From: David Rothenberger <daveroth@acm.org>
To: cygwin@cygwin.com
Subject: [ANNOUNCEMENT] [SECURITY] Updated: subversion-1.6.17-1
Date: Fri, 10 Jun 2011 17:27:00 -0000 [thread overview]
Message-ID: <announce.4DF251DE.5060208@acm.org> (raw)
A new version of subversion is available. This is a new upstream
release.
NEWS:
=====
See CHANGES (URL below) for more information about the differences
between 1.6.17 and previous Subversion releases.
This release addesses three security issues:
CVE-2011-1752: Server NULL-pointer dereference
CVE-2011-1783: Server memory exhaustion
CVE-2011-1921: mod_dav_svn exposure of unreadable paths
More information on these vulnerabilities, including the relevent advisories
and potential attack vectors and workarounds, can be found on the Subversion
security website:
http://subversion.apache.org/security/
IMPORTANT: This release will silently upgrade your Subversion
working copies to the 1.6 format, rendering them unusable with
previous major versions of Subversion.
Please see the release notes
http://subversion.apache.org/docs/release-notes/1.6.html
for more details about the changes in Subversion.
See
http://svn.apache.org/repos/asf/subversion/tags/1.6.17/CHANGES
for more details about the changes in 1.6.17.
DESCRIPTION:
============
Subversion is a version control system designed to be a compelling
successor to CVS.
Please see
http://svnbook.red-bean.com/en/1.5/index.html
for the latest official release of the Subversion Book, covering 1.5
or
http://svnbook.red-bean.com/nightly/en/index.html
for the WIP version of the book covering 1.6.
DOWNLOAD:
=========
Note that downloads from sourceware.org (aka cygwin.com) aren't
allowed due to bandwidth limitations. This means that you will need
to find a mirror which has this update, please choose the one
nearest to you: http://cygwin.com/mirrors.html
QUESTIONS:
==========
If you want to make a point or ask a question the Cygwin mailing list is
the appropriate place.
CYGWIN-ANNOUNCE UNSUBSCRIBE INFO:
=================================
To unsubscribe to the cygwin-announce mailing list, look at the
"List-Unsubscribe: " tag in the email header of this message. Send
email to the address specified there. It will be in the format:
cygwin-announce-unsubscribe-YOU=YOURDOMAIN.COM@cygwin.com
If you need more information on unsubscribing, start reading here:
http://sourceware.org/lists.html#unsubscribe-simple
Please read *all* of the information on unsubscribing that is available
starting at this URL.
--
David Rothenberger ---- daveroth@acm.org
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
reply other threads:[~2011-06-10 17:27 UTC|newest]
Thread overview: [no followups] expand[flat|nested] mbox.gz Atom feed
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=announce.4DF251DE.5060208@acm.org \
--to=daveroth@acm.org \
--cc=cygwin@cygwin.com \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox;
as well as URLs for read-only IMAP folder(s) and NNTP newsgroup(s).