Ubuntu
subversion package

Change log for subversion package in Ubuntu

150 of 177 results FirstPreviousLast
Published in mantic-release
Published in lunar-release
Deleted in lunar-proposed (Reason: Moved to lunar) 
subversion (1.14.2-4build2) lunar; urgency=medium

  * Rebuild to drop Python 3.10 extension

 -- Jeremy Bicha <email address hidden>  Tue, 28 Feb 2023 19:44:54 -0500

Available diffs

Superseded in lunar-release
Deleted in lunar-proposed (Reason: Moved to lunar) 
subversion (1.14.2-4build1) lunar; urgency=medium

  * No-change upload to remove support for ruby3.0.

 -- Lucas Kanashiro <email address hidden>  Fri, 03 Feb 2023 10:41:58 -0300
Superseded in lunar-release
Deleted in lunar-proposed (Reason: Moved to lunar) 
subversion (1.14.2-4) unstable; urgency=medium

  * Backport patch to fix building with swig 4.1 (Closes: #1023529)

 -- James McCoy <email address hidden>  Sat, 12 Nov 2022 15:30:30 -0500
Superseded in lunar-proposed 
subversion (1.14.2-3build2) lunar; urgency=medium

  * Rebuild against new perlapi-5.36.

 -- Gianfranco Costamagna <email address hidden>  Fri, 04 Nov 2022 17:13:37 +0100

Available diffs

Superseded in lunar-proposed 
subversion (1.14.2-3build1) lunar; urgency=medium

  * No-change rebuild with Python 3.11 as supported

 -- Graham Inggs <email address hidden>  Wed, 02 Nov 2022 11:20:31 +0000
Superseded in lunar-release
Published in kinetic-release
Deleted in kinetic-proposed (Reason: Moved to kinetic) 
subversion (1.14.2-3) unstable; urgency=medium

  * Re-enable the ability to store plaintext passwords (Closes: #995692)
  * Bump debhelper-compat to 13
  * Adjust lacks-unversioned-link-to-shared-library overrides
  * Adjust package-contains-upstream-installation-documentation override
  * Document uninstalled files in debian/not-installed

 -- James McCoy <email address hidden>  Tue, 12 Jul 2022 10:03:54 -0400

Available diffs

Superseded in kinetic-release
Deleted in kinetic-proposed (Reason: Moved to kinetic) 
subversion (1.14.2-2) unstable; urgency=medium

  * Skip building java bindings on kfreebsd-*. Thanks to Laurent Bigonville
    for the suggestion (Closes: #1012379)
  * Skip building ruby bindings on ia64 and kfreebsd-*
  * Disable kwallet support on kfreebsd-*
  * Use autogen-swig-{pl,py,rb} targets instead of autogen-swig
    (Closes: #986174)
  * Declare compliance with Policy 4.6.1, no changes needed
  * Fix handling of verbose/terse build logs

 -- James McCoy <email address hidden>  Mon, 06 Jun 2022 20:42:25 -0400

Available diffs

Published in jammy-updates
Published in jammy-security 
subversion (1.14.1-3ubuntu0.22.04.1) jammy-security; urgency=medium

  * SECURITY UPDATE: CVE-2021-28544, CVE-2022-24070 (LP: #1970228)
    - debian/patches/CVE-2021-28544.patch, debian/patches/CVE-2022-24070.patch:
      New patches from upstream security advisories.

 -- Luís Infante da Câmara <email address hidden>  Sat, 21 May 2022 11:52:35 +0100
Published in focal-updates
Published in focal-security 
subversion (1.13.0-3ubuntu0.2) focal-security; urgency=medium

  * SECURITY UPDATE: Remote unauthenticated denial-of-service in Subversion
    mod_authz_svn (LP: #1970228)
    - debian/patches/CVE-2020-17525.patch: Check for NULL repos_root_dirent in
      subversion/libsvn_repos/config_file.c.
    - CVE-2020-17525

 -- Luís Infante da Câmara <email address hidden>  Thu, 12 May 2022 21:47:08 +0100
Published in bionic-updates
Published in bionic-security 
subversion (1.9.7-4ubuntu1.1) bionic-security; urgency=medium

  * SECURITY UPDATE: CVE-2018-11782, CVE-2019-0203, CVE-2020-17525 (LP: #1970228)
    - debian/patches/CVE-2018-11782.patch: New patch from upstream security
      advisory, that also fixes CVE-2019-0203.
    - debian/patches/handle_missing_file.patch: New patch from Subversion 1.10
      needed to apply CVE-2020-17525.patch.
    - debian/patches/CVE-2020-17525.patch: New patch from upstream security
      advisory.
    - debian/patches/java10-compatibility: New patch from Debian buster to fix
      build failure with OpenJDK 11.

 -- Luís Infante da Câmara <email address hidden>  Sat, 21 May 2022 08:24:25 +0100
Superseded in kinetic-release
Deleted in kinetic-proposed (Reason: Moved to kinetic) 
subversion (1.14.2-1) unstable; urgency=high

  * Update to new upstream version 1.14.2.
    + Security Fixes:
      - CVE-2021-28544: Don't show unreadable copyfrom paths in 'svn log -v'
      - CVE-2022-24070: Fix issue #4880 "Use-after-free of object-pools when
        used as httpd module"
  * libsvn1: Add wildcard to symbols-declares-dependency-on-other-package override
  * subversion-tools: Adjust wildcards for ruby-script-but-no-ruby-dep
  * Declare compliance with Policy 4.6.0, no changes needed
  * Update upstream signing keys
  * Re-enable testCrash_RequestChannel_nativeRead_AfterException, fixed
    upstream

 -- James McCoy <email address hidden>  Tue, 12 Apr 2022 08:38:19 -0400
Obsolete in impish-updates
Obsolete in impish-security 
subversion (1.14.1-3ubuntu0.1) impish-security; urgency=medium

  * SECURITY UPDATE: Use-after-free of object-pools when used as httpd module
    - debian/patches/CVE-2022-24070.patch: Register cleanup handler to reset
      authz initialization state in subversion/libsvn_repos/authz.c
    - CVE-2022-24070
  * SECURITY UPDATE: Disclosure of copyfrom paths that should be hidden
    according to configured path-based authz rules when copying.
    - debian/patches/CVE-2021-28544.patch: Do not expose copyfrom information
      if path is configured private with authz.
    - CVE-2021-28544

 -- Spyros Seimenis <email address hidden>  Tue, 05 Apr 2022 17:57:55 +0300
Superseded in focal-updates
Superseded in focal-security 
subversion (1.13.0-3ubuntu0.1) focal-security; urgency=medium

  * SECURITY UPDATE: Use-after-free of object-pools when used as httpd module
    - debian/patches/CVE-2022-24070.patch: Register cleanup handler to reset
      authz initialization state in subversion/libsvn_repos/authz.c
    - CVE-2022-24070
  * SECURITY UPDATE: Disclosure of copyfrom paths that should be hidden
    according to configured path-based authz rules when copying.
    - debian/patches/CVE-2021-28544.patch: Do not expose copyfrom information
      if path is configured private with authz.
    - CVE-2021-28544

 -- Spyros Seimenis <email address hidden>  Fri, 08 Apr 2022 12:43:33 +0300
Superseded in kinetic-release
Published in jammy-release
Deleted in jammy-proposed (Reason: Moved to jammy) 
subversion (1.14.1-3build4) jammy; urgency=medium

  * No-change rebuild with Python 3.10 only

 -- Graham Inggs <email address hidden>  Thu, 17 Mar 2022 20:14:01 +0000

Available diffs

Superseded in jammy-release
Deleted in jammy-proposed (Reason: Moved to jammy) 
subversion (1.14.1-3build3) jammy; urgency=medium

  * No-change rebuild for the perl update.

 -- Matthias Klose <email address hidden>  Sun, 06 Feb 2022 13:48:40 +0100

Available diffs

Superseded in jammy-release
Deleted in jammy-proposed (Reason: Moved to jammy) 
subversion (1.14.1-3build2) jammy; urgency=medium

  * No-change upload due to ruby3.0 transition, remove ruby2.7 support.

 -- Lucas Kanashiro <email address hidden>  Fri, 03 Dec 2021 17:03:34 -0300
Superseded in jammy-proposed 
subversion (1.14.1-3build1) jammy; urgency=medium

  * No-change rebuild to add python3.10.

 -- Matthias Klose <email address hidden>  Sat, 16 Oct 2021 06:59:52 +0000
Superseded in jammy-release
Obsolete in impish-release
Obsolete in hirsute-release
Deleted in hirsute-proposed (Reason: moved to Release) 
subversion (1.14.1-3) unstable; urgency=medium

  * Correctly disable testCrash_RequestChannel_nativeRead_AfterException
    (Closes: #982684)

 -- James McCoy <email address hidden>  Wed, 17 Feb 2021 21:52:03 -0500
Superseded in hirsute-proposed 
subversion (1.14.1-1) unstable; urgency=high

  * Update to new upstream version 1.14.1.
    + Fix FTBFS with OpenJDK 17 (Closes: #982084)
    + Security fix:
      - CVE-2020-17525: Remote unauthenticated denial-of-service in Subversion
        mod_authz_svn  (Closes: #982464)

 -- James McCoy <email address hidden>  Wed, 10 Feb 2021 21:17:14 -0500
Superseded in hirsute-release
Deleted in hirsute-proposed (Reason: moved to Release) 
subversion (1.14.0-3build2) hirsute; urgency=medium

  * No-change rebuild to drop python3.8 extensions.

 -- Matthias Klose <email address hidden>  Mon, 07 Dec 2020 18:44:19 +0100

Available diffs

Superseded in hirsute-release
Deleted in hirsute-proposed (Reason: moved to Release) 
subversion (1.14.0-3build1) hirsute; urgency=medium

  * No-change rebuild for the perl update.

 -- Matthias Klose <email address hidden>  Mon, 09 Nov 2020 12:47:06 +0100
Superseded in hirsute-proposed 
subversion (1.14.0-3) unstable; urgency=medium

  * Rename python suffixes to the versioned python suffix.
    Thanks to Matthias Klose for the patch (Closes: #972197)
  * Rename python-script-but-no-python-dep override to python3 version

 -- James McCoy <email address hidden>  Sat, 31 Oct 2020 20:44:20 -0400
Superseded in hirsute-proposed 
subversion (1.14.0-2ubuntu1) hirsute; urgency=medium

  * Rename python extensions to the versioned python suffix.

 -- Matthias Klose <email address hidden>  Sat, 31 Oct 2020 08:33:14 +0100

Available diffs

Superseded in hirsute-proposed 
subversion (1.14.0-2build1) hirsute; urgency=medium

  * No-change rebuild to build with python3.9 as supported.

 -- Matthias Klose <email address hidden>  Sat, 24 Oct 2020 10:55:56 +0200
Superseded in hirsute-release
Obsolete in groovy-release
Deleted in groovy-proposed (Reason: moved to Release) 
subversion (1.14.0-2) unstable; urgency=medium

  * Backport patch from upstream to fix FTBFS (Closes: #966989)
    - Fix crash in JavaHL JNI wrapper caused by object lifetimes
  * svn_load_dirs.1: Use correct groff macro for single-quote
  * Update lintian overrides to account for renamed tags

 -- James McCoy <email address hidden>  Mon, 17 Aug 2020 13:01:19 -0400

Available diffs

Superseded in groovy-release
Deleted in groovy-proposed (Reason: moved to Release) 
subversion (1.14.0-1) unstable; urgency=medium

  * Update to new upstream version 1.14.0.
  * Install NOTICE as required by Apache license
  * rules: Disable dh_auto_test for Arch: all builds

 -- James McCoy <email address hidden>  Wed, 03 Jun 2020 22:21:57 -0400

Available diffs

Superseded in groovy-release
Deleted in groovy-proposed (Reason: moved to Release) 
subversion (1.13.0-4) unstable; urgency=medium

  * Disable building python-subversion if SWIG 4.0 is installed
    (Closes: #954866)
  * Remove python-subversion from subversion-tool's Recommends

 -- James McCoy <email address hidden>  Sat, 25 Apr 2020 08:58:28 -0400

Available diffs

Superseded in groovy-release
Published in focal-release
Deleted in focal-proposed (Reason: moved to Release) 
subversion (1.13.0-3) unstable; urgency=medium

  [ James McCoy ]
  * rules: Use "pyversions -s" instead of "pyversions -i"
  * Build with swig3.0 to fix FTBFS with swig4.0 (Closes: #951893)
  * Declare compliance with Policy 4.5.0, no changes needed
  * Build-Depend on debhelper-compat (= 12)

  [ Dimitri John Ledkov ]
  * swig.m4: Do not include ruby include subdir

 -- James McCoy <email address hidden>  Tue, 24 Mar 2020 08:33:36 -0400
Superseded in focal-release
Deleted in focal-proposed (Reason: moved to Release) 
subversion (1.13.0-2ubuntu2) focal; urgency=medium

  * Do not include ruby include subdir which has headers that clash with
    standard ones, such as assert.h.

 -- Dimitri John Ledkov <email address hidden>  Fri, 06 Mar 2020 14:19:28 +0000
Superseded in focal-proposed 
subversion (1.13.0-2ubuntu1) focal; urgency=medium

  * Build using swig3.0.

 -- Dimitri John Ledkov <email address hidden>  Fri, 06 Mar 2020 04:33:48 +0000

Available diffs

Superseded in focal-proposed 
subversion (1.13.0-2build1) focal; urgency=medium

  [ Rafael David Tinoco ]
  * Sponsoring ruby2.7 transitions

  [ Lucas Kanashiro ]
  * No-change rebuild for ruby2.7

 -- Rafael David Tinoco <email address hidden>  Mon, 02 Mar 2020 16:35:25 +0000
Superseded in focal-release
Deleted in focal-proposed (Reason: moved to Release) 
subversion (1.13.0-2) unstable; urgency=medium

  [ James McCoy ]
  * gbp.conf: Do not number patches

  [ Steve Langasek ]
  * use python2 as the interpreter now for tests, not python (Closes: #948770)

 -- James McCoy <email address hidden>  Sun, 19 Jan 2020 08:59:14 -0500
Superseded in focal-release
Deleted in focal-proposed (Reason: moved to Release) 
subversion (1.13.0-1ubuntu1) focal; urgency=medium

  * debian/patches/python2-in-tests.patch: use python2 as the
    interpreter now for tests, not python.

 -- Steve Langasek <email address hidden>  Mon, 13 Jan 2020 07:25:01 +0000
Superseded in focal-proposed 
subversion (1.13.0-1build1) focal; urgency=medium

  * No-change rebuild to restore i386 binaries

 -- Steve Langasek <email address hidden>  Sun, 12 Jan 2020 21:42:59 +0000
Superseded in focal-release
Deleted in focal-proposed (Reason: moved to Release) 
subversion (1.13.0-1) unstable; urgency=medium

  * New upstream release
  * debian/watch:
    + Monitor 1.13.x versions
  * Update upstream signing keys
  * debian/control:
    + Bump minimum jdk version to 1.8
    + Switch to junit4 for Java tests
    + Bump libsvn-dev Build-Conflicts to << 1.13~
    + Remove obsolete Build-Depends on apache2-dev
    + Fix a typos in the pkg.subversion.nokde profile name
  * Declare compliance with Policy 4.4.1, no changes needed
  * Fix FTBFS on certain archs due to PIC/PIE interaction.
    Thanks to Thorsten Glaser for the patch (Closes: #942798)
  * libsvn1.symbols:
    + Mark private/experimental symbols as optional
    + Update symbols for 1.11, 1.12, and 1.13
  * debian/tests:
    + Replace $ADTTMP with $AUTOPKGTEST_TMP
  * Add fetch-keys script to update/minimize signing-key.asc
  * Add a pkg.subversion.nojava build profile

 -- James McCoy <email address hidden>  Thu, 28 Nov 2019 22:11:05 -0500
Superseded in focal-release
Deleted in focal-proposed (Reason: moved to Release) 
subversion (1.10.6-1build1) focal; urgency=medium

  * No-change rebuild for the perl update.

 -- Matthias Klose <email address hidden>  Fri, 18 Oct 2019 19:38:16 +0000
Superseded in eoan-proposed 
subversion (1.10.0-2ubuntu4) eoan; urgency=medium

  * No-change rebuild to drop multiarch-support dependency.

 -- Matthias Klose <email address hidden>  Sun, 01 Sep 2019 03:42:06 +0000

Available diffs

Superseded in focal-release
Obsolete in eoan-release
Deleted in eoan-proposed (Reason: moved to release) 
subversion (1.10.6-1) unstable; urgency=medium

  * Update to new upstream version 1.10.6.
    + Security fix
      - CVE-2018-11782: Remotely triggerable DoS vulnerability in svnserve
        'get-deleted-rev'
      - CVE-2019-0203: Remote unauthenticated denial-of-service in Subversion
        svnserve
  * Support a pkg.subversion.nokde build profile.
    Thanks to Jason Duerstock for the patch (Closes: #929326)

 -- James McCoy <email address hidden>  Wed, 31 Jul 2019 07:01:38 -0400
Published in precise-updates
Published in precise-security 
subversion (1.6.17dfsg-3ubuntu3.8) precise-security; urgency=medium

  * SECURITY UPDATE: Remotely triggerable DoS vulnerability in svnserve
    'get-deleted-rev' and Remote unauthenticated denial-of-service
    - debian/patches/CVE-2018-11782-and-CVE-2019-0203.patch: properly handle certain replies
      in subversion/libsvn_ra_svn/client.c, subversion/svnserve/serve.c,
    - CVE-2018-11782
    - CVE-2019-0203

 -- <email address hidden> (Leonidas S. Barbosa)  Mon, 29 Jul 2019 14:51:27 -0300
Published in xenial-updates
Published in xenial-security 
subversion (1.9.3-2ubuntu1.3) xenial-security; urgency=medium

  * SECURITY UPDATE: Remotely triggerable DoS vulnerability in svnserve
    'get-deleted-rev'
    - debian/patches/CVE-2018-11782.patch: properly handle certain replies
      in subversion/libsvn_ra_svn/client.c, subversion/svnserve/serve.c,
      subversion/tests/libsvn_ra/ra-test.c.
    - CVE-2018-11782
  * SECURITY UPDATE: Remote unauthenticated denial-of-service in svnserve
    - debian/patches/CVE-2019-0203.patch: properly handle errors in
      subversion/svnserve/serve.c.
    - CVE-2019-0203
  * WARNING: this update does _not_ include the changes from
    (1.9.3-2ubuntu1.2) in xenial-proposed.

 -- Marc Deslauriers <email address hidden>  Fri, 26 Jul 2019 09:55:16 -0400
Deleted in xenial-proposed (Reason: moved to -updates) 
subversion (1.9.3-2ubuntu1.2) xenial; urgency=medium

  * Backport patches/perl-swig-crash from upstream to fix crashes with Perl
    bindings, commonly seen when using git-svn (LP: #1451028)

 -- James McCoy <email address hidden>  Wed, 14 Mar 2018 22:29:16 -0400
Obsolete in cosmic-updates
Obsolete in cosmic-security 
subversion (1.10.0-2ubuntu2.1) cosmic-security; urgency=medium

  * SECURITY UPDATE: Denial of service
    - debian/patches/CVE-2018-11803.patch: fix in
      subversion/mod_dav_svn/reports/list.c.
    - CVE-2018-11803

 -- <email address hidden> (Leonidas S. Barbosa)  Wed, 23 Jan 2019 12:12:36 -0300
Superseded in eoan-release
Obsolete in disco-release
Deleted in disco-proposed (Reason: moved to release) 
subversion (1.10.0-2ubuntu3) disco; urgency=medium

  * No-change rebuild for the perl 5.28 transition.

 -- Adam Conrad <email address hidden>  Fri, 02 Nov 2018 18:15:03 -0600

Available diffs

Superseded in disco-release
Obsolete in cosmic-release
Deleted in cosmic-proposed (Reason: moved to release) 
subversion (1.10.0-2ubuntu2) cosmic; urgency=medium

  * Merge with Debian; remaining changes:
    - Build a python-subversion-dbg package.
    - Build-depend on python-all-dbg.
    - debian/patches/verbose-tests: Make tests verbose.
    - debian/rules: add verbosity level to --with-ruby-test-verbose
      configure argument as the ruby swig test errors out without a
      specific level
Superseded in cosmic-proposed 
subversion (1.10.0-2ubuntu1) cosmic; urgency=medium

  * Merge with Debian; remaining changes:
    - Build a python-subversion-dbg package.
    - Build-depend on python-all-dbg.
    - debian/patches/verbose-tests: Make tests verbose.
    - debian/rules: add verbosity level to --with-ruby-test-verbose
      configure argument as the ruby swig test errors out without a
      specific level
Superseded in cosmic-release
Published in bionic-release
Deleted in bionic-proposed (Reason: moved to release) 
subversion (1.9.7-4ubuntu1) bionic; urgency=medium

  * Merge with Debian; remaining changes:
    - Build a python-subversion-dbg package.
    - Build-depend on python-all-dbg.
    - debian/patches/verbose-tests: Make tests verbose.
    - debian/rules: add verbosity level to --with-ruby-test-verbose
      configure argument as the ruby swig test errors out without a
      specific level

Available diffs

Superseded in bionic-release
Deleted in bionic-proposed (Reason: moved to release) 
subversion (1.9.7-3ubuntu3) bionic; urgency=high

  * No change rebuild against ruby-defaults without ruby2.3 support.

 -- Dimitri John Ledkov <email address hidden>  Thu, 01 Mar 2018 09:36:33 +0000

Available diffs

Superseded in bionic-release
Deleted in bionic-proposed (Reason: moved to release) 
subversion (1.9.7-3ubuntu2) bionic; urgency=medium

  * No-change rebuild for ruby2.5 update.

 -- Matthias Klose <email address hidden>  Thu, 01 Feb 2018 19:14:27 +0000

Available diffs

Superseded in bionic-release
Deleted in bionic-proposed (Reason: moved to release) 
subversion (1.9.7-3ubuntu1) bionic; urgency=medium

  * Merge from Debian unstable.  Remaining changes:
    - Build a python-subversion-dbg package.
    - Build-depend on python-all-dbg.
    - debian/patches/verbose-tests: Make tests verbose.
    - debian/rules: add verbosity level to --with-ruby-test-verbose
      configure argument as the ruby swig test errors out without a
      specific level

Available diffs

Superseded in bionic-release
Superseded in bionic-release
Obsolete in artful-release
Deleted in artful-proposed (Reason: moved to release) 
subversion (1.9.7-2ubuntu1) artful; urgency=low

  * Merge from Debian unstable.  Remaining changes:
    - Build a python-subversion-dbg package.
    - Build-depend on python-all-dbg.
    - debian/patches/verbose-tests: Make tests verbose.
  * Updated changes:
    - debian/rules: add verbosity level to --with-ruby-test-verbose
      configure argument as the ruby swig test errors out without a
      specific level
  * Dropped Ubuntu changes:
    - debian/patches/CVE-2017-9800-1.9.6.patch: fixed upstream
    - debian/control: drop X-Python-Versions: as it is no longer
      needed with 2.7 the only remaining supported python 2 version
      and on obsolete flag
    - debian/rules: drop change that ignores swig test failures

Available diffs

150 of 177 results FirstPreviousLast