Subversion Repositories

(root)/ - Rev 51

?revision_form?

Rev ?revision_input??revision_submit?

?revision_endform?

Show changed files | Directory listing | RSS feed

Filtering Options

From rev	To rev	Max revs

Search history for

Show All

Clear current filter

Rev	Age	Author	Path	Log message
31	3744d 05h	magnus	/trunk/debian/	[SECURITY] CVE-2013-4420.patch: When the prefix field is in use, the safer_name_suffix() function should certainly be applied to the combination of it and the name field, not just on the name field.
30	3744d 05h	magnus	/trunk/debian/	no_maxpathlen.patch: Fix two grave bugs in the patch. First, th_get_pathname would only allocate as much memory as was needed for the first filename encountered, causing heap corruption when/if encountering longer filenames later. Second, two variables were mixed up in tar_append_tree(). Also, fix a potential memory leak and trim the patch a bit.
29	3744d 06h	magnus	/trunk/debian/	Correct patch name in changelog.
28	3744d 06h	magnus	/tags/1.2.16-1+deb7u1/	[svn-buildpackage] Tagging libtar 1.2.16-1+deb7u1
27	3744d 06h	magnus	/branches/wheezy/debian/	[SECURITY] size_t-overflow_cve-2013-4397.patch: Fix CVE-2013-4397: Integer overflow (Closes: #725938).
26	3744d 07h	magnus	/tags/1.2.20-2/	[svn-buildpackage] Tagging libtar 1.2.20-2
25	3744d 07h	magnus	/trunk/debian/	Bump Standards-Version to 3.9.5.
24	3744d 07h	magnus	/trunk/debian/	[SECURITY] CVE-2013-4420.patch: Strip out leading slashes and any pathname prefix containing ".." components (Closes: #731860). This is done in th_get_pathname() (as well as to symlink targets when extracting symlinks), not merely when extracting files, which means applications calling that function will not see the stored filename. There is no way to disable this behaviour, but it can be expected that one will be provided when the issue is solved upstream.
23	3746d 07h	magnus	/trunk/debian/	* no_static_buffers.patch: avoid using a static buffer in th_get_pathname(). Taken from upstream. Needed for no_maxpathlen.patch. * maxpathlen.patch: Fix FTBFS on Hurd by dynamically allocating path names (Closes: #657116). Thanks to Svante Signell and Petter Reinholdtsen.
22	3872d 10h	magnus	/tags/1.2.20-1/	[svn-buildpackage] Tagging libtar 1.2.20-1
21	3872d 10h	magnus	/branches/wheezy/	Create wheezy branch
20	3872d 10h	magnus	/branches/	Create branches directory
19	3872d 10h	magnus	/trunk/debian/	Bump Standards-Version to 3.9.4.
18	3872d 10h	magnus	/trunk/debian/	[SECURITY] New upstream release. Fixes CVE-2013-4397: Integer overflow (Closes: #725938).
17	4030d 06h	magnus	/tags/1.2.19-1/	[svn-buildpackage] Tagging libtar 1.2.19-1
16	4030d 12h	magnus	/trunk/debian/patches/	Delete the patch series again.
15	4030d 12h	magnus	/trunk/debian/	New upstream release.
14	4347d 04h	magnus	/tags/1.2.16-1/	[svn-buildpackage] Tagging libtar 1.2.16-1
13	4347d 05h	magnus	/trunk/debian/	debian/control: Add VCS fields; bump Standards-Version to 3.9.3.
12	4347d 05h	magnus	/trunk/debian/	Use dpkg-buildflags to set CFLAGS et al.

←Prev 12Next→

Show All