Subject: CVS commit: pkgsrc
From: Adam Ciarcinski
Date: 2024-12-31 18:33:17
Message id: 20241231173317.42674FC1D@cvs.NetBSD.org
Log Message:
subversion: updated to 1.14.5

Apache Subversion 1.14.5. This is a stable bugfix and security release of the
Apache Subversion open source version control system. Among regular bug fixes,
this release fixes CVE-2024-46901: mod_dav_svn denial-of-service via control
characters in paths It has been discovered that the patch for CVE-2013-1968
was incomplete and unintentionally left mod_dav_svn vulnerable to control
characters in filenames. If a path or a revision-property which contains
control characters is committed to a repository then SVN operations served by
mod_dav_svn can be disrupted.
Files:
RevisionActionfile
1.76modifypkgsrc/devel/java-subversion/Makefile
1.138modifypkgsrc/devel/p5-subversion/Makefile
1.110modifypkgsrc/devel/py-subversion/Makefile
1.98modifypkgsrc/devel/ruby-subversion/Makefile
1.91modifypkgsrc/devel/subversion/Makefile.version
1.122modifypkgsrc/devel/subversion/distinfo
1.146modifypkgsrc/devel/subversion-base/Makefile
1.40modifypkgsrc/devel/subversion/files/build-outputs.mk
1.110modifypkgsrc/www/ap2-subversion/Makefile