Next | Query returned 203 messages, browsing 1 to 10 | Previous

History of commit frequency

CVS Commit History:


   2021-07-21 16:40:32 by Takahiro Kambe | Files touched by this commit (29) | Package updated
Log message:
Bump PKGREVISION for affected packages by changing default Ruby's version.
   2021-05-24 21:56:06 by Thomas Klausner | Files touched by this commit (3575)
Log message:
*: recursive bump for perl 5.34
   2021-02-14 16:09:20 by Adam Ciarcinski | Files touched by this commit (9) | Package updated
Log message:
subversion: updated to 1.14.1

Subversion 1.14.1.

This is a stable bugfix and security release of the Apache Subversion
open source version control system.

THIS RELEASE CONTAINS AN IMPORTANT SECURITY FIX:

  CVE-2020-17525
  "Remote unauthenticated denial-of-service in Subversion mod_authz_svn"

The full security advisory for CVE-2020-17525 is available at:
  https://subversion.apache.org/security/ … visory.txt

A brief summary of this advisory follows:

  Subversion's mod_authz_svn module will crash if the server is using
  in-repository authz rules with the AuthzSVNReposRelativeAccessFile
  option and a client sends a request for a non-existing repository URL.

  This can lead to disruption for users of the service.

  We recommend all users to upgrade to the 1.10.7 or 1.14.1 release
  of the Subversion mod_dav_svn server.

  As a workaround, the use of in-repository authz rules files with
  the AuthzSVNReposRelativeAccessFile can be avoided by switching
  to an alternative configuration which fetches an authz rules file
  from the server's filesystem, rather than from an SVN repository.
   2020-07-27 22:48:53 by Adam Ciarcinski | Files touched by this commit (10) | Package updated
Log message:
subversion: updated to 1.14.0

What's New in Apache Subversion 1.14

Support for Python 3.x
Support for Python 2.7 is being phased out
New Build-Time Dependency: py3c
Many enhancements and bug fixes
   2020-03-14 15:13:02 by Tobias Nygren | Files touched by this commit (1)
Log message:
subversion: skip portability checks for unused files
   2020-02-24 17:10:34 by Adam Ciarcinski | Files touched by this commit (11) | Package updated
Log message:
subversion: updated to 1.13.0

Version 1.13.0

User-visible changes:
- Minor new features and improvements:
  * New 'svnadmin rev-size' command to report revision size
  * In 'svn help', hide experimental commands and global options
  * Add a hint about mod_dav_svn misconfiguration
  * Performance improvement for 'svn st' etc., in WC SQLite DB

- Client-side bugfixes:
  * Windows: avoid delays in SSL certificate validation override
  * Fix 'svn patch' setting mode 0600 on patched files with props
  * Fix "svn diff --changelist ARG" broken in subdirectories
  * Fix misleading 'redirect cycle' error on a non-repository URL

- Server-side bugfixes:
  * svnserve: Report some errors that we previously ignored
  * Make server code more resilient to malformed paths and URLs
  * Make dump stream parser more resilient to malformed dump stream
  * mod_dav_svn: Fix missing Last-Modified header on 'external' GET requests

- Client-side and server-side bugfixes:
  * Fix excessive memory usage in some cases reading binary data
  * Win32: fix svn_io_file_rename2() spinning in a retry loop

- Other tool improvements and bugfixes:
  * svn_load_dirs.pl: do not show password; fix cleanup

Developer-visible changes:
  * New svn_fs_ioctl() API for FSFS stats, dump/load index, rev-size

Version 1.12.2

User-visible changes:
  * Fix conflict resolver bug: local and incoming edits swapped.
  * Fix memory lifetime problem in a libsvn_wc error code path.
  * Faster Windows file existence checks, improving 'svn st' etc.

Developer-visible changes:
  * Allow generating Visual Studio 2019 projects
  * Fix build with APR 1.7.0.
  * Fix building Subversion with Visual Studio 2005 and 2008.
  * Allow svnserve's 'get-deleted-rev' API to return 'not deleted'.

Version 1.12.1
(Not released; see changes for 1.12.2.)
   2020-01-19 00:36:14 by Roland Illig | Files touched by this commit (3046)
Log message:
all: migrate several HOMEPAGEs to https

pkglint --only "https instead of http" -r -F

With manual adjustments afterwards since pkglint 19.4.4 fixed a few
indentations in unrelated lines.

This mainly affects projects hosted at SourceForce, as well as
freedesktop.org, CTAN and GNU.
   2019-12-15 16:38:59 by Takahiro Kambe | Files touched by this commit (12) | Package updated
Log message:
Bump PKGREVISION by change of default Ruby version

Bump PKGREVISION by change of default Ruby version from 2.4.x to 2.6.x.
These packages are depends on Ruby in some ways.
   2019-07-03 12:42:54 by Mark Davies | Files touched by this commit (3)
Log message:
subversion: more reliable fix for APR 1.7.0

From: Stefan Sperling <stsp@apache.org>
Date: Fri, 12 Apr 2019 09:27:33 +0000
Subject: [PATCH] Get rid of apr_int64_t format string check in swig py
 configure.

This check relied on APR implementation details and broke with APR 1.7.0.
Rather than trying to guess a perfect format string to use, just use the
largest possible format and cast the argument accordingly.

Should fix build against APR 1.7.0 and later.

Suggested by: brane

* build/ac-macros/swig.m4: Remove code related to SVN_APR_INT64_T_PYCFMT.

* subversion/bindings/swig/python/libsvn_swig_py/swigutil_py.c
  (svn_swig_py_client_blame_receiver_func): Stop relying on the
   SVN_APR_INT64_T_PYCFMT constant from configure. Use "L" and
   acast to PY_LONG_LONG instead.
   2019-05-27 18:10:08 by Ryo ONODERA | Files touched by this commit (13) | Package updated
Log message:
Update to 1.12.0

Changelog:
Version 1.12.0
(12 Apr 2019, from /branches/1.12.x)
https://svn.apache.org/repos/asf/subversion/tags/1.12.0

 User-visible changes:
  - Major new features:

  - Minor new features and improvements:
    * 'move vs. move' merge conflicts can now be resolved (r1846851, r1851913)
    * 'svn --version --verbose' shows loaded libraries on Linux (r1843774)
    * 'svnrdump' can read/write a file instead of stdin/stdout (r1844906)
    * 'svn list' tries to not truncate the author's name (r1847384 et al.)
    * 'svn list' can show sizes in base-2 unit suffixes (r1847384 et al.)
    * 'svn info' shows the size of files in the repository (r1847441 et al.)
    * 'svn cleanup' can remove read-only directories (#4806, r1854072 et al.)

  - Client-side bugfixes:
    * Repos-to-WC copy with --parents works with absent target (r1843888)
    * Repos-to-WC copy from foreign repo with peg/operative revs (#4785)

  - Server-side bugfixes:
    * Ignore empty group definitions in authz files (#4802, r1851687)

  - Client-side and server-side bugfixes:

  - Other tool improvements and bugfixes:
    * svnauthz: warn about empty groups in authz files (#4803, r1851823)
    * Storing passwords in plain text on disk is disabled by default (r1845377)

 Developer-visible changes:
  - General:
    * Updated the required libtool version to 2.x (r1845716)
    * get-deps.sh: Remove references to Googlemock and Googletest (r1849200)
    * All C++ code is compiled in C++11 mode by default (r1849202)

  - Bindings:
    * JavaHL: Fixed potential core dump in ISVNClient.diff (r1845408)
    * JavaHL: Let clients decode file contents from ISVNClient.blame (r1851333)

Version 1.11.1
(11 Jan 2019, from /branches/1.11.x)
http://svn.apache.org/repos/asf/subversion/tags/1.11.1

 User-visible changes:
  - Minor new features and improvements:
    * Conflict resolver support for added vs unversioned file (r1845577)
    * Conflict resolver support for unversioned directories (r1846299)
    * Improve help for 'svn add' and the '-N' option (r1842814 et al.)
    * Improve display of Mac OS name in 'svn --version --verbose' (r1842334)

  - Client-side bugfixes:
    * Fix: repos-to-WC copy with --parents doesn't create dirs (#4768)
    * Fix: foreign repo copy with peg/operative revisions (#4785)
    * Fix: foreign repo copy of file adding mergeinfo (#4792)
    * Fix: assertion failure using -rPREV on a working copy at r0 (#4532)
    * Fix: tree conflict message ends a sentence with a colon (#4717)

  - Server-side bugfixes:
    * Fix CVE-2018-11803: malicious SVN clients can crash mod_dav_svn
    * Fix: unexpected SVN_ERR_FS_NOT_DIRECTORY errors (#4791)
    * Fix: mod_dav_svn's SVNUseUTF8 had no effect in some setups (r1844882)
    * Fix crash in mod_http2 (#4782)

  - Other tool improvements and bugfixes:
    * svndumpfilter: Clarify error messages by including node path (r1845261)

  - Bindings bugfixes:
    * JavaHL: Fix crash in client code when using external diff (r1845408)

 Developer-visible changes:
  - General:
    * Fix build on systems without python in $PATH (r1845555)
    * Fix compiler warnings about indentation (r1845556 et al.)

  - API changes:
    (none)

Version 1.11.0
(30 Oct 2018, from /branches/1.11.x)
http://svn.apache.org/repos/asf/subversion/tags/1.11.0

 User-visible changes:
  - Major new features:
    * Shelving is no longer based on patch files (experimental) (issue #3625)
    * Checkpointing (experimental) (issue #3626)
    * Viewspec output command (experimental) (issue #4753)

  - Minor new features and improvements:
    * Improvements to tree conflict resolution (issue #4694 #4766 ...)
    * 'patch' can now read non-pretty-printed svn:mergeinfo diffs (r1822151)
    * Better error when http:// URL is not a Subversion repository (r1825302)
    * Add 'schedule' and 'depth' items to 'svn info --show-item' (r1827032)
    * Allow the client cert password to be saved (r1836762)

  - Client-side bugfixes:
    * Fix a crash in a repo:WC summary diff of a local copy (r1835218)
    * Fix double diff headers (r1836746)
    * Tree conflict resolver: avoid endless scan in some cases (r1839662)

  - Server-side bugfixes:
    * svnadmin dump shouldn't canonicalize svn:date (issue #4767)
    * 'svnadmin verify --keep-going --quiet' shows an error summary (r1837790)
    * Let 'svnadmin recover' prune the rep-cache even if disabled (r1838813)

  - Client-side and server-side bugfixes:
    * Fix pattern-matching of top level path in listing with search (r1830599)
    * Allow commands like 'svn ci --file X' to work when X is a FIFO (r1836306)

  - Other tool improvements and bugfixes:
    * tools/client-side/bash_completion: Add '--password-from-stdin' (r1820045)

 Developer-visible changes:
  - General:
    * new tool: tools/dist/edit-N-log-messages (r1819207)
    * tools/dev/unix-build/Makefile.svn: various fixes
    * Expose the diff option 'pretty_print_mergeinfo' in APIs (r1822014)
    * In 'revert' APIs, choose whether to delete schedule-add nodes (r1822534)

  - Bindings:
    * Fix Python binding fs.FileDiff behaviour with python-future (r1823802)
    * Fix Python unit test, fs.SubversionFSTestCase, on Windows (r1824410)
    * Bump minimum JDK version required for JavaHL to 1.8 (r1831895)
    * Enable building against Java 10 (r1841180 et al)
    * Fix a potential crash in JavaHL (issue #4764)

Next | Query returned 203 messages, browsing 1 to 10 | Previous