This update includes the latest stable release of Apache Subversion, version 1.8.11. Two security issues in mod_dav_svn are addressed in this release (CVE-2014-8108, CVE-2014-3580). For more details, see:
http://subversion.apache.org/security/CVE-2014-8108-advisory.txt http://subversion.apache.org/security/CVE-2014-3580-advisory.txt
Client-side bugfixes: checkout/update: fix file externals failing to follow history and subsequently silently failing http://subversion.tigris.org/issues/show_bug.cgi?id=4185 patch: don't skip targets in valid --git difs diff: make property output in diffs stable diff: fix diff of local copied directory with props diff: fix changelist filter for repos-WC and WC-WC remove broken conflict resolver menu options that always error out improve gpg-agent support fix crash in eclipse IDE with GNOME Keyring http://subversion.tigris.org/issues/show_bug.cgi?id=3498 fix externals shadowing a versioned directory http://subversion.tigris.org/issues/show_bug.cgi?id=4085 fix problems working on unix file systems that don't support permissions upgrade: keep external registrations http://subversion.tigris.org/issues/show_bug.cgi?id=4519 cleanup: iprove performance of recorded timestamp fixups * translation updates for German
Server-side bugfixes: disable revprop caching feature due to cache invalidation problems skip generating uniquifiers if rep-sharing is not supported mod_dav_svn: reject requests with missing repository paths mod_dav_svn: reject requests with invalid virtual transaction names * mod_dav_svn: avoid unneeded memory growth in resource walking http://subversion.tigris.org/issues/show_bug.cgi?id=4531
Please login to add feedback.
| submitted | 4 years ago |
| in testing | 4 years ago |
| in stable | 4 years ago |
| modified | 4 years ago |
| 0 | 0 | #1155670 svn fails to start with libserf 1.2.1 requires: libserf 1.3.4 |
| 0 | 0 | #1174054 CVE-2014-3580 subversion: NULL pointer dereference flaw in mod_dav_svn when handling REPORT requests |
| 0 | 0 | #1174057 CVE-2014-8108 subversion: NULL pointer dereference flaw in mod_dav_svn when handling URIs for virtual transaction names |
| 0 | 0 | #1174521 CVE-2014-8108 CVE-2014-3580 subversion: various flaws [fedora-all] |
jorton
This update has been submitted for testing by jorton.
jorton has edited this update. New build(s): subversion-1.8.11-1.fc20.
Taskotron: depcheck test PASSED on i386. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/21694/steps/runtask/logs/stdio (results are informative only)
Taskotron: depcheck test PASSED on x86_64. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/21694/steps/runtask/logs/stdio (results are informative only)
This update is currently being pushed to the Fedora 21 testing updates repository.
This update has been pushed to testing
This update has reached 7 days in testing and can be pushed to stable now if the maintainer wishes
This update has been submitted for stable by jorton.
Taskotron: upgradepath test PASSED on noarch. Result log: https://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/25259/steps/runtask/logs/stdio (results are informative only)
This update is currently being pushed to the Fedora 21 stable updates repository.
This update has been pushed to stable