Репозитории ALT
| S: | 1.11.23-alt8 |
| 5.1: | 1.11.23-alt3.M50P.1 |
| 4.1: | 1.11.22-alt3 |
| 4.0: | 1.11.22-alt2 |
| +updates: | 1.11.22-alt2 |
| 3.0: | 1.11.20-alt1 |
Группа :: Разработка/Прочее
Пакет: cvs
навигация по пакетам
Главная Изменения Спек Патчи Sources Загрузить Gear Bugs and FR Repocop
31 июля 2022 Dmitry V. Levin <ldv at altlinux.org> 1.11.23-alt8
- Replaced "egrep" with "grep -E", "fgrep" with "grep -F".
- Fixed %check.
- Applied patch for upstream bug #39166:
doc/cvs.texinfo is missing @sp argument. - BR: makeinfo.
- Worked around timestamp issues in test suite.
- Applied upstream fix to an array index error, leading to a heap-based
buffer overflow, found in the way CVS applied certain delta fragment
changes from input files in the RCS (Revision Control System) file
format. If an attacker in control of a CVS repository stored a
specially-crafted RCS file in that repository, this could result in
arbitrary code execution with the privileges of the CVS server process
on the system hosting the CVS repository when a remote user eventually
checks out a revision of the affected file.
Special thanks to Owl for the description.
(CVE-2010-3846; closes: #24468).
- Moved "make check" to %check section.
- Removed obsolete %install_info/%uninstall_info calls.
- Fixed some compilation warnings.
- Updated testsuite fixes.
- Enabled test suite by default.
- Packaged doc, pserver and contrib subpackages as noarch.
- Updated to 1.11.23.
- Synced with 1.11.22-owl1.
- Fixed "cvs login" crash introduced in cvs-1.11.22 (#12439).
- Updated to 1.11.22.
- Updated to 1.11.21.
- Patched gcc -Wall warnings (Owl).
- Patched texinfo warnings.
- Reviewed and rediffed patches.
- Updated LocalKeyword and KeywordExpand support to match
cvs-1.12.x behaviour.
- Updated to 1.11.20.
- Updated patches.
- Updated to 1.11.19.
- Updated patches.
- Applied upstream security fixes for CAN-2005-0753 issue.
- Updated to 1.11.17.
- Updated patches.
- Applied upstream security fixes to CAN-2004-0414, CAN-2004-0416,
CAN-2004-0417, CAN-2004-0418, and to some minor bugs which didn't
appear to deserve CVE names. Thanks to Stefan Esser, Sebastian
Krahmer, and Derek Robert Price for finding and fixing these.
- Applied upstream fix for pserver heap overflow (CAN-2004-0414).
- Applied upstream fix for pserver heap overflow (CAN-2004-0396).
- Updated to 1.11.15.
- Updated patches.
- Applied upstream pserver client fixes (CAN-2004-0180).
- Updated to 1.11.14.
- Updated patches.
- Set cvs_rsh transport to ssh by default again
(was broken since 1.11.10-alt1).
- Updated to 1.11.11.
- Updated to 1.11.10.
- Reviewed and updated patches.
- Removed devnull patch introduced in 1.11.2-alt1;
empty readonly regular file "/dev/null" inside chroot jail is enough. - Implemented CVSNOREADLOCK environment variable support.
- In CVSROOT/config, LockDir=/var/lock/cvs is no longer enabled
by default, for compatibility with other cvs vendors.
That is, LockDir should be explicitly uncommented after
run of "cvs init" to get previous behaviour.
- Backported change from cvs-1.11.10 to reject absolute module paths.
- Reworked the temporary file handling patch (#3183).
- In canonicalize patch, handle the special case when the last path
component doesn't yet exist and thus can't be canonicalized (Owl). - Fixed typo in cvs-pserver (#2506).
- Applied fixes from Stefan Esser.
- cvs.xinetd: set nice and rlimit_as resource limits for pserver.
- cvs_pserver: clear TMPDIR variable (as well as HOME).
- Merged in Debian patches:
+ added "-alt" to version number;
+ a fix from upstream which unbroke the watch commands was commited;
+ fixed up some typos in the man page;
+ made it possible to diff files named --foo and similar;
+ added note to cvs.texinfo explaining what the parameters to cvs import is;
+ fixed keyword handling to accept alphanumerics, not just alphabetics;
+ added fix to avoid spawn an editor on a remote system;
+ disabled init over pserver.
- 1.11.2, redone patches.
- Patched to support new automake/autoconf.
- Updated tmp races cleanup patch (now covers all shell scripts).
- Added xasprintf function for internal needs.
- Patched cvs server to work without /dev/null.
- Set default editor to vitmp.
- Updated RH patches: 1.11.1p1-authserver, 1.11.1p1-krb4.
- Merged in Debian patches:
+ newlines_in_commit_template;
+ fast_edit;
+ BSD_LOCAL_BRANCH_NUM;
+ create_cvspass;
+ normalize_correct_roots;
+ server_wrapper;
+ local_tag_expansions;
+ history_val-tag_world_writeable;
+ homedir;
+ parseopts;
+ cvs-pserver(8) manpage. - Dropped mmap patch (unmaintained).
- /etc/cvs/cvsrc: empty by default.
- Renamed cvspserver to cvs-pserver.
- Changed cvs-pserver config from /etc/cvs/cvs.conf to /etc/cvs/pserver.conf.
- Moved cvs-pserver to pserver subpackage.
- Relocated cvsinitroot from /usr/bin/ to /usr/sbin/.
- Updated dependencies.
- Relocated docs.
- Set cvs_rsh transport to ssh by default.
- Safe open files.
- Fixed:
+ bug in lock_name();
+ script cvspserver (option -f was resurrected).
- Implemented tagloginfo support.
- Fixed texinfo documentation.
- 1.11
- Merged MDK and RH patches.
- 1.10.8
- env patch
- Fandra adaptions
- Fix several .spec bugs
- Update to 1.10.6
- Bzipped info files.
- Mandrake adaptations
- auto rebuild in the new build environment (release 2)
- update to 1.10.5.
- update to 1.10.4.
- update to 1.10.3.
- update to 1.10.2.
- remove trailing characters from rcs2log mktemp args
- update to 1.10.1
- fix race conditions in cvsbug/rcs2log
- update to 1.10.
- update to 1.9.30.
- translations modified for de, fr
- build root
- update to 1.9.28
- translations modified for de, fr, tr
- added install-info stuff
- added changelog section