pkgsrc.se | The NetBSD package collection

./www/ap2-subversion, WebDAV server (Apache module) for Subversion

[ CVSweb ] [ Homepage ] [ RSS ] [ Required by ] [ Add to tracker ]

Branch: CURRENT, Version: 1.14.5nb1, Package name: ap24-subversion-1.14.5nb1, Maintainer: pkgsrc-users

The goal of the Subversion project is to build a version control system that
is a compelling replacement for CVS in the open source community. The software
is released under an Apache/BSD-style open source license.

This package contains the mod_dav_svn Apache2 module, which implements
a sub-set of WebDAV DeltaV; it is the server back-end for Subversion's
'ra_dav' repository access mechanism. The server for the 'ra_svn'
access mechanism is included in the subversion package.

One of the long-term goals of mod_dav_svn is to provide a complete
implementation of WebDAV and DeltaV, so that other WebDAV clients
(such as Microsoft Office) can use a Subversion repository.

Required to run:
[www/serf] [devel/subversion-base] [www/apache24] [archivers/lz4] [converters/utf8proc]

Required to build:
[pkgtools/cwrappers]

Package options: serf

Master sites:

Filesize: 8472.026 KB

Version history: (Expand)

(2025-04-23) Updated to version: ap24-subversion-1.14.5nb1
(2024-12-31) Updated to version: ap24-subversion-1.14.5
(2024-11-15) Updated to version: ap24-subversion-1.14.4nb3
(2024-11-01) Updated to version: ap24-subversion-1.14.4nb2
(2024-11-01) Updated to version: ap24-subversion-1.14.4nb1
(2024-10-10) Updated to version: ap24-subversion-1.14.4

CVS history: (Expand)

2025-04-17 23:53:13 by Thomas Klausner | Files touched by this commit (2449)

Log message:
*: recursive bump for icu 77 and libxml2 2.14

2024-12-31 18:33:17 by Adam Ciarcinski | Files touched by this commit (9) | Package updated

Log message:
subversion: updated to 1.14.5

Apache Subversion 1.14.5. This is a stable bugfix and security release of the
Apache Subversion open source version control system. Among regular bug fixes,
this release fixes CVE-2024-46901: mod_dav_svn denial-of-service via control
characters in paths It has been discovered that the patch for CVE-2013-1968
was incomplete and unintentionally left mod_dav_svn vulnerable to control
characters in filenames. If a path or a revision-property which contains
control characters is committed to a repository then SVN operations served by
mod_dav_svn can be disrupted.

2024-11-14 23:22:33 by Thomas Klausner | Files touched by this commit (2428)

Log message:
*: recursive bump for icu 76 shlib major version bump

2024-11-01 13:55:19 by Thomas Klausner | Files touched by this commit (2425)

Log message:
*: revbump for icu downgrade

2024-11-01 01:54:33 by Thomas Klausner | Files touched by this commit (2426)

Log message:
*: recursive bump for icu 76.1 shlib bump

2024-10-09 23:15:43 by Benny Siegert | Files touched by this commit (9) | Package updated

Log message:
subversion: update to 1.14.4

This is a security release but the issue is Windows-only AFAICT.

This is a stable bugfix and security release of the Apache Subversion
open source version control system.

Among regular bug fixes, this release fixes CVE-2024-45720:

   Subversion command line argument injection on Windows platforms

   On Windows platforms, a "best fit" character encoding conversion of
   command line arguments to Subversion's executables (e.g., svn.exe,
   etc.) may lead to unexpected command line argument interpretation,
   including argument injection and execution of other programs, if a
   specially crafted command line argument string is processed.

   UNIX-like platforms are not affected.

   Reported by:
   Orange Tsai and splitline from DEVCORE Research Team

   Full advisory:
   https://subversion.apache.org/security/CVE-2024-45720-advisory.txt
   https://subversion.apache.org/security/CVE-2024-45720-advisory.txt.asc

2024-05-29 18:35:19 by Adam Ciarcinski | Files touched by this commit (1928) | Package updated

Log message:
revbump after icu and protobuf updates

2023-12-29 12:30:53 by Adam Ciarcinski | Files touched by this commit (11) | Package updated

Log message:
subversion: updated to 1.14.3

Version 1.14.3

User-visible changes:
 - Client-side bugfixes:
   * Fix svn:mergeinfo diff parser bug when parsing forward merges
   * Fix redirected URL handling with file externals

 - Server-side bugfixes:
   (none)

Developer-visible changes:
   * swig-rb: Fix uses of 'File.exist?', deprecated since Ruby 2.1
   * Build: Fix uses of deprecated Python APIs
   * Build: Retain ability to build SWIG Python 2 bindings
   * Fix reading WC lock status with svn_wc_status2_t
   * JavaHL: Add @Deprecated to silence compiler warnings
   * JavaHL: Fix crash in case of null message in getMessage
   * Fix build breakage of release tarballs by installed swig
   * Add regression test for issue 4711 "invalid xml file"
   * swig-py: Fix building with SWIG 4.1.0
   * Makefile.in: Fix cleaning of __pycache__ dirs and *.pyc
   * swig-py: Avoid deprecated options to SWIG >= 4.1.0
   * swig-py: Use sysconfig to allow building with Python 3.12
   * INSTALL: Document not to use SVN with APR 1.7.3 on Windows
   * Fix test suite broken by syntax error when --enable-sasl
   * swig-py: Improve error when no external diff
   * autogen.sh: Fix building when Python is not named "python"