FEDORA-2017-c629f16f6c

security update in Fedora 25 for subversion

Status: stable 2 years ago

This update includes the latest stable release of Apache Subversion, version 1.9.5.

Client-side bugfixes:

  • fix accessing non-existent paths during reintegrate merge
  • fix handling of newly secured subdirectories in working copy
  • info: remove trailing whitespace in --show-item=revision (issue 4660)
  • fix recording wrong revisions for tree conflicts
  • gpg-agent: improve discovery of gpg-agent sockets
  • gpg-agent: fix file descriptor leak
  • resolve: fix --accept=mine-full for binary files (issue 4647)
  • merge: fix possible crash (issue 4652)
  • resolve: fix possible crash
  • fix potential crash in Win32 crash reporter

Server-side bugfixes:

  • fsfs: fix "offset too large" error during pack (issue 4657)
  • svnserve: enable hook script environments
  • fsfs: fix possible data reconstruction error (issue 4658)
  • fix source of spurious 'incoming edit' tree conflicts
  • fsfs: improve caching for large directories
  • fsfs: fix crash when encountering all-zero checksums
  • fsfs: fix potential source of repository corruptions
  • mod_dav_svn: fix excessive memory usage with mod_headers/mod_deflate (issue 3084)
  • mod_dav_svn: reduce memory usage during GET requests
  • fsfs: fix unexpected "database is locked" errors
  • fsfs: fix opening old repositories without db/format files

Client-side and server-side bugfixes:

  • fix possible crash when reading invalid configuration files

Bindings bugfixes:

  • swig-pl: do not corrupt "{DATE}" revision variable
  • javahl: fix temporary accepting SSL server certificates
  • swig-pl: fix possible stack corruption

Comments 10

This update has been submitted for testing by jorton.

jorton edited this update.

jorton edited this update.

jorton edited this update.

This update has been pushed to testing.

Works here as server/client on x86_64.

karma: +1

works for me

karma: +1

This update has been submitted for stable by bodhi.

no regressions noted

karma: +1

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
security
Update Severity
unspecified
Karma
+3
stable threshold: 3
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago
modified 2 years ago

Related Bugs 3

00 #1397403 CVE-2016-8734 subversion: unrestricted XML entity expansion in mod_dontdothat and Subversion clients using http(s)://
00 #1399871 CVE-2016-8734 subversion: unrestricted XML entity expansion in mod_dontdothat and Subversion clients using http(s):// [fedora-all]
00 #1400040 Please package subversion 1.9.5

Automated Test Results