Fedora Legacy Test Update Notification: cvs
Marc Deslauriers
marcdeslauriers at videotron.ca
Fri May 6 02:04:58 UTC 2005
---------------------------------------------------------------------
Fedora Legacy Test Update Notification
FEDORALEGACY-2005-155508
Bugzilla https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=155508
2005-05-05
---------------------------------------------------------------------
Name : cvs
Versions : rh73: cvs-1.11.1p1-17.legacy
Versions : rh9: cvs-1.11.2-25.legacy
Versions : fc1: cvs-1.11.17-1.2.legacy
Versions : fc2: cvs-1.11.17-2.2.legacy
Summary : A version control system.
Description :
CVS (Concurrent Version System) is a version control system that can
record the history of your files (usually, but not always, source
code). CVS only stores the differences between versions, instead of
every version of every file you have ever created. CVS also keeps a log
of who, when, and why changes occurred.
---------------------------------------------------------------------
Update Information:
An updated cvs package that fixes security bugs is now available.
CVS (Concurrent Version System) is a version control system.
A buffer overflow bug was found in the way the CVS client processes version
and author information. If a user can be tricked into connecting to a
malicious CVS server, an attacker could execute arbitrary code. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name
CAN-2005-0753 to this issue.
All users of cvs should upgrade to this updated package, which includes a
backported patch to correct these issues.
---------------------------------------------------------------------
Changelogs
rh73:
* Thu Apr 21 2005 Michal Jaegermann <michal at harddata.com> 1.11.1p1-17.legacy
- added originally cvs-1.11.17-CAN-2005-0753.patch from cvs-1.11.17-6.FC3
adjusted to 1.11.1p1 (two obvious rejects fixed and changed offsets).
rh9:
* Thu Apr 21 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
1.11.2-25.legacy
- add security fix for CAN-2005-0753
fc1:
* Mon May 02 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
1.11.17-1.2.legacy
- added missing vim-minimal, sendmail and tcsh BuildRequires
* Thu Apr 21 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
1.11.17-1.1.legacy
- add security fix CAN-2005-0753 (Derek Price)
fc2:
* Mon May 02 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
1.11.17-2.2.legacy
- added missing vim-minimal, sendmail and tcsh BuildRequires
* Thu Apr 21 2005 Marc Deslauriers <marcdeslauriers at videotron.ca>
1.11.17-2.1.legacy
- add security fix CAN-2005-0753 (Derek Price)
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedoralegacy.org/
(sha1sums)
rh73:
44748e23bd996cce24d4ee94f8d690d54c9f02bd
redhat/7.3/updates-testing/i386/cvs-1.11.1p1-17.legacy.i386.rpm
742788f35e8aaaa5ea2914cc30138f81ca733720
redhat/7.3/updates-testing/SRPMS/cvs-1.11.1p1-17.legacy.src.rpm
rh9:
388ff1fb3678bbe9f548dd0de3b4c34a6b96edd0
redhat/9/updates-testing/i386/cvs-1.11.2-25.legacy.i386.rpm
cbe6667d386716c93de98f33f6a0e52ab4b2224f
redhat/9/updates-testing/SRPMS/cvs-1.11.2-25.legacy.src.rpm
fc1:
e88e07e612ef9a98760d7621feb62676c18744c2
fedora/1/updates-testing/i386/cvs-1.11.17-1.2.legacy.i386.rpm
83f4ea1da32946f9d77dd0fc70ea8d8b651b15d3
fedora/1/updates-testing/SRPMS/cvs-1.11.17-1.2.legacy.src.rpm
fc2:
e939ea46087822a17a68b6997ffd47df6cbe60bd
fedora/2/updates-testing/i386/cvs-1.11.17-2.2.legacy.i386.rpm
b5fc3ff86a90d18e9515fe151e1915878c2aabf6
fedora/2/updates-testing/SRPMS/cvs-1.11.17-2.2.legacy.src.rpm
---------------------------------------------------------------------
Please test and comment in bugzilla.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 251 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/fedora-legacy-list/attachments/20050505/abc1df20/attachment.sig>
More information about the fedora-legacy-list
mailing list