subversion-server-1.14.1-150400.5.3.1<>,gYj9p9|Cf=Ԛ:l)WͪSʀC{'{|Lƿ{<~^w׆BV(KVh-n$GxSPcd*~mDjy 0 9wQ}[Pnzn̪[J>H= `CG2x) )sDZ L@>Xe{Jht_y{U_k2EP|\\;TA<5<`>>w ?vd ( S! 7Cagp     @X(8R9XR: aRFqGqHqIqXqYq\r ]r8^rbrcsudsesftltutvt0wuxvyv,zvvvvvCsubversion-server1.14.1150400.5.3.1Apache server module for Subversion serverThe subversion-server package adds the Subversion server Apache module to the Apache directories and configuration.gYj9h02-armsrv3&SUSE Linux Enterprise 15SUSE LLC Apache-2.0https://www.suse.com/Unspecifiedhttps://subversion.apache.orglinuxaarch64  A큤AgYSU jgYSgYSgYSgYS69e6b833726dbd27031cc106dc2f97eea641f632776356025ab89e5d7527e57402b47630b544b3a3cf32ecde3d5426585d87fa517c04146bf958462e892267be91a29e5f9b939347926cda747d1c87947a0c0de8d9019f0c5792ba6e8bc79543c3a993f95cea4195912a905e3aec0f8591290a556a35bd452bf02c560174a63erootrootrootrootrootrootrootrootrootrootrootrootsubversion-1.14.1-150400.5.3.1.src.rpmconfig(subversion-server)subversion-serversubversion-server(aarch-64)@@@@@@@@@@@    apache2apache_mmn_20120211config(subversion-server)ld-linux-aarch64.so.1()(64bit)ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)libapr-1.so.0()(64bit)libaprutil-1.so.0()(64bit)libc.so.6()(64bit)libc.so.6(GLIBC_2.17)(64bit)libpthread.so.0()(64bit)libsvn_delta-1.so.0()(64bit)libsvn_fs-1.so.0()(64bit)libsvn_repos-1.so.0()(64bit)libsvn_subr-1.so.0()(64bit)rpmlib(CompressedFileNames)rpmlib(FileDigests)rpmlib(PayloadFilesHavePrefix)rpmlib(PayloadIsXz)subversion1.14.1-150400.5.3.13.0.4-14.6.0-14.0-15.2-11.14.14.14.3gX-@bL/@b aW@apah`#_0@__o-@_m_k8_X_R,@_^^U@^@^0^@]]@]:@]9]9]4S\\\\A\8@[@[[@[~[Xf@ZZ>Z8@Z@Y@YdY@Y@YJY@Y{'@Y_wY_wYBvXƉX[@X>@X>@W.@Ws@W!@VVpV0V@U6@U@U@UUL@UL@UL@UW1@U&iUU@U TTTPT!Tq@T@TTmTT@antonio.teixeira@suse.comdanilo.spinella@suse.comdanilo.spinella@suse.comdanilo.spinella@suse.comgmbr3@opensuse.organdreas.stieger@gmx.demmachova@suse.compgajdos@suse.comtchvatal@suse.comd_werner@gmx.netd_werner@gmx.netdmueller@suse.comalarrosa@suse.comalarrosa@suse.comcallumjfarmer13@gmail.comtchvatal@suse.commliska@suse.cztchvatal@suse.commliska@suse.cztchvatal@suse.comandreas.stieger@gmx.defranz.sirl-obs@lauterbach.commatthias.gerstner@suse.comtchvatal@suse.comtchvatal@suse.comantoine.belvire@opensuse.organdreas.stieger@gmx.demvetter@suse.comolaf@aepfle.deastieger@suse.comtchvatal@suse.comastieger@suse.comastieger@suse.comfstrba@suse.comastieger@suse.comtchvatal@suse.comantoine.belvire@opensuse.orgastieger@suse.comfstrba@suse.comrbrown@suse.commpluskal@suse.comvcizek@suse.comtchvatal@suse.comtchvatal@suse.comastieger@suse.comtchvatal@suse.comastieger@suse.comastieger@suse.comastieger@suse.comnmoudra@suse.comtchvatal@suse.comstsp@elego.deastieger@suse.comtchvatal@suse.comtchvatal@suse.comtchvatal@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comtchvatal@suse.comtchvatal@suse.comastieger@suse.comstsp@elego.destsp@elego.destsp@elego.deastieger@suse.comastieger@suse.comtchvatal@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.comastieger@suse.combwiedemann@suse.comtchvatal@suse.comandreas.stieger@gmx.deledest@gmail.comandreas.stieger@gmx.de- Fix CVE-2024-46901 mod_dav_svn denial-of-service via control characters in paths (CVE-2024-46901, bsc#1234317) * subversion-CVE-2024-46901.patch- Fix CVE-2022-24070 mod_dav_svn is vulnerable to memory corruption (CVE-2022-24070, bsc#1197940) * subversion-CVE-2022-24070.patch - Fix CVE-2021-28544 SVN authz protected copyfrom paths regression (CVE-2021-28544, bsc#1197939) * subversion-CVE-2021-28544.patch- Fix testCrash_RequestChannel_nativeRead_AfterException test on aarch64 and ppc64le, bsc#1195486 bsc#1193778 * fix-javahl-test.patch- The following issues have already been fixed in this package but weren't previously mentioned in the changes file: * bsc#1185052- Change to using systemd-sysusers- always build with kwallet support, no longer make a distrinction between openSUSE and SLE (boo#1191282)- Update to 1.14.1 * Fix non-deterministic generation of mergeinfo * Fix invalid SQL quoting in working copy upgrade system * Convert filename for editor from UTF-8 to the locale's encoding * Make the hot-backup.py script work with Python 3 * Fix an uninitialized read in FSFS * Fix a potential NULL dereference in the config file parser (bsc#1181687, CVE-2020-17525) - Rebase subversion-no-build-date.patch- use system apache rpm macros- Enable kde integration from 15-SP3 and newer releases jsc#SLE-11654- update the path of the PIDFile in the svnserve.service file: change /var/run/svnserve/svnserve.pid to /run/svnserve/svnserve.pid- update the tmpfiles.d/ drop-in file as requested by the rpm output /usr/lib/tmpfiles.d/svnserve.conf:1: Line references path below legacy directory /var/run/, updating /var/run/svnserve → /run/svnserve;- speed up testsuite run by using /dev/shm - disable output aggregation that spec-cleaner introduces in checks- Fix jira reference to SLE-11901- Add patch to remove dependency on kdelibs4support just to run kf5-config to find out that headers are in /usr/include and libraries are in /usr/lib(64) (jsc#SLE-11901): * remove-kdelibs4support-dependency.patch- Fixes for %_libexecdir changing to /usr/libexec (bsc#1174075)- Update to 1.14.0: * Support for Python 3.x * Support for Python 2.7 is being phased out * New Build-Time Dependency: py3c * Many enhancements and bug fixes - Drop patches: * subversion-1.12.0-swig-4.patch * ruby27-warnings.patch * ruby-includes.patch - Refresh patch subversion-no-build-date.patch- Add disable-fs-fs-pack-test.patch in order to fix boo#1170834.- Try to get building with ruby 2.7 bsc#1169446 - Add patches: * ruby27-warnings.patch * ruby-includes.patch- Fix boo#1167467 by gcc10-do-not-optimize-get_externals_to_pin.patch.- Disable dependency on ctypesgen which is borked with new pythons- Apache Subversion 1.13.0: * New 'svnadmin rev-size' command to report revision size * Performance improvement for 'svn st' etc., in WC SQLite DB * Fix 'svn patch' setting mode 0600 on patched files with props * Fix "svn diff --changelist ARG" broken in subdirectories * Fix misleading 'redirect cycle' error on a non-repository URL * svnserve: Report some errors that were previously ignored * Make server code more resilient to malformed paths and URLs * Make dump stream parser more resilient to malformed dump stream * mod_dav_svn: Fix missing Last-Modified header on 'external' GET requests * Fix excessive memory usage in some cases reading binary data- Enable build and check with swig-3: * Only enable subversion-1.12.0-swig-4.patch for Tumbleweed * 'make check-swig-py' doesn't pass with swig-4 - Enable 'make check-swig-rb' everywhere again- removal of SuSEfirewall2 service, since SuSEfirewall2 has been replaced by firewalld, see [1]. [1]: https://lists.opensuse.org/opensuse-factory/2019-01/msg00490.html- Add patches to fix bsc#1142743 and bsc#1142721 CVE-2019-0203 CVE-2018-11782: * CVE-2018-11782.patch * CVE-2019-0203.patch- Update to 1.12.2: * Fix conflict resolver bug: local and incoming edits swapped. (r1863285) * Fix memory lifetime problem in a libsvn_wc error code path. (r1863287) * CVE-2018-11782 bsc#1142743 * CVE-2019-0203 bsc#1142721- Add subversion-1.12.0-swig-4.patch: Fix build with Swig 4 (boo#1135747).- Apache Subversion 1.12.0: * 'move vs. move' merge conflicts can now be resolve * 'svn --version --verbose' shows loaded libraries on Linux * 'svnrdump' can read/write a file instead of stdin/stdout * 'svn list' tries to not truncate the author's name * 'svn list' can show sizes in base-2 unit suffixes * 'svn info' shows the size of files in the repository * 'svn cleanup' can remove read-only directories * Repos-to-WC copy with --parents works with absent target * Repos-to-WC copy from foreign repo with peg/operative revs * Ignore empty group definitions in authz files * svnauthz: warn about empty groups in authz files * Storing passwords in plain text on disk is disabled by default- bsc#1130588: Require shadow instead of old pwdutils- Install pkgconfig into libdir instead of datadir with subversion-pkgconfig.patch- Apache Subversion 1.11.1: * Add conflict resolver support for added vs unversioned file * Add conflict resolver support for unversioned directories * Various client-side bug fixes for working copy operations * Server: fix unexpected SVN_ERR_FS_NOT_DIRECTORY errors * Server: fix mod_dav_svn's SVNUseUTF8 had no effect in some setups * Server: fix a crash in mod_http2 * JavaHL bindings: Fix crash in client code when using external diff - Fixed a vulnerability that allowed malicious SVN clients to trigger a crash in mod_dav_svn by omitting the root path from a recursive directory listing request (CVE-2018-11803 bsc#1122842)- Move the bash completion to /usr as per rpmlint warning- Apache Subversion 1.11.0: * Shelving is no longer based on patch files * Shelves created on 1.10 are not compatible * New feature: Checkpointing * New viewspec output command * Improvements to tree conflict resolutio * 'patch' can now read non-pretty-printed svn:mergeinfo diffs * Better error when http:// URL is not a Subversion repository * Add 'schedule' and 'depth' items to 'svn info --show-item' * Allow the client cert password to be saved * Various bug fixes * On-disk caching of plaintext passwords and passphrases is now disabled by default, but users can explicitly allow this behavior via runtime configuration - drop upstreamed subversion-1.10.2-java10.patch- Apache Subversion 1.10.3: * Store the HTTPS client cert password * Fix shelving when custom diff command is configured * Fix conflict resolver crashes * Fix conflict resolver endless scan in some cases * Fix "Accept incoming deletion" on locally deleted file * Fix "resolver adds unrelated moves to move target list" * Reject bad PUT before CHECKOUT in v1 HTTP protocol * Let 'svnadmin recover' prune the rep-cache even if disabled * Allow commands like 'svn ci --file X' to work when X is a FIFO * 'svnadmin verify --keep-going --quiet' shows an error summary * Fix error in german translation for 'svn help merge'- Added patches: * subversion-1.10.2-java10.patch + Partly upstream patch to remove javah requirement to build Subversion Java bindings. + Apply only for builds with jdk10+ that don't have javah tool any more * subversion-1.10.2-javadoc.patch + Avoid loading Internet URLs during the build - Allow building with all Java versions starting with 1.6- Apache Subversion 1.10.2: * Correctly claim to offer Gnome Keyring support with libsecret * Fix segfault using Gnome Keyring with libsecret * Fix JavaHL local refs capacity warning when unparsing externals * Prune externals after 'update --set-depth=exclude' * Fix "conflict resolver searches too far back ..." - Dropped patches that are included in the upstream release: * subversion-1.10.0-fix-svn-version-gnome-keyring.patch- Use macro to compile python objects, do not do it by hand- Remove useless build dependency on pkgconfig(bash-completion). - Make subversion-bash-completion requires bash-completion, not pkgconfig(bash-completion).- Apache Subversion 1.10.0: * new conflict resolver * Many bug fixes and enhancements * lz4 compression for the repositories * https://subversion.apache.org/docs/release-notes/1.10.html - Packaging changes; * Convert dependencies to pkgconfig counterparts * Add dependency on liblz4 and utf8proc * Use %license (boo#1082318) * build with KDE5 KWallet support - Refresh patches: * subversion-1.8.0-rpath.patch * subversion-no-build-date.patch * subversion-fix-parallel-build-support-for-perl-bindings.patch * subversion-perl-underlinking.patch - dropped patches: * subversion-1.8.11-autocheck-time.patch, upstream * subversion-1.9.0-allow-httpd-2.4.6.patch, no longer required - Add subversion-1.10.0-fix-svn-version-gnome-keyring.patch to list GNOME keyring support in svn --version when using libsecret- BuildConflict with jdk10 or higher. The build uses extensively the javah tool which is removed in jdk10.- Replace references to /var/adm/fillup-templates with new %_fillupdir macro (boo#1069468)- Explicitly require python2- Disable kwallet support on openSUSE built with openssl 1.1, because otherwise the libopenssl pulled in by libserf and libqt4 create a conflict (boo#1042629)- Switch the KDE condition to match sle15 too- Remove user changing option inherited from sysconfig from README * Was removed as it does not work on systemd, new section is there describing current approach- Apache Subversion 1.9.7: * CVE-2017-9800: A remote attacker could have caused svn clients to execute arbitrary code via specially crafted URLs in svn:externals and svn:sync-from-url properties. (bsc#1051362)- Apache Subversion 1.8.19 (bsc#1051362): * A malicious, compromised server or MITM may cause svn client to execute arbitrary commands by sending repository content with svn:externals definitions pointing to crafted svn+ssh URLs. CVE-2017-9800- Add instructions for running svnserve as a user different from "svn", and remove sysconfig variables that are no longer effective with the systemd unit. bsc#1049448- Apache Subversion 1.9.6 (bsc#1026936): This change makes Subversion resilient to collision attacks, including SHA-1 collision attacks such as . https://subversion.apache.org/faq#shattered-sha1 * fsfs: never attempt to share directory representations * fsfs: make consistency independent of hash algorithms * cp/mv: improve error message when target is an unversioned dir * merge: reduce memory usage with large amounts of mergeinfo * 'svnadmin freeze': document the purpose more clearly * dump: fix segfault when a revision has no revprops * fsfs: improve error message upon failure to open rep-cache * work around an APR bug related to file truncation * javahl: follow redirects when opening a connection- Apache Subversion 1.8.18 (bsc#1026936): This change makes Subversion resilient to collision attacks, including SHA-1 collision attacks such as . https://subversion.apache.org/faq#shattered-sha1 * fsfs: never attempt to share directory representations * fsfs: make consistency independent of hash algorithms * work around an APR bug related to file truncation- Deleted all xinetd related entries as it is not desired anymore * its obsolete due to socket based service * socket based service is not needed at this pkg- Update to build with new RPM in Factory - Provide the kwallet auth in main pkg in case kde integration is disabled - Use apache2-rpm-macros to get the apache variables- Package the 'svnauthz' binary.- Apache Subversion 1.8.17: * bsc#1011552 CVE-2016-8734 Unrestricted XML entity expansion in mod_dontdothat and Subversion clients using http(s):// * Client-side bugfixes: + fix handling of newly secured subdirectories in working copy + ra_serf: fix deleting directories with many files + gpg-agent: properly handle passwords with percent characters + merge: fix crash when merging to a local add * Server-side bugfixes: + fsfs: fix possible data reconstruction error + svnlook: properly remove tempfiles on diff errors * Client-side and server-side bugfixes: + fix potential memory access bugs * Bindings bugfixes: + javahl: fix temporarily accepting SSL server certificates + swig-pl: do not corrupt "{DATE}" revision variable + swig-pl: fix possible stack corruption * Developer-visible changes: + fix inconsistent behavior of inherited property API + fix patch filter invocation in svn_client_patch() + fix potential build issue with invalid SVN_LOCALE_DIR- Version update to 1.9.5: * bsc#1011552 CVE-2016-8734 Unrestricted XML entity expansion in mod_dontdothat and Subversion clients using http(s):// - Client-side bugfixes: * fix accessing non-existent paths during reintegrate merge (r1766699 et al) * fix handling of newly secured subdirectories in working copy (r1724448) * info: remove trailing whitespace in --show-item=revision (issue #4660) * fix recording wrong revisions for tree conflicts (r1734106) * gpg-agent: improve discovery of gpg-agent sockets (r1766327) * gpg-agent: fix file descriptor leak (r1766323) * resolve: fix --accept=mine-full for binary files (issue #4647) * merge: fix possible crash (issue #4652) * resolve: fix possible crash (r1748514) * fix potential crash in Win32 crash reporter (r1663253 et al) - Server-side bugfixes: * fsfs: fix "offset too large" error during pack (issue #4657) * svnserve: enable hook script environments (r1769152) * fsfs: fix possible data reconstruction error (issue #4658) * fix source of spurious 'incoming edit' tree conflicts (r1770108) * fsfs: improve caching for large directories (r1721285) * fsfs: fix crash when encountering all-zero checksums (r1759686) * fsfs: fix potential source of repository corruptions (r1756266) * mod_dav_svn: fix excessive memory usage with mod_headers/mod_deflate (issue #3084) * mod_dav_svn: reduce memory usage during GET requests (r1757529 et al) * fsfs: fix unexpected "database is locked" errors (r1741096 et al) * fsfs: fix opening old repositories without db/format files (r1720015) - Client-side and server-side bugfixes: * fix possible crash when reading invalid configuration files (r1715777) - Bindings bugfixes: * swig-pl: do not corrupt "{DATE}" revision variable (r1767768) * javahl: fix temporary accepting SSL server certificates (r1764851) * swig-pl: fix possible stack corruption (r1683266, r1683267) - Drop no longer needed patch: * subversion-1.8.11-swig-py-comment-3.patch- Add patch to build with swig3 to fix build on sle12sp2+ * subversion-swig3.patch- Drop syslog.target from After wrt bnc#983938- Apache Subversion 1.9.4, fixing two server-side vulnerabilities: * CVE-2016-2167: svnserve/sasl may authenticate users using the wrong realm (boo#976849) * CVE-2016-2168: Remotely triggerable DoS vulnerability in mod_authz_svn during COPY/MOVE authorization check (boo#976850) - Client-side bugfixes: * diff: support '--summarize --ignore-properties' * checkout: fix performance regression on NFS * gpg-agent: properly handle passwords with percent characters * svn-graph.pl: fix assertion about a non-canonical path * hot-backup.py: better input validation * commit: abort on Ctrl-C in plaintext password prompt * diff: produce proper forward binary diffs with --git * ra_serf: fix deleting directories with many files - Server-side bugfixes: * improve documentation for AuthzSVNGroupsFile and groups-db * fsfs: reduce peak memory usage when listing large directories * fsfs: fix a rare source of incomplete dump files and reports - Client-side and server-side bugfixes: * update INSTALL documentation file * fix potential memory access bugs * fix potential out of bounds read in svn_repos_get_logs5() - Bindings bugfixes: * ignore absent nodes in javahl version of svn status -u - API changes: * properly interpret parameters in svn_wc_get_diff_editor6()- make the subversion package conflict with KWallet and Gnome Keyring packages with do not require matching subversion versions in SLE 12 and openSUSE Leap 42.1 and thus break the main package upon partial upgrade. Fix/workaround for boo#969159- Apache Subversion 1.9.3 This release fixes two security issues: * Remotely triggerable heap overflow and out-of-bounds read caused by integer overflow in the svn:// protocol parser. CVE-2015-5259 [boo#958299] * Remotely triggerable heap overflow and out-of-bounds read in mod_dav_svn caused by integer overflow when parsing skel- encoded request bodies. CVE-2015-5343 [boo#958300] Other changes: * svn: fix possible crash in auth credentials cache * cleanup: avoid unneeded memory growth during pristine cleanup * diff: fix crash when repository is on server root * fix translations for commit notifications * ra_serf: fix crash in multistatus parser * svn: report lock/unlock errors as failures * svn: cleanup user deleted external registrations * svn: allow simple resolving of binary file text conflicts * svnlook: properly remove tempfiles on diff errors * ra_serf: report built- and run-time versions of libserf * ra_serf: set Content-Type header in outgoing requests * svn: fix merging deletes of svn:eol-style CRLF/CR files * ra_local: disable zero-copy code path * mod_authz_svn: fix authz with mod_auth_kerb/mod_auth_ntlm * mod_dav_svn: fix display of process ID in cache statistics * mod_dav_svn: use LimitXMLRequestBody for skel-encoded requests * svnadmin dump: preserve no-op changes * fsfs: avoid unneeded I/O when opening transactions * javahl: fix ABI incompatibilty with 1.8 * javahl: allow non-absolute paths in SVNClient.vacuum * fix patch filter invocation in svn_client_patch() * add @since information to config defines * fix running the tests in compatibility mode * clarify documentation of svn_fs_node_created_rev() * fix overflow detection in svn_stringbuf_remove and _replace * don't ignore some of the parameters to svn_ra_svn_create_conn3- Fix copy-and-paste error in Supplements for GNOME keyring integration- Apache Subversion 1.9.2: * fix a numer of client-side crashes and bugs * checkout: remove unnecessary I/O operation * svn: show utf8proc version in svn --version --verbose * fix reporting for empty representations in svnfsfs stats - upstream keyring updated- Apache Subversion 1.9.1: * Fix crash with GPG-agent with non-canonical $HOME * svn: expose expat and zlib versions in svn --version --verbose * svn: improve help text for 'svn info --show-item' * svnserve: fixed minor typo in help text * Fix an error leak in FSFS verification * Fix incomplete membuffer cache initialization * svnfsfs: fix some bugs and inconsistencies in load-index * Fix memory corruption in copy source SWIG bindings - drop subversion-1.8.14-httpd-version-number-detection.patch, change is upstream - adjust subversion-1.9.0-allow-httpd-2.4.6.patch for upstream changes- Remove support for SLE11 from the spec file - Use supplements instead of suggests on the other side for the password store - Fix kde integration conditional to work nicely on openSUSE Leap- Use suggests instead of recommends to avoid 180+ new pkgs on minimal setup due subversion-password-store bnc#942819- Apache Subversion 1.9.0: * new FSFS format 7 with major overhaul for I/O reduction * prospective blame * FSX experimental repository back-end * many enhangements and bug fixes - subversion-devel now ships pkgconfig files - dependency changes: * serf 1.3.4 * apr, apr-utl 1.3.x * httpd 2.2.x * java 1.6 * Python 2.7 - To continue to allow building against blacklisted httpd 2.4.6 which has the required patches in openSUSE:13.1:Update, update subversion-1.8.9-allow-httpd-2.4.6.patch to subversion-1.9.0-allow-httpd-2.4.6.patch - removed upstreamed patches: * subversion-1.8.10-fix-bashisms.patch * subversion-1.8.11-swig-py-comment.patch * subversion-1.8.11-swig-py-comment-2.patch - adjust subversion-no-build-date.patch - drop subversion-1.8.14-unused-var-authnrequired.patch- Pass --enable-broken-httpd-auth to configure. Assumes all apache2 packages contain security patches regardless of their version number. Should fix the build on SLES12 and perhaps elsewhere.- fix mod_authz_svn build with -Wunused-variable * subversion-1.8.14-unused-var-authnrequired.patch- Apache Subversion 1.8.14 This release fixes two vulnerabilities: * mod_authz_svn: do not leak information in mixed anonymous/authenticated httpd (dav) configurations (CVE-2015-3184) bnc#939514 * do not leak paths that were hidden by path-based authz (CVE-2015-3187) bnc#939517 Non-security fixes: * document svn:autoprops * fix 'svn cp ^/A/D/H@1 ^/A' to properly create A * improve conflict prompts for binary files * improve performance of 'ls -v' * improved Sqlite 3.8.9 query performance * fixed issue #4580: 'svn -v st' on file externals reports "?" for user/rev * mod_dav_svn: do not ignore skel parsing errors * detect invalid svndiff data earlier * prevent possible repository corruption on power/disk failures * fixed issue #4577: Read error with some repository nodes * fixed issue #4531: server-side copy (over dav) is slow * swig-pl: fix some stack memory problems - Refreshed patch subversion-no-build-date.patch - Remove obsoleted patch subversion-1.8.13-fix-sqlite-3.8.9-tests.patch - Add patch subversion-1.8.14-httpd-version-number-detection.patch- disable failing check-swig-rb- fix tests with SQLite 3.8.9, adding subversion-1.8.13-fix-sqlite-3.8.9-tests.patch- Apply sec fixes for bnc#923793 bnc#923794 bnc#923795; CVE-2015-0202 CVE-2015-0248 CVE-2015-0251: * subversion-bnc923793.patch * subversion-bnc923794.patch * subversion-bnc923795.patch- Apache Subversion 1.8.13 This release fixes three vulerabilities: * Subversion HTTP servers with FSFS repositories were vulnerable to a remotely triggerable excessive memory use with certain REPORT requests. (bsc#923793 CVE-2015-0202) * Subversion mod_dav_svn and svnserve were vulnerable to a remotely triggerable assertion DoS vulnerability for certain requests with dynamically evaluated revision numbers. (bsc#923794 CVE-2015-0248) * Subversion HTTP servers allow spoofing svn:author property values for new revisions (bsc#923795 CVE-2015-0251) - Non-security updates: * fixes number of client and server side non-security bugs * improved working copy performanc * reduction of resource use * stability improvements * usability improvements - 1.8.12 was not released- Improve installation of secure password storage plugins for KWallet and GNOME Keyring - Recommend installation of bash completion- Fix running all regression tests with davautocheck.sh and svnserveautocheck.sh when time is a shell built-in but not a command: add subversion-1.8.11-autocheck-time.patch- fix sample configuration comments in subversion.conf [boo#916286]- SLE 11 SP3 build with all regression tests - run swig-py tests where they pass- fix build with swig 3.0.3 and later: * upstream subversion-1.8.11-swig-py-comment.patch * upstream subversion-1.8.11-swig-py-comment-2.patch * partial subversion-1.8.11-swig-py-comment-3.patch There remains a regression in swig 3.0.3 and later which causes check-swig-py to fail - disable these checks.- fix sysconfig file generation (bnc#911620)- Sec update bnc#909935 CVE-2014-3580, CVE-2014-8108 * subversion-CVE-2014-3580.patch * subversion-CVE-2014-8108.patch- Apache Subversion 1.8.11 - This release addresses two security issues: [boo#909935] * CVE-2014-3580: mod_dav_svn DoS from invalid REPORT requests. * CVE-2014-8108: mod_dav_svn DoS from use of invalid transaction names. - Client-side bugfixes: * checkout/update: fix file externals failing to follow history and subsequently silently failing * patch: don't skip targets in valid --git difs * diff: make property output in diffs stable * diff: fix diff of local copied directory with props * diff: fix changelist filter for repos-WC and WC-WC * remove broken conflict resolver menu options that always error out * improve gpg-agent support * fix crash in eclipse IDE with GNOME Keyring * fix externals shadowing a versioned directory * fix problems working on unix file systems that don't support permissions * upgrade: keep external registrations * cleanup: iprove performance of recorded timestamp fixups * translation updates for German - Server-side bugfixes: * disable revprop caching feature due to cache invalidation problems * skip generating uniquifiers if rep-sharing is not supported * mod_dav_svn: reject requests with missing repository paths * mod_dav_svn: reject requests with invalid virtual transaction names * mod_dav_svn: avoid unneeded memory growth in resource walking- fix bashisms in mailer-init.sh script - add patches: * subversion-1.8.10-fix-bashisms.patch- Add a versioned runtime requirement for sqlite and pass it to configure via --enable-sqlite-compatibility-version to allow running with sqlite older than at build time but compatible. - make build with KDE / WKallet optional to fix build with SLE 12h02-armsrv3 17339131451.14.1-150400.5.3.11.14.1-150400.5.3.11.14.1-150400.5.3.1conf.dsubversion.confapache2mod_authz_svn.somod_dav_svn.somod_dontdothat.so/etc/apache2//etc/apache2/conf.d//usr/lib64//usr/lib64/apache2/-fmessage-length=0 -grecord-gcc-switches -O2 -Wall -D_FORTIFY_SOURCE=2 -fstack-protector-strong -funwind-tables -fasynchronous-unwind-tables -fstack-clash-protection -gobs://build.suse.de/SUSE:Maintenance:36774/SUSE_SLE-15-SP4_Update/c4059129d5ea0208de84258d01be9f8d-subversion.SUSE_SLE-15-SP4_Updatedrpmxz5aarch64-suse-linuxdirectoryASCII textELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=35f7f60201177d07579cf40315d842589f9df18c, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=680611674327dcb5e8fce8fad6020e4a4aeba0ca, strippedELF 64-bit LSB shared object, ARM aarch64, version 1 (SYSV), dynamically linked, BuildID[sha1]=76590fd943452525844a84fb43d563ad0d99eb63, stripped  RRR R RRR RRRRR R R R RRR RRRRR RRR RRąYoTlutf-8bed858b5f828d9a813b29bb70fb316efabd19de7f31aadca9cdabb4e8a84a888? 7zXZ !t/B2]"k%:KfdVŨ;q(Ղ@4]f5Ntf9sRD=-`2,e^W1ڜ" :EDܺ6>v_f*)>җ% cZt^$(XR C0IV$4](rM.huH X by8Ib]h`yXZ3lw@ SAT^t\O  fhf_4K&V\ntVR縆o% DN`x0Xckg?_*$(YHSYl}H$pW]{F+ڠy{%ɜZp! U1% 0S͝nm2xEdW8d!;j n/\Q}͜WÜ!a]f!iI1GfC<栯/ZQ*ycȩ4ZҘ=%P|ݱz ֑vrzXS&Y}K G IhoJҞN\+wƋܝە&Q^pK'kͭ&ƂwmO.|I€ G6Imtb-2GseI aDy46s6-Mv+ mR<7H}Q}@co|t p:՚ ͗v7&Umq֑MYZߖTajҫ6`/kaWogRhķ?7,HSvC:UXB6.b'(ZȣL,rMPK"?t>pu=1 :ʈevKXMrhX_}_DGxA^O\d. 3*u3{K(ׯ܌я6wIj]Lcdm@v̕PTO)P|*7Wdt1 pjMB(%A7k'\&H~5.\ j |P=rMϊc J.J{l$V'͘x !v//\_}%1oS mW3ݶlL gx=_Uv[3+h\QnV7T.45ǖ gi8L`ˣHT`:~:vmUjƵ_h$*\`I`cN"ғQ)|"Lk;[]Pd]u0c@`1kY_T g1uJj~] yUњ7(UzgkFYA9"=**zS?Lc}b2ӁRly\8TZsf4d&1mnw!Aф64 RYDnjʄe#eLgPS)P =TAG.J*ƺmu{>rS0_Hwʨe}7ǩt1. zP 1Z@XXL pP 'CJ(WWCVz/ptQ16dȺi!feHhZ '=W'LJ _$f}pC0xK}S^g')yn8R%~=tHPy6*GA<6>ZjY;S> ?6\; '\10X|I92ߝʄD_qF 78bdθIVP0Od<4O|PzbiRZD k|XߒSG:!,׷w3aW!z0sn+m *Imtk0;QP!懱#o%%DQz5\ͨRUلtWaPv|(u>msf~NP= |TBv*ʟes$|%mϥJ}|TK]m>mT) =$ Y#o/_0`!227T^g.ZjY(.hmn\KkDj&`Ų0P:m!}nfQ$1v1ѣΞV6k2WM~"M colSN:OWh2뜑x?Ns-Ѽ}E?>sٻ}>1 Yr9J!Γ@fHU3"%e@4./IYhnqؕ]T4 sʮP|~IrH\.e†Ztt4̕P^7`:Gv^ĝrWe ^XjM%T; f }vjص Nۣ=6_ٲ+־݂i]Iݞ^W6`1 hfΚkYTQ1L=N i@/ݘjzqE $M;GzJ{m{R~V toW2@_~wS 5CɱMmX꓿6- {s锌LI{d ޞrf}1gvY&&y^ FAepGT˾ Kkj<1{(R4?f0:l?N3#P 75/t^geu s'wVed++uc&De. B5PJyɐOz Q7y?Kb/Vu 1]9tnt<~v8vϚ6u4SDK/L |˾f:;tuڋ ñM\25G%9klgwTJ99>naLO9$`=zw&S-4cFEZ& ߧ&ku ؟l\FKd(.ܔP6RяH_@4u·t+"uP3dö(iLw q&sj(%uv&330:,/.2&] ğ9;`e`9Qa+K&SU)MEHi&֋hf`D5DdAVGQ:ğpH8~d 4d &B[n"`|ah@` 5qS5k:wV{@ %Xj>y|p~cn?GQn7b3o1VM%rš6I\.Wb*o:a=VD)po{R<嫒ڥ&E+f/^u]|s!F=yE }lH..҃+O/V7  TVPAZlFE4sHY{$b^!IZr=dPky~_I=K+U@5>wR○;^1N?%} dg3fZl."mG!q+7T4G.6= 26L-fK"vLq`;#S~TI0z^ܤw4Â:d)c5iW tw{y9ecܶJU)#3.\?PK~~IJyĜ%bp7~gr}t9)l:s../o)tw$YX.j>[),Oz,qȕ(aǙF vY>x*8F ϖ3M~`_ M!{jJ1u᳁$b5]Lh*b^3ݾH&GZgrf"=%g) `mejH^%L|iNۚruvݠY_b!$&OG;Z*Cz#ĚZs[#abj9;9bxB,y' ہ/,EphW!qf.8兹$afCrWki:ՏkZK4݈CWIuEZ iՊp79"༅3~?70c:4Dú}BG;^˦HJFP)ɵ-npAte-X-W(m ~8QjqMK潑: lD <̿K6^aEE {*Dt_7rrG@ cs@9['}yQ9"|Qu+ڱ\Y;0y;6kq>aP✅qC(13\;*/y'/8M$eqGb6T Վhb&p8cmq0=+U^bm?j>yxxzEMmKi7Mg܅tlJDSUja~2/En`v::N_#W9}a4ǀ)i N'&DF$ :gZ,wyB(wiLoɄS;2c@nP,_X3-{pt*H/Rk':aҶH|50e?EB&/8Uy[F?ɷQ,5($XBV k9sX$%ƁnNʫ3% o.Ў(nKREGlYg>$ šp6GJ&(OxF5D%1Jυh|ҭ\k#M/[_R=f[͑+,a_4{ 19֊[쎴ZMER(^'W{/ .=lEw+vfX+s)p.!}x JfG{Jq"F-3 d!z R욊7G<(Z LOpQA-̐F Z÷sZH2nM' 0QcNh"gHvKА SBWn3wZِRa~F(CzBuIt0Γg8\9Wl%D8Xx%;/~:7 T5[5yâM=RC} ] _GsLs6 :Mc vj!sR1Pץ0 * MiCy}v}cZO hwL QeBɕ^;or'CQ8S 4_4S9[_DbX7v{ ;?vcT YϿp4<5p>j->zﯢr:㦢#Ap?{K)V5u-:7Q06.J= $)܆s >|8u- ivl&ѱVFriPBʳ@&V؞ˈ. $PbL{ [D "]}}[ڕufWd{cyO)2@M-͙*^$sV2P(閎;c%pY""(*y-tqY5oÔ[l1eZ˝f Hqq{pkt^gjqO-'QM$Lo =M~ KeE{yщjubX+>CWK_$5\!4ӯ=Ч'9I` uFu?fgC  BR%(yCSgfO>x[/ ru}3(8ϓ6* lsg-,YHhRɀN=?пO1_974~'!੿DL$D)e*y)Z;b0?fH+*K)Zx33cҰ Ua3e/[4 *Sr ]3Iu/&W +K%wg/tg/M-2"NQBv$ /R[!hXP2{/WqS Mr4M" ^H٤'1hKS.s`d8s?ʠJlh_u2 dTvƕԚKC%,hX5I>SsTY>WHĬgZڠiNQa3ldhrbY UqkƗσhN-$μ{'&50;t@!8K~]L=vw(r_mX-[X09ST${ZqaHc+]bd7HJ\VyjZCAZ(-H'Q0{> rMk?,.yuq[\FeX>, V.[t!VcPKQѨ /lcA ;! E-E#E * GPP lȇ>Qg)-U*uD E륤Qk6͇n"Mx= L8?j=z gcʊv﬑sA^)-'fc@m30:}(-3jva aƗ=&tBFP#z=gS,mPHWaaR\V>s+td+\GJ:Lw5(39IykOF(9:Ï2S io-SKI/Ȩd}06bW| 8&acW~ aD iW+&&[$gmA*}#oc,<^=| !8oSEyӃIkϭ9F `!AYX^S2!~}bpa=uCx_. QȮ ӎrg9a8xɟ;Ku?Ny.cP4wGo1L~-gd GH8!?{`3ztD$PoC ft3IXDs{ W|?TJϖ-vLCNLa0£׊%^Rਿ)Fit夓ٓM( [.}"\|m R+rќû >B!pP2r}##өE}< a^ ^4w#Dh'1>h L犔}`s*Ϳ&hq#`µWz 9ؑd㼪%y] yy%##z=E_3B̸ \.voFwZgE1`5 ӻ=a5V| <`!H|7Rw lkp-qǫ""J0u84'|K$3%skN܂:sp$O b7%1HНI ڦ8dES^b$4t$.ABhHzd"#m_UxikqZCywqEBx1ſ9#C1n@{1|0RZGmOC~<~MqDf&T f[gJTdǁL6c9M]Э`b~I C-l C2x(gTFvC:gl9I.򞁺\)}isn WC>Rsa95t+Gh+TTCXT-k2ԓqב&C=Uh+!X[}N7N@QMk.`˖!eWq!C m &*u]'o_vF"惊YLn:1gH-(ij&zUj;`lB8١%?'ݎY߉yU]q> Tj(T:/̈MMU2nXd!aR>L 5W=04d7uL'Gfc(=YI['ErPWVTʉ'ۧ18um>휽 䨈`XEIS@y$]:dn) /6Զi?kywوِjkvȞY=hg/.;F_k-˹Ƿlb$&R`C0|odC1Q{ ڴ˖c$//m$x""H*tTm*dwL(h)T7gqY Ƶ9IHC/Y.ޡc |Yya\q9n@XR9k?ivh˽$8|0)&]@qkH7IPɗ40Y/0Hߨ5;pUu V` }s>9"]Ap]T4'LVK7z6MzB S6 [y#n ti[ʋ#c vD24 \զ  Ǡx&-rzKCFa]M9G#OظөIM[=Z'/BS |zN#c#U3g!EQY$LIJdP5ΙbwM -dM[ @-2T] '2s,Д%H {LGfYqrHe<"1Bg2?e{[PGCM{ *,ó $!ZiLBJaG&J%Ai{ʄ{H睠 *)ݡz?sN#O?[x%B^eUZ-֤b`#zwL}d@6Jy![kaVbZ}O^25biW֘4ݯg8 J>8]\|L|Qa2CϺ^2>}%o7]=5{ȈK N' %nl̇W% 'a(le\c3^ƻ9 Sh_.# P/v:V?^LU]~SbôȻcS]Яf;%yAj;ǒa ʌ55TO?axڕ΀Mc.PB0[#\Tr׎6`wŜuUeu50ĘyI,$W)8PIB*5j}|6m֑5keX D(:_^vb\$k'Y* OюCl!Fiw\Z '_Eg}iD"PEji@hr\l^Zp?fZ%R}]鎯ңx`ʁVX&Aɷ֛[-:q$A0BouL6j#BD1KRDGȨH8,\G||4jREdYVڴJhT?ݞB`w/֎O`=Ac qԔtr΋:瞮Ix۬0.%l]}hSR5E4`)"Y`1쵪E"(0/ ?zV&6zeȭ\F52?#ЁU=u``Ufr#ڔa /i!Kyg\1Met 8AA }(;|Ro6puƹB^ZgB64~N^e ֔Px˃R;>&FB[E|tgŹީ@D6Xϴp%ŘE\v`\6r!3B֭r0Îkv$-ŎCL{5^`ݽ jYe8&3mp 1yZf W-Ԅ7Ͻ߸ dv~i% % -lX*ydb3'X.kD)/tCSE(chxB$2mEN!ozWP#q4CNUX?`SZw\AYk*IbQ)_Tx2 60xrLXaK~SBx:ag'p 6?|l@g%PY';'gASr yD@L)-<u(],BS³ҡpQ"C'T56zΟr>*IwP\9SRlry\[XqXzQ(r 4 }hR5gδk>+g1 $X&Ӷ@ kܑiڰӅ]p '63]WZ_/hJ;"Aߟ̉Tr|_ݚJN9urCiL! Vf/ES 6 *h>9na6I╲G||ٓڇ19aWː%e7dqs0csQ4|FmL')(VPźɝ-b;;]:|vԭL%i3>Kd޿n5isyQwդ.#THet seF<=&dDߖ&Ns[AٞJSihCyHf:$Yjֿׄe}Ik3zFc4" >["`VyV6W;i}';*e6"4ژu|Tr5*'u|)QHO%ߪzLO&o6Qjj҅(&) ,b</#䴌T :N}zXڨ=Ҧ߬Àh<(D>hLi>ˢF;b$fM)FEtn/ -PrƛZ#AnVm!lPћ4ʷ6*MvW NĽ)8b8*z4@zftYoKBxXE*-v ZVWջNF%UN8=ѴW; 6sYIm(ښWy=T©f%)4M d%]Jԁ dgбjzrS t.,7g# ʋx{UcBK1#e#mؓ#+FO Wd4̫GIw)v9 {]!JZ|ZP{4|%K]C(L8gO/js>l>_g㲷8ӆ*}W-3: 0M] 1h]а-/]Hv] XWxCPMvGwB&ˑaEWD:M~Dq31H2Χm[T: 5% {1rAGauA-` N\[{DꣿEI*0G $tt8/jјLYT7ѬTȞfR2f:?x>Fl-㩁rV6tz {ɠ6Y;R%9;X b'媙 ֌8²U% ߱g8qzpqws7 ' %0+Q8|dx~iNt0%I R"#&4:μ'<םĴHB撳.\T KNАuByr3:8 Sl{f┎@fC9WQ)Iด#~z? O}91Aɾ\XCJ'_*\1Jٔ% !O*EL \dO;y;w3@++KwwLo-_0 VgW"k/Oj#ggJ<ͺG\9 m֕[\oH$c3Y=j?&>ʬun]=vۦ+cS*ƹ]Fb̠xހS?pbt֪M6$Ri0ñoɸ+d~G*3+ܼH޽?`*sI8=` M6dsrjT>tPz1- YZ