LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

LWN.net Weekly Edition for May 16, 2013

A look at the PyPy 2.0 release

PostgreSQL 9.3 beta: Federated databases and more

LWN.net Weekly Edition for May 9, 2013

(Nearly) full tickless operation in 3.10

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Fedora alert FEDORA-2010-4295 (viewvc)



From:
    	      updates@fedoraproject.org 


To:
    	      package-announce@lists.fedoraproject.org 


Subject:
    	      [SECURITY] Fedora 12 Update: viewvc-1.1.4-1.fc12 


Date:
    	      Tue, 16 Mar 2010 00:35:22 +0000


Message-ID:
    	      <20100316003522.DEE92110153@bastion02.phx2.fedoraproject.org>


Archive-link:
    	      Article, Thread
              


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2010-4295
2010-03-12 03:08:03
--------------------------------------------------------------------------------

Name        : viewvc
Product     : Fedora 12
Version     : 1.1.4
Release     : 1.fc12
URL         : http://www.viewvc.org/
Summary     : Browser interface for CVS and SVN version control repositories
Description :
ViewVC is a browser interface for CVS and Subversion version control
repositories. It generates templatized HTML to present navigable directory,
revision, and change log listings. It can display specific versions of files
as well as diffs between those versions. Basically, ViewVC provides the bulk
of the report-like functionality you expect out of your version control tool,
but much more prettily than the average textual command-line program output.

--------------------------------------------------------------------------------
Update Information:

Update to upstream version 1.1.4, fixing one XSS flaw and several bugs:  *
http://viewvc.tigris.org/source/browse/viewvc/trunk/CHANG...  *
security fix: escape user-provided query form input to avoid XSS attack  * fix
standalone.py failure (when per-root options aren't used) (issue #445)  * fix
annotate failure caused by ignored svn_config_dir (issue #447)
--------------------------------------------------------------------------------
ChangeLog:

* Thu Mar 11 2010 Bojan Smojver <bojan@rexursive.com> - 1.1.4-1
- bump up to 1.1.4
* Fri Jan  8 2010 Bojan Smojver <bojan@rexursive.com> - 1.1.3-2
- patch upstream issue #445
* Wed Dec 23 2009 Bojan Smojver <bojan@rexursive.com> - 1.1.3-1
- bump up to 1.1.3
- drop patch for upstream issue #427
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use 
su -c 'yum update viewvc' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
_______________________________________________
package-announce mailing list
package-announce@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/package-...
(Log in to post comments)

Copyright © 2013, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds