projects / buildroot.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 9bd265c) | patch
package/subversion: security version bump to 1.9.3
authorBernd Kuhls <bernd.kuhls@t-online.de>
Sun, 31 Jan 2016 18:23:50 +0000 (19:23 +0100)
committerThomas Petazzoni <thomas.petazzoni@free-electrons.com>
Sun, 31 Jan 2016 19:33:39 +0000 (20:33 +0100)
commit544949e4987c177ebcfa76244c5383a2267ac240
tree75a9e3eedfaf017a31760bffb53f12840a5ca164tree
parent9bd265c91722bf5ec5d38aa31297178a164d376dcommit | diff
package/subversion: security version bump to 1.9.3

Release announcement:
http://mail-archives.apache.org/mod_mbox/subversion-dev/201512.mbox/%3CCAP_GPNj_GCA869VQeJUrp5ngXsgN7pQQHSS=sqoXm8_6hHTTxg@mail.gmail.com%3E

CVE-2015-5259:
Remotely triggerable heap overflow and out-of-bounds read caused by
integer overflow in the svn:// protocol parser.
http://subversion.apache.org/security/CVE-2015-5259-advisory.txt

CVE-2015-5343:
Remotely triggerable heap overflow and out-of-bounds read in mod_dav_svn
caused by integer overflow when parsing skel-encoded request bodies.
http://subversion.apache.org/security/CVE-2015-5343-advisory.txt

Signed-off-by: Bernd Kuhls <bernd.kuhls@t-online.de>
Signed-off-by: Thomas Petazzoni <thomas.petazzoni@free-electrons.com>
package/subversion/subversion.hash diff | blob | history
package/subversion/subversion.mk diff | blob | history