfsg-2
From: Peter Samuelson <peter@p12n.org>
Date: Fri, 1 Oct 2010 13:59:46 -0500
Message-id: <[🔎] 20101001185946.GE2758@p12n.org>

unblock subversion/1.6.12dfsg-2

Dependencies appear to all be in squeeze already.

  * patches/cve-2010-3315: New patch for CVE-2010-3315, whereby, in rare
    configurations, mod_dav_svn could give too much access to authorized
    users.
  * control: Update Vcs-* fields, Homepage, Policy to 3.9.1 (no changes),
    tweak python version declaration (Closes: #587853).

The CVE patch is a one-liner.  The impact is low enough that I haven't
decided whether it's worth an upload to lenny security.  It does not
affect our default or suggested configuration.

    http://subversion.apache.org/security/CVE-2010-3315-advisory.txt

The second change is trivial and was already pending.  Functionally, it
adds a Python-Version header to one package, as documented in the
Python policy.  I think this falls under 'documentation'.
-- 
Peter Samuelson | org-tld!p12n!peter | http://p12n.org/

Reply to:

Follow-Ups:
- Re: unblock subversion/1.6.12dfsg-2
  - From: "Felipe Augusto van de Wiel (faw)" <faw@funlabs.org>

Prev by Date: Re: [Pkg-xen-devel] pv-grub removed ?
Next by Date: Re: [Pkg-xen-devel] Bug#588839: pv-grub removed ?
Previous by thread: Re: NDOutils in squeeze
Next by thread: Re: unblock subversion/1.6.12dfsg-2
Index(es):
- Date
- Thread