Subject: CVS commit: pkgsrc
From: Adam Ciarcinski
Date: 2015-12-18 18:49:06
Message id: 20151218174906.DB2F6FB88@cvs.NetBSD.org

Log Message:
Changes 1.9.3:

This release fixes two security issues:

    CVE-2015-5259:
    Remotely triggerable heap overflow and out-of-bounds read caused by
    integer overflow in the svn:// protocol parser.
    http://subversion.apache.org/security/C … visory.txt

    CVE-2015-5343:
    Remotely triggerable heap overflow and out-of-bounds read in mod_dav_svn
    caused by integer overflow when parsing skel-encoded request bodies.
    http://subversion.apache.org/security/C … visory.txt

Files:
RevisionActionfile
1.34modifypkgsrc/devel/java-subversion/Makefile
1.89modifypkgsrc/devel/p5-subversion/Makefile
1.67modifypkgsrc/devel/py-subversion/Makefile
1.56modifypkgsrc/devel/ruby-subversion/Makefile
1.76modifypkgsrc/devel/subversion/Makefile.version
1.103modifypkgsrc/devel/subversion/distinfo
1.100modifypkgsrc/devel/subversion-base/Makefile
1.32modifypkgsrc/devel/subversion/files/build-outputs.mk
1.73modifypkgsrc/www/ap2-subversion/Makefile