* New upstream release:
- Fixes apr_file_trunc() bug which could lead to subversion repository
corruption. Closes: #664451
- Adds randomization to hashes. CVE-2012-0840 (but not known to be
exploitable in httpd or svn). Closes: #655435
* Remove Tollef Fog Heen and Ryan Niebur from uploaders. Thanks for your
work in the past.
-- Stefan Fritsch <email address hidden> Sun, 18 Mar 2012 23:22:59 +0100
This bug was fixed in the package apr - 1.4.6-1
Sponsored for Blair Zajac (blair)
---------------
apr (1.4.6-1) unstable; urgency=low
* New upstream release:
- Fixes apr_file_trunc() bug which could lead to subversion repository
corruption. Closes: #664451
- Adds randomization to hashes. CVE-2012-0840 (but not known to be
exploitable in httpd or svn). Closes: #655435
* Remove Tollef Fog Heen and Ryan Niebur from uploaders. Thanks for your
work in the past.
-- Stefan Fritsch <email address hidden> Sun, 18 Mar 2012 23:22:59 +0100