-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Fri, 02 Jan 2004 19:39:02 +0000 Source: cvs Binary: cvs Architecture: source i386 Version: 1:1.12.5-1 Distribution: unstable Urgency: high Maintainer: Steve McIntyre <93sam@debian.org> Changed-By: Steve McIntyre <93sam@debian.org> Description: cvs - Concurrent Versions System Closes: 219325 219950 221914 223655 224737 Changes: cvs (1:1.12.5-1) unstable; urgency=high . * New upstream release: + Fix for potential security hole with no known exploits: previous versions of cvs could attempt to create files and directories in the filesystem root. Closes: #223655, #221914. + Fix for another potential security hole: don't allow pserver to run as root. + Usage of the deprecated -l option now generates a warning from the server, rather than an error. Closes: #219950, #224737. + Support for case-insensitivity in clients removed. Please see the NEWS file before panicking about this! * Included the upstream FAQ in the package. Closes: #219325. Files: 23cc97f663e85ddcfbe197a718825ce9 693 devel optional cvs_1.12.5-1.dsc b18fe63baff96da50669c2c686ed7fac 2365404 devel optional cvs_1.12.5.orig.tar.gz e808d6e104062f94111418f0b65a60b6 46683 devel optional cvs_1.12.5-1.diff.gz d792971ae25f3266b15f61793fb1f040 1369826 devel optional cvs_1.12.5-1_i386.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (GNU/Linux) iD8DBQE/9dXOfDt5cIjHwfcRAggEAJ4/aObRP0XGHN0f44+Z3YqLYmTt/QCdE82t klsvBSWPmHOzxPJpQ2sGPF0= =LL+E -----END PGP SIGNATURE----- Accepted: cvs_1.12.5-1.diff.gz to pool/main/c/cvs/cvs_1.12.5-1.diff.gz cvs_1.12.5-1.dsc to pool/main/c/cvs/cvs_1.12.5-1.dsc cvs_1.12.5-1_i386.deb to pool/main/c/cvs/cvs_1.12.5-1_i386.deb cvs_1.12.5.orig.tar.gz to pool/main/c/cvs/cvs_1.12.5.orig.tar.gz -- To UNSUBSCRIBE, email to debian-devel-changes-request@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
