Author: Matthias Klose
Revision Date: 2015-09-08 14:49:49 UTC

No-change rebuild to add ruby2.2 support.

Author: Matthias Klose
Revision Date: 2015-09-08 14:49:49 UTC

No-change rebuild to add ruby2.2 support.

Author: Marc Deslauriers
Revision Date: 2015-08-19 12:38:31 UTC

* SECURITY UPDATE: denial of service via large number of REPORT requests
  - debian/patches/CVE-2015-0202.patch: refactor locking in
    subversion/libsvn_fs_fs/tree.c.
  - CVE-2015-0202
* SECURITY UPDATE: denial of service via crafted parameter combinations
  - debian/patches/CVE-2015-0248.patch: properly handle missing revision
    numbers in subversion/mod_dav_svn/reports/get-location-segments.c,
    subversion/svnserve/serve.c.
  - CVE-2015-0248
* SECURITY UPDATE: svn:author property spoofing issue
  - debian/patches/CVE-2015-0251.patch: restrict svn:author modifications
    in subversion/mod_dav_svn/deadprops.c.
  - CVE-2015-0251
* SECURITY UPDATE: incorrect anonymous access restriction
  - debian/patches/CVE-2015-3184.patch: use force_authn() in Makefile.in,
    build/ac-macros/apache.m4, build/run_tests.py,
    subversion/mod_authz_svn/mod_authz_svn.c,
    subversion/tests/cmdline/README,
    subversion/tests/cmdline/davautocheck.sh,
    subversion/tests/cmdline/mod_authz_svn_tests.py,
    subversion/tests/cmdline/svntest/main.py, win-tests.py.
  - CVE-2015-3184
* SECURITY UPDATE: sensitive path information disclosure
  - debian/patches/CVE-2015-3187.patch: fix order in
    subversion/libsvn_repos/rev_hunt.c, added tests to
    subversion/tests/cmdline/authz_tests.py,
    subversion/tests/libsvn_repos/repos-test.c.
  - CVE-2015-3187
* debian/control: Depend on specific version of apache2-dev and
  apache2-bin to make sure fix for CVE-2015-3185 is included.

Author: Marc Deslauriers
Revision Date: 2015-08-19 12:38:31 UTC

* SECURITY UPDATE: denial of service via large number of REPORT requests
  - debian/patches/CVE-2015-0202.patch: refactor locking in
    subversion/libsvn_fs_fs/tree.c.
  - CVE-2015-0202
* SECURITY UPDATE: denial of service via crafted parameter combinations
  - debian/patches/CVE-2015-0248.patch: properly handle missing revision
    numbers in subversion/mod_dav_svn/reports/get-location-segments.c,
    subversion/svnserve/serve.c.
  - CVE-2015-0248
* SECURITY UPDATE: svn:author property spoofing issue
  - debian/patches/CVE-2015-0251.patch: restrict svn:author modifications
    in subversion/mod_dav_svn/deadprops.c.
  - CVE-2015-0251
* SECURITY UPDATE: incorrect anonymous access restriction
  - debian/patches/CVE-2015-3184.patch: use force_authn() in Makefile.in,
    build/ac-macros/apache.m4, build/run_tests.py,
    subversion/mod_authz_svn/mod_authz_svn.c,
    subversion/tests/cmdline/README,
    subversion/tests/cmdline/davautocheck.sh,
    subversion/tests/cmdline/mod_authz_svn_tests.py,
    subversion/tests/cmdline/svntest/main.py, win-tests.py.
  - CVE-2015-3184
* SECURITY UPDATE: sensitive path information disclosure
  - debian/patches/CVE-2015-3187.patch: fix order in
    subversion/libsvn_repos/rev_hunt.c, added tests to
    subversion/tests/cmdline/authz_tests.py,
    subversion/tests/libsvn_repos/repos-test.c.
  - CVE-2015-3187
* debian/control: Depend on specific version of apache2-dev and
  apache2-bin to make sure fix for CVE-2015-3185 is included.

Author: Marc Deslauriers
Revision Date: 2015-08-20 08:53:48 UTC

* SECURITY UPDATE: denial of service via non-existing REPORT request
  - debian/patches/CVE-2014-3580.patch: make sure repo paths are
    specified in subversion/mod_dav_svn/reports/deleted-rev.c,
    subversion/mod_dav_svn/reports/file-revs.c,
    subversion/mod_dav_svn/reports/get-location-segments.c,
    subversion/mod_dav_svn/reports/get-locations.c,
    subversion/mod_dav_svn/reports/log.c,
    subversion/mod_dav_svn/reports/mergeinfo.c.
  - CVE-2014-3580
* SECURITY UPDATE: denial of service via crafted parameter combinations
  - debian/patches/CVE-2015-0248.patch: properly handle missing revision
    numbers in subversion/mod_dav_svn/reports/get-location-segments.c,
    subversion/svnserve/serve.c.
  - CVE-2015-0248
* SECURITY UPDATE: svn:author property spoofing issue
  - debian/patches/CVE-2015-0251.patch: restrict svn:author modifications
    in subversion/mod_dav_svn/deadprops.c.
  - CVE-2015-0251
* SECURITY UPDATE: sensitive path information disclosure
  - debian/patches/CVE-2015-3187.patch: fix order in
    subversion/libsvn_repos/rev_hunt.c, added tests to
    subversion/tests/cmdline/authz_tests.py,
    subversion/tests/libsvn_repos/repos-test.c.
  - CVE-2015-3187

Author: Marc Deslauriers
Revision Date: 2015-08-20 08:53:48 UTC

* SECURITY UPDATE: denial of service via non-existing REPORT request
  - debian/patches/CVE-2014-3580.patch: make sure repo paths are
    specified in subversion/mod_dav_svn/reports/deleted-rev.c,
    subversion/mod_dav_svn/reports/file-revs.c,
    subversion/mod_dav_svn/reports/get-location-segments.c,
    subversion/mod_dav_svn/reports/get-locations.c,
    subversion/mod_dav_svn/reports/log.c,
    subversion/mod_dav_svn/reports/mergeinfo.c.
  - CVE-2014-3580
* SECURITY UPDATE: denial of service via crafted parameter combinations
  - debian/patches/CVE-2015-0248.patch: properly handle missing revision
    numbers in subversion/mod_dav_svn/reports/get-location-segments.c,
    subversion/svnserve/serve.c.
  - CVE-2015-0248
* SECURITY UPDATE: svn:author property spoofing issue
  - debian/patches/CVE-2015-0251.patch: restrict svn:author modifications
    in subversion/mod_dav_svn/deadprops.c.
  - CVE-2015-0251
* SECURITY UPDATE: sensitive path information disclosure
  - debian/patches/CVE-2015-3187.patch: fix order in
    subversion/libsvn_repos/rev_hunt.c, added tests to
    subversion/tests/cmdline/authz_tests.py,
    subversion/tests/libsvn_repos/repos-test.c.
  - CVE-2015-3187

Author: Marc Deslauriers
Revision Date: 2015-08-19 14:32:44 UTC

* SECURITY UPDATE: denial of service via non-existing REPORT request
  - debian/patches/CVE-2014-3580.patch: make sure repo patchs are
    specified in subversion/mod_dav_svn/reports/deleted-rev.c,
    subversion/mod_dav_svn/reports/file-revs.c,
    subversion/mod_dav_svn/reports/get-location-segments.c,
    subversion/mod_dav_svn/reports/get-locations.c,
    subversion/mod_dav_svn/reports/inherited-props.c,
    subversion/mod_dav_svn/reports/log.c,
    subversion/mod_dav_svn/reports/mergeinfo.c.
  - CVE-2014-3580
* SECURITY UPDATE: denial of service via non-existing virtual transaction
  name
  - debian/patches/CVE-2014-8108.patch: check transaction names and
    activity ids in subversion/mod_dav_svn/repos.c.
  - CVE-2014-8108
* SECURITY UPDATE: denial of service via large number of REPORT requests
  - debian/patches/CVE-2015-0202.patch: refactor locking in
    subversion/libsvn_fs_fs/tree.c.
  - CVE-2015-0202
* SECURITY UPDATE: denial of service via crafted parameter combinations
  - debian/patches/CVE-2015-0248.patch: properly handle missing revision
    numbers in subversion/mod_dav_svn/reports/get-location-segments.c,
    subversion/svnserve/serve.c.
  - CVE-2015-0248
* SECURITY UPDATE: svn:author property spoofing issue
  - debian/patches/CVE-2015-0251.patch: restrict svn:author modifications
    in subversion/mod_dav_svn/deadprops.c.
  - CVE-2015-0251
* SECURITY UPDATE: incorrect anonymous access restriction
  - debian/patches/CVE-2015-3184.patch: use force_authn() in Makefile.in,
    build/ac-macros/apache.m4, build/run_tests.py,
    subversion/mod_authz_svn/mod_authz_svn.c,
    subversion/tests/cmdline/README,
    subversion/tests/cmdline/davautocheck.sh,
    subversion/tests/cmdline/mod_authz_svn_tests.py,
    subversion/tests/cmdline/svntest/main.py, win-tests.py.
  - CVE-2015-3184
* SECURITY UPDATE: sensitive path information disclosure
  - debian/patches/CVE-2015-3187.patch: fix order in
    subversion/libsvn_repos/rev_hunt.c, added tests to
    subversion/tests/cmdline/authz_tests.py,
    subversion/tests/libsvn_repos/repos-test.c.
  - CVE-2015-3187
* debian/control: Depend on specific version of apache2-dev and
  apache2-bin to make sure fix for CVE-2015-3185 is included.

Author: Marc Deslauriers
Revision Date: 2015-08-19 14:32:44 UTC

* SECURITY UPDATE: denial of service via non-existing REPORT request
  - debian/patches/CVE-2014-3580.patch: make sure repo patchs are
    specified in subversion/mod_dav_svn/reports/deleted-rev.c,
    subversion/mod_dav_svn/reports/file-revs.c,
    subversion/mod_dav_svn/reports/get-location-segments.c,
    subversion/mod_dav_svn/reports/get-locations.c,
    subversion/mod_dav_svn/reports/inherited-props.c,
    subversion/mod_dav_svn/reports/log.c,
    subversion/mod_dav_svn/reports/mergeinfo.c.
  - CVE-2014-3580
* SECURITY UPDATE: denial of service via non-existing virtual transaction
  name
  - debian/patches/CVE-2014-8108.patch: check transaction names and
    activity ids in subversion/mod_dav_svn/repos.c.
  - CVE-2014-8108
* SECURITY UPDATE: denial of service via large number of REPORT requests
  - debian/patches/CVE-2015-0202.patch: refactor locking in
    subversion/libsvn_fs_fs/tree.c.
  - CVE-2015-0202
* SECURITY UPDATE: denial of service via crafted parameter combinations
  - debian/patches/CVE-2015-0248.patch: properly handle missing revision
    numbers in subversion/mod_dav_svn/reports/get-location-segments.c,
    subversion/svnserve/serve.c.
  - CVE-2015-0248
* SECURITY UPDATE: svn:author property spoofing issue
  - debian/patches/CVE-2015-0251.patch: restrict svn:author modifications
    in subversion/mod_dav_svn/deadprops.c.
  - CVE-2015-0251
* SECURITY UPDATE: incorrect anonymous access restriction
  - debian/patches/CVE-2015-3184.patch: use force_authn() in Makefile.in,
    build/ac-macros/apache.m4, build/run_tests.py,
    subversion/mod_authz_svn/mod_authz_svn.c,
    subversion/tests/cmdline/README,
    subversion/tests/cmdline/davautocheck.sh,
    subversion/tests/cmdline/mod_authz_svn_tests.py,
    subversion/tests/cmdline/svntest/main.py, win-tests.py.
  - CVE-2015-3184
* SECURITY UPDATE: sensitive path information disclosure
  - debian/patches/CVE-2015-3187.patch: fix order in
    subversion/libsvn_repos/rev_hunt.c, added tests to
    subversion/tests/cmdline/authz_tests.py,
    subversion/tests/libsvn_repos/repos-test.c.
  - CVE-2015-3187
* debian/control: Depend on specific version of apache2-dev and
  apache2-bin to make sure fix for CVE-2015-3185 is included.

Author: Colin Watson
Revision Date: 2015-01-04 21:49:36 UTC

* Resynchronise with Debian. Remaining changes:
  - debian/rules: Manually create the doxygen output directory, otherwise
    we get weird build failures when running parallel builds.
  - Build a python-subversion-dbg package.
  - Build-depend on python-all-dbg.
  - Only build on requested python versions (X-Python-Versions:).
  - debian/patches/verbose-tests.diff: Make tests verbose.

Author: Colin Watson
Revision Date: 2015-01-04 21:49:36 UTC

* Resynchronise with Debian. Remaining changes:
  - debian/rules: Manually create the doxygen output directory, otherwise
    we get weird build failures when running parallel builds.
  - Build a python-subversion-dbg package.
  - Build-depend on python-all-dbg.
  - Only build on requested python versions (X-Python-Versions:).
  - debian/patches/verbose-tests.diff: Make tests verbose.

Author: Colin Watson
Revision Date: 2014-08-21 13:52:59 UTC

Rebuild for Perl 5.20.0.

Author: Colin Watson
Revision Date: 2014-08-21 13:52:59 UTC

Rebuild for Perl 5.20.0.

Author: Matthias Klose
Revision Date: 2014-02-24 11:05:59 UTC

Run the tests on powerpc again.

Author: Matthias Klose
Revision Date: 2014-02-24 11:05:59 UTC

Run the tests on powerpc again.

Author: William Grant
Revision Date: 2013-10-15 23:25:04 UTC

Re-enable kwallet support on arm64 now that kde4libs is built.

Author: William Grant
Revision Date: 2013-10-15 23:25:04 UTC

Re-enable kwallet support on arm64 now that kde4libs is built.

Author: Marc Deslauriers
Revision Date: 2013-06-21 13:08:20 UTC

* SECURITY UPDATE: denial of service in mod_dav_svn
  - debian/patches/CVE-2013-1845.patch: handle multiple calls in
    subversion/mod_dav_svn/deadprops.c.
  - CVE-2013-1845
* SECURITY UPDATE: denial of service in mod_dav_svn via LOCK
  - debian/patches/CVE-2013-1846_1847.patch: properly validate locks in
    subversion/mod_dav_svn/lock.c.
  - CVE-2013-1846
  - CVE-2013-1847
* SECURITY UPDATE: denial of service in mod_dav_svn via PROPFIND
  - debian/patches/CVE-2013-1849.patch: validate type in
    subversion/mod_dav_svn/liveprops.c.
  - CVE-2013-1849
* SECURITY UPDATE: denial of service in mod_dav_svn via log REPORT
  - debian/patches/CVE-2013-1884.patch: fix error handling in
    subversion/mod_dav_svn/reports/log.c.
  - CVE-2013-1884
* SECURITY UPDATE: repo corruption via newline chars in filenames
  - debian/patches/CVE-2013-1968.patch: properly escape paths in
    subversion/libsvn_fs_fs/tree.c, added test to
    subversion/tests/libsvn_fs/fs-test.c.
  - CVE-2013-1968
* SECURITY UPDATE: denial of service via closed connection
  - debian/patches/CVE-2013-2112.patch: check for closed connections in
    subversion/svnserve/main.c.
  - CVE-2013-2112

Author: Marc Deslauriers
Revision Date: 2013-06-21 13:21:08 UTC

* SECURITY UPDATE: denial of service in mod_dav_svn
  - debian/patches/CVE-2013-1845.patch: handle multiple calls in
    subversion/mod_dav_svn/deadprops.c.
  - CVE-2013-1845
* SECURITY UPDATE: denial of service in mod_dav_svn via LOCK
  - debian/patches/CVE-2013-1846_1847.patch: properly validate locks in
    subversion/mod_dav_svn/lock.c.
  - CVE-2013-1846
  - CVE-2013-1847
* SECURITY UPDATE: denial of service in mod_dav_svn via PROPFIND
  - debian/patches/CVE-2013-1849.patch: validate type in
    subversion/mod_dav_svn/liveprops.c.
  - CVE-2013-1849
* SECURITY UPDATE: denial of service in mod_dav_svn via log REPORT
  - debian/patches/CVE-2013-1884.patch: fix error handling in
    subversion/mod_dav_svn/reports/log.c.
  - CVE-2013-1884
* SECURITY UPDATE: repo corruption via newline chars in filenames
  - debian/patches/CVE-2013-1968.patch: properly escape paths in
    subversion/libsvn_fs_fs/tree.c, added test to
    subversion/tests/libsvn_fs/fs-test.c.
  - CVE-2013-1968
* SECURITY UPDATE: denial of service via closed connection
  - debian/patches/CVE-2013-2112.patch: check for closed connections in
    subversion/svnserve/main.c.
  - CVE-2013-2112

Author: Marc Deslauriers
Revision Date: 2013-06-21 13:08:20 UTC

* SECURITY UPDATE: denial of service in mod_dav_svn
  - debian/patches/CVE-2013-1845.patch: handle multiple calls in
    subversion/mod_dav_svn/deadprops.c.
  - CVE-2013-1845
* SECURITY UPDATE: denial of service in mod_dav_svn via LOCK
  - debian/patches/CVE-2013-1846_1847.patch: properly validate locks in
    subversion/mod_dav_svn/lock.c.
  - CVE-2013-1846
  - CVE-2013-1847
* SECURITY UPDATE: denial of service in mod_dav_svn via PROPFIND
  - debian/patches/CVE-2013-1849.patch: validate type in
    subversion/mod_dav_svn/liveprops.c.
  - CVE-2013-1849
* SECURITY UPDATE: denial of service in mod_dav_svn via log REPORT
  - debian/patches/CVE-2013-1884.patch: fix error handling in
    subversion/mod_dav_svn/reports/log.c.
  - CVE-2013-1884
* SECURITY UPDATE: repo corruption via newline chars in filenames
  - debian/patches/CVE-2013-1968.patch: properly escape paths in
    subversion/libsvn_fs_fs/tree.c, added test to
    subversion/tests/libsvn_fs/fs-test.c.
  - CVE-2013-1968
* SECURITY UPDATE: denial of service via closed connection
  - debian/patches/CVE-2013-2112.patch: check for closed connections in
    subversion/svnserve/main.c.
  - CVE-2013-2112

Author: Marc Deslauriers
Revision Date: 2013-06-21 13:21:08 UTC

* SECURITY UPDATE: denial of service in mod_dav_svn
  - debian/patches/CVE-2013-1845.patch: handle multiple calls in
    subversion/mod_dav_svn/deadprops.c.
  - CVE-2013-1845
* SECURITY UPDATE: denial of service in mod_dav_svn via LOCK
  - debian/patches/CVE-2013-1846_1847.patch: properly validate locks in
    subversion/mod_dav_svn/lock.c.
  - CVE-2013-1846
  - CVE-2013-1847
* SECURITY UPDATE: denial of service in mod_dav_svn via PROPFIND
  - debian/patches/CVE-2013-1849.patch: validate type in
    subversion/mod_dav_svn/liveprops.c.
  - CVE-2013-1849
* SECURITY UPDATE: denial of service in mod_dav_svn via log REPORT
  - debian/patches/CVE-2013-1884.patch: fix error handling in
    subversion/mod_dav_svn/reports/log.c.
  - CVE-2013-1884
* SECURITY UPDATE: repo corruption via newline chars in filenames
  - debian/patches/CVE-2013-1968.patch: properly escape paths in
    subversion/libsvn_fs_fs/tree.c, added test to
    subversion/tests/libsvn_fs/fs-test.c.
  - CVE-2013-1968
* SECURITY UPDATE: denial of service via closed connection
  - debian/patches/CVE-2013-2112.patch: check for closed connections in
    subversion/svnserve/main.c.
  - CVE-2013-2112

Author: Max Bowsher
Revision Date: 2013-03-23 23:18:08 UTC

Merge 1.7.8-0svn2

Author: Max Bowsher
Revision Date: 2013-03-23 23:25:04 UTC

Merge 1.7.8-0svn2

Author: Max Bowsher
Revision Date: 2013-03-23 23:23:43 UTC

Merge 1.7.8-0svn2

Author: Max Bowsher
Revision Date: 2013-03-23 23:18:08 UTC

Merge 1.7.8-0svn2

Author: Chris J Arges
Revision Date: 2013-01-17 12:25:15 UTC

Fix python multi-arch includes issues.

Author: Chris J Arges
Revision Date: 2013-01-17 12:25:15 UTC

Fix python multi-arch includes issues.

Author: Colin Watson
Revision Date: 2012-09-28 11:53:18 UTC

Drop svn2cl to Suggests; we don't particularly need it in Ubuntu main
(LP: #1048824).

Author: Julian Taylor
Revision Date: 2012-02-10 12:39:33 UTC

patches/sasl-mem-handling: patch from 1.6.17dfsg-2 to fix a crash with
svn:// URLs and SASL authentication. (LP: #881862)

Author: Julian Taylor
Revision Date: 2012-02-10 12:39:33 UTC

patches/sasl-mem-handling: patch from 1.6.17dfsg-2 to fix a crash with
svn:// URLs and SASL authentication. (LP: #881862)

Author: Matthias Klose
Revision Date: 2011-12-17 15:01:54 UTC

Build using dh_python2

Author: Marc Deslauriers
Revision Date: 2011-06-02 13:15:00 UTC

* SECURITY UPDATE: denial of service via baselined WebDAV resource
  request
  - debian/patches/CVE-2011-1752.patch: disallow GETs of baselined
    versions of resources in subversion/mod_dav_svn/repos.c.
  - CVE-2011-1752
* SECURITY UPDATE: mod_dav_svn resource exhaustion via infinite loop
  - debian/patches/CVE-2011-1783.patch: validate path in
    subversion/libsvn_repos/authz.c.
  - CVE-2011-1783
* SECURITY UPDATE: mod_dav_svn permissions bypass via incorrect
  resource URL
  - debian/patches/CVE-2011-1921.patch: validate path in
    subversion/mod_dav_svn/authz.c.
  - CVE-2011-1921

Author: Marc Deslauriers
Revision Date: 2011-06-02 13:15:00 UTC

* SECURITY UPDATE: denial of service via baselined WebDAV resource
  request
  - debian/patches/CVE-2011-1752.patch: disallow GETs of baselined
    versions of resources in subversion/mod_dav_svn/repos.c.
  - CVE-2011-1752
* SECURITY UPDATE: mod_dav_svn resource exhaustion via infinite loop
  - debian/patches/CVE-2011-1783.patch: validate path in
    subversion/libsvn_repos/authz.c.
  - CVE-2011-1783
* SECURITY UPDATE: mod_dav_svn permissions bypass via incorrect
  resource URL
  - debian/patches/CVE-2011-1921.patch: validate path in
    subversion/mod_dav_svn/authz.c.
  - CVE-2011-1921

Author: Barry Warsaw
Revision Date: 2011-09-14 22:52:55 UTC

No change rebuild for LTS PPA.

Author: Marc Deslauriers
Revision Date: 2011-08-05 10:53:00 UTC

* SECURITY UPDATE: denial of service via baselined WebDAV resource
  request
  - debian/patches/CVE-2011-1752.patch: disallow GETs of baselined
    versions of resources in subversion/mod_dav_svn/repos.c.
  - CVE-2011-1752
* SECURITY UPDATE: mod_dav_svn resource exhaustion via infinite loop
  - debian/patches/CVE-2011-1783.patch: validate path in
    subversion/libsvn_repos/authz.c.
  - CVE-2011-1783
* SECURITY UPDATE: mod_dav_svn permissions bypass via incorrect
  resource URL
  - debian/patches/CVE-2011-1921.patch: validate path in
    subversion/mod_dav_svn/authz.c.
  - CVE-2011-1921

Author: Marc Deslauriers
Revision Date: 2011-06-02 13:27:51 UTC

* SECURITY UPDATE: denial of service via baselined WebDAV resource
  request
  - debian/patches/CVE-2011-1752.patch: disallow GETs of baselined
    versions of resources in subversion/mod_dav_svn/repos.c.
  - CVE-2011-1752
* SECURITY UPDATE: mod_dav_svn resource exhaustion via infinite loop
  - debian/patches/CVE-2011-1783.patch: validate path in
    subversion/libsvn_repos/authz.c.
  - CVE-2011-1783
* SECURITY UPDATE: mod_dav_svn permissions bypass via incorrect
  resource URL
  - debian/patches/CVE-2011-1921.patch: validate path in
    subversion/mod_dav_svn/authz.c.
  - CVE-2011-1921

Author: Marc Deslauriers
Revision Date: 2011-06-02 13:27:51 UTC

* SECURITY UPDATE: denial of service via baselined WebDAV resource
  request
  - debian/patches/CVE-2011-1752.patch: disallow GETs of baselined
    versions of resources in subversion/mod_dav_svn/repos.c.
  - CVE-2011-1752
* SECURITY UPDATE: mod_dav_svn resource exhaustion via infinite loop
  - debian/patches/CVE-2011-1783.patch: validate path in
    subversion/libsvn_repos/authz.c.
  - CVE-2011-1783
* SECURITY UPDATE: mod_dav_svn permissions bypass via incorrect
  resource URL
  - debian/patches/CVE-2011-1921.patch: validate path in
    subversion/mod_dav_svn/authz.c.
  - CVE-2011-1921

Author: Marc Deslauriers
Revision Date: 2011-06-02 13:25:34 UTC

* SECURITY UPDATE: denial of service via baselined WebDAV resource
  request
  - debian/patches/CVE-2011-1752.patch: disallow GETs of baselined
    versions of resources in subversion/mod_dav_svn/repos.c.
  - CVE-2011-1752
* SECURITY UPDATE: mod_dav_svn resource exhaustion via infinite loop
  - debian/patches/CVE-2011-1783.patch: validate path in
    subversion/libsvn_repos/authz.c.
  - CVE-2011-1783
* SECURITY UPDATE: mod_dav_svn permissions bypass via incorrect
  resource URL
  - debian/patches/CVE-2011-1921.patch: validate path in
    subversion/mod_dav_svn/authz.c.
  - CVE-2011-1921

Author: Marc Deslauriers
Revision Date: 2011-06-02 13:25:34 UTC

* SECURITY UPDATE: denial of service via baselined WebDAV resource
  request
  - debian/patches/CVE-2011-1752.patch: disallow GETs of baselined
    versions of resources in subversion/mod_dav_svn/repos.c.
  - CVE-2011-1752
* SECURITY UPDATE: mod_dav_svn resource exhaustion via infinite loop
  - debian/patches/CVE-2011-1783.patch: validate path in
    subversion/libsvn_repos/authz.c.
  - CVE-2011-1783
* SECURITY UPDATE: mod_dav_svn permissions bypass via incorrect
  resource URL
  - debian/patches/CVE-2011-1921.patch: validate path in
    subversion/mod_dav_svn/authz.c.
  - CVE-2011-1921

Author: Michael Diers
Revision Date: 2011-03-22 10:58:39 UTC

Merge Debian (1.6.16dfsg-1).

Author: Marc Deslauriers
Revision Date: 2011-03-22 08:25:32 UTC

* SECURITY UPDATE: denial of service via request containing lock token
  - debian/patches/CVE-2011-0715.patch: correctly handle locks being
    passed when authn isn't enabled in subversion/mod_dav_svn/repos.c,
    subversion/mod_dav_svn/version.c.
  - CVE-2011-0715

Author: Marc Deslauriers
Revision Date: 2011-03-22 08:25:32 UTC

* SECURITY UPDATE: denial of service via request containing lock token
  - debian/patches/CVE-2011-0715.patch: correctly handle locks being
    passed when authn isn't enabled in subversion/mod_dav_svn/repos.c,
    subversion/mod_dav_svn/version.c.
  - CVE-2011-0715

Author: Marc Deslauriers
Revision Date: 2011-03-22 08:14:06 UTC

* SECURITY UPDATE: denial of service via request containing lock token
  - debian/patches/CVE-2011-0715.dpatch: correctly handle locks being
    passed when authn isn't enabled in subversion/mod_dav_svn/repos.c,
    subversion/mod_dav_svn/version.c.
  - CVE-2011-0715

Author: Marc Deslauriers
Revision Date: 2011-03-22 08:14:06 UTC

* SECURITY UPDATE: denial of service via request containing lock token
  - debian/patches/CVE-2011-0715.dpatch: correctly handle locks being
    passed when authn isn't enabled in subversion/mod_dav_svn/repos.c,
    subversion/mod_dav_svn/version.c.
  - CVE-2011-0715

Author: Marc Deslauriers
Revision Date: 2011-03-21 16:55:09 UTC

* SECURITY UPDATE: denial of service via request containing lock token
  - debian/patches/CVE-2011-0715.patch: correctly handle locks being
    passed when authn isn't enabled in subversion/mod_dav_svn/repos.c,
    subversion/mod_dav_svn/version.c.
  - CVE-2011-0715

Author: Marc Deslauriers
Revision Date: 2011-03-21 16:55:09 UTC

* SECURITY UPDATE: denial of service via request containing lock token
  - debian/patches/CVE-2011-0715.patch: correctly handle locks being
    passed when authn isn't enabled in subversion/mod_dav_svn/repos.c,
    subversion/mod_dav_svn/version.c.
  - CVE-2011-0715

Author: Marc Deslauriers
Revision Date: 2011-03-21 13:03:32 UTC

* SECURITY UPDATE: denial of service via request containing lock token
  - debian/patches/CVE-2011-0715.patch: correctly handle locks being
    passed when authn isn't enabled in subversion/mod_dav_svn/repos.c,
    subversion/mod_dav_svn/version.c.
  - CVE-2011-0715

Author: Max Bowsher
Revision Date: 2010-07-02 06:54:21 UTC

* Merge from debian testing (LP: #600914), remaining changes:
  - Create pot file on build.
  - Build a python-subversion-dbg package.
  - (Build-)depend on default-jre-headless/-jdk.
  - Do not apply java-build patch.
  - debian/rules: Manually create the doxygen output directory, otherwise
    we get weird build failures when running parallel builds.
  - Disable the serf backend because serf is in universe.
  - Amend the XS-Python-Version line to ">= 2.4" rather than explicit
    versions.

Author: Arnd
Revision Date: 2009-08-17 18:48:17 UTC

Backported security fix from intrepid (LP: #411849)

Author: Matthias Klose
Revision Date: 2009-02-23 17:39:04 UTC

Build for python2.6.

Author: Matthias Klose
Revision Date: 2008-07-31 08:29:58 UTC

* (Build-)depend on default-jre-headless/-jdk.
* Do not apply java-build patch.

Author: Matthias Klose
Revision Date: 2008-03-11 06:28:25 UTC

* Merge with Debian; remaining changes:
  - Create pot file on build.
  - Fix bashisms in tools/po/po-update.sh.
  - Build for all supported python versions.
  - Build a python-subversion-dbg package.
  - debian/rules: Do not let the failed ruby swig tests fail the build. They
    are currently broken, work in progress in Debian (Debian #453166).
  - Drop hppa java support.

Author: Matthias Klose
Revision Date: 2007-09-27 11:10:46 UTC

Build separate libsvn_swig_py libraries for each python version.
LP: #91848.

Author: Matthias Klose
Revision Date: 2007-03-20 06:47:26 UTC

* Merge from Debian experimental; remaining changes:
  - Create pot file on build.
  - Fix bashisms in tools/po/po-update.sh.
  - Build for all supported python versions.
  - Build a python-subversion-dbg package.

Author: Matthias Klose
Revision Date: 2006-10-04 21:36:23 UTC

Backport improved python bindings (Jelmer Vernooij),
cleanup patch and adapt for 1.3.2. Ubuntu #51304.

Author: Adam Conrad
Revision Date: 2006-05-08 14:07:51 UTC

* Merge new upstream version from Debian, UVF exception approved by mdz.
* Very (very, very) carefully merge our Java-related changes with Debian's
  rather different Java changes to produce something that should work.
* Create a python2.4-subversion transitional package to smooth upgrades.

Author: Michael Vogt
Revision Date: 2005-06-29 13:09:32 UTC

Resynchronise with Debian.

Author: Matthias Klose
Revision Date: 2005-01-10 08:31:59 UTC

python2.4-subversion: Add conflict to python2.3-subversion.
Closes: #4957.

Author: Thom May
Revision Date: 2004-10-11 17:34:43 UTC

Fix potential repository corruption bug (Warty #2259)

Author: Scott Kitterman
Revision Date: 2009-12-12 13:17:31 UTC

Changelog tweaks by my sponsor prior to uploading.

Author: Anders Kaseorg
Revision Date: 2009-08-24 19:09:22 UTC

* Merge from debian unstable (LP: #406245), remaining changes:
  - Create pot file on build.
  - Build a python-subversion-dbg package.
  - (Build-)depend on default-jre-headless/-jdk.
  - Do not apply java-build patch.
  - Don't build for python2.4, not in main.
  - debian/rules: Manually create the doxygen output directory, otherwise
    we get weird build failures when running parallel builds.
* Disable the serf backend because serf is in universe.

Author: Kees Cook
Revision Date: 2009-08-06 08:58:47 UTC

* SECURITY UPDATE: remote arbitrary code execution via integer overflow.
  - added debian/patches/fix-binary-diff-security, backported from
    upstream.
  - CVE-2009-2411

Author: Kees Cook
Revision Date: 2009-08-06 08:58:47 UTC

* SECURITY UPDATE: remote arbitrary code execution via integer overflow.
  - added debian/patches/fix-binary-diff-security, backported from
    upstream.
  - CVE-2009-2411

Author: Kees Cook
Revision Date: 2009-08-06 08:58:47 UTC

* SECURITY UPDATE: remote arbitrary code execution via integer overflow.
  - added debian/patches/fix-binary-diff-security, backported from
    upstream.
  - CVE-2009-2411

Author: Kees Cook
Revision Date: 2009-08-06 08:58:47 UTC

* SECURITY UPDATE: remote arbitrary code execution via integer overflow.
  - added debian/patches/fix-binary-diff-security, backported from
    upstream.
  - CVE-2009-2411

Author: Matthias Klose
Revision Date: 2007-10-14 14:57:20 UTC

Configure with --disable-neon-version-check, to allow use of neon 0.26.3.
The neon 0.26.3 package did enter the archive after subversion was built
for feisty. Without it, subversion silently builds without the ra_dav
module. LP: #152394.

Author: Matthias Klose
Revision Date: 2007-10-14 14:57:20 UTC

Configure with --disable-neon-version-check, to allow use of neon 0.26.3.
The neon 0.26.3 package did enter the archive after subversion was built
for feisty. Without it, subversion silently builds without the ra_dav
module. LP: #152394.

Author: Scott Kitterman
Revision Date: 2007-08-03 11:10:19 UTC

Automated backport upload; no source changes.