openembedded-core.git/meta/recipes-devtools/subversion, branch jethro

subversion: fix CVE-2015-3187

2015-12-08T08:18:12+00:00

The svn_repos_trace_node_locations function in Apache Subversion before
1.7.21 and 1.8.x before 1.8.14, when path-based authorization is used,
allows remote authenticated users to obtain sensitive path information
by reading the history of a node that has been moved from a hidden path.

Patch is from:
http://subversion.apache.org/security/CVE-2015-3187-advisory.txt

(From OE-Core master rev: 6da25614edcad30fdb4bea8ff47b81ff81cdaed2)

Signed-off-by: Wenzong Fan 
Signed-off-by: Ross Burton 
Signed-off-by: Richard Purdie 
Signed-off-by: Robert Yang

subversion: fix CVE-2015-3184

2015-12-08T08:18:12+00:00

mod_authz_svn in Apache Subversion 1.7.x before 1.7.21 and 1.8.x before
1.8.14, when using Apache httpd 2.4.x, does not properly restrict
anonymous access, which allows remote anonymous users to read hidden
files via the path name.

Patch is from:
http://subversion.apache.org/security/CVE-2015-3184-advisory.txt

(From OE-Core master rev: 29eb921ed074d86fa8d5b205a313eb3177473a63)

Signed-off-by: Wenzong Fan 
Signed-off-by: Ross Burton 
Signed-off-by: Richard Purdie 
Signed-off-by: Robert Yang

subversion: add explicit dependency on file-replacement-native for native builds

2015-10-24T11:42:39+00:00

subversion_1.8.13.bb: Upstream-Status updated to Accepted

2015-07-20T09:39:00+00:00

Upstream-Status changed to Accepted due to [1]

[1] http://svn.apache.org/viewvc/subversion/trunk/build/ac-macros/serf.m4?r1=1594156&r2=1689824

Signed-off-by: Ross Burton

subversion_1.8.13.bb: Regex modified to allow '-D' in paths

2015-07-07T22:57:13+00:00

Modified the regex sed in serf.m4 to allow the use of '-D' characters
in project folder names without having compilation error from
subversion-native.

[YOCTO #7874]

Signed-off-by: Jose Lamego 
Signed-off-by: Ross Burton

subversion: Fix subversion-native on Fedora22

2015-06-27T21:42:00+00:00

Similarly to:
http://git.yoctoproject.org/cgit.cgi/poky/commit/?id=9b19d6548a345009a6de79a6820c07a72054d961

we also need to fix the subversion-native case with gcc5 by using
the same fix to the BUILD_CPPFLAGS.

Signed-off-by: Richard Purdie

subversion: remove 1.6.X recipes

2015-04-30T22:01:29+00:00

Removing the 1.6.X recipes, since there is a new version 1.8.X recipes,
and hope that all projects already upgraded their premirror caches to
use new format

Signed-off-by: Roy Li 
Signed-off-by: Richard Purdie

subversion: upgrade it from 1.8.11 to 1.8.13

2015-04-28T06:55:59+00:00

upgrade to fix two CVE defects: CVE-2015-0248 and CVE-2015-0251

Signed-off-by: Roy Li 
Signed-off-by: Richard Purdie

subversion: Add -P to CPPFLAGS

2015-04-27T13:57:44+00:00

see https://gcc.gnu.org/gcc-5/porting_to.html

we need to stop the preprocessor from generating the #line directives
or we run into issues like

| checking for apr_int64_t Python/C API format string...
| configure: error: failed to recognize APR_INT64_T_FMT on this platform
| Configure failed. The contents of all config.log files follows to aid
debugging
| ERROR: oe_runconf failed

Rightly subversion should be fixed but lets leave that to subversion
folks

Change-Id: I02a89798ff949f79967ab0a73adcddaa4218662d
Signed-off-by: Khem Raj 
Signed-off-by: Richard Purdie

subversion: 1.8.10 -> 1.8.11

2015-02-14T22:26:07+00:00

Signed-off-by: Richard Purdie