rpms/viewvc/F-10 .cvsignore, 1.7, 1.8 sources, 1.7, 1.8 viewvc.spec, 1.14, 1.15

bojan bojan at fedoraproject.org
Tue Aug 11 21:56:32 UTC 2009 

Author: bojan

Update of /cvs/pkgs/rpms/viewvc/F-10
In directory cvs1.fedora.phx.redhat.com:/tmp/cvs-serv26595

Modified Files:
	.cvsignore sources viewvc.spec 
Log Message:
Bump up to 1.0.9.
Two security fixes.


Index: .cvsignore
===================================================================
RCS file: /cvs/pkgs/rpms/viewvc/F-10/.cvsignore,v
retrieving revision 1.7
retrieving revision 1.8
diff -u -p -r1.7 -r1.8
--- .cvsignore	7 May 2009 06:52:16 -0000	1.7
+++ .cvsignore	11 Aug 2009 21:56:32 -0000	1.8
@@ -1 +1 @@
-viewvc-1.0.8.tar.gz
+viewvc-1.0.9.tar.gz


Index: sources
===================================================================
RCS file: /cvs/pkgs/rpms/viewvc/F-10/sources,v
retrieving revision 1.7
retrieving revision 1.8
diff -u -p -r1.7 -r1.8
--- sources	7 May 2009 06:52:16 -0000	1.7
+++ sources	11 Aug 2009 21:56:32 -0000	1.8
@@ -1 +1 @@
-2070392e6f9ce537f7f1b2daf9c7a216  viewvc-1.0.8.tar.gz
+5aa48bb866f65bfcf32aa0cd581bf7d3  viewvc-1.0.9.tar.gz


Index: viewvc.spec
===================================================================
RCS file: /cvs/pkgs/rpms/viewvc/F-10/viewvc.spec,v
retrieving revision 1.14
retrieving revision 1.15
diff -u -p -r1.14 -r1.15
--- viewvc.spec	10 Aug 2009 23:53:45 -0000	1.14
+++ viewvc.spec	11 Aug 2009 21:56:32 -0000	1.15
@@ -16,8 +16,8 @@
 
 
 Name:           viewvc
-Version:        1.0.8
-Release:        2%{?dist}
+Version:        1.0.9
+Release:        1%{?dist}
 Summary:        Browser interface for CVS and SVN version control repositories
 
 Group:          Development/Tools
@@ -149,6 +149,11 @@ with decent performance when run under A
 %config(noreplace) %{_sysconfdir}/httpd/conf.d/viewvc.conf
 
 %changelog
+* Wed Aug 12 2009 Bojan Smojver <bojan at rexursive.com> - 1.0.9-1
+- bump up to 1.0.9
+- security fix: validate the 'view' parameter to avoid XSS attack
+- security fix: avoid printing illegal parameter names and values
+
 * Tue Aug 11 2009 Bojan Smojver <bojan at rexursive.com> - 1.0.8-2
 - fix allow_tar
 - patch by Patrick Monnerat

More information about the fedora-extras-commits mailing list