Thu Mar 6 21:21:10 2008 UTC ()
Version 1.0.5 (released 28-Feb-2008)
* security fix: omit commits of all-forbidden files from query results
* security fix: disallow direct URL navigation to hidden CVSROOT folder
* security fix: strip forbidden paths from revision view
* security fix: don't traverse log history thru forbidden locations
* security fix: honor forbiddenness via diff view path parameters
* new 'forbiddenre' regexp-based path authorization feature
* fix root name conflict resolution inconsistencies (issue #287)
* fix an oversight in the CVS 1.12.9 loginfo-handler support
* fix RSS feed content type to be more specific (issue #306)
* fix entity escaping problems in RSS feed data (issue #238)
* fix bug in tarball generation for remote Subversion repositories
* fix query interface file-count-limiting logic
* fix query results plus/minus count to ignore forbidden files
* fix blame error caused by 'svn' unable to create runtime config dir


(adrianp)
diff -r1.4 -r1.5 pkgsrc/www/viewvc/Makefile
diff -r1.1.1.1 -r1.2 pkgsrc/www/viewvc/PLIST
diff -r1.3 -r1.4 pkgsrc/www/viewvc/distinfo
cvs diff -r1.4 -r1.5 pkgsrc/www/viewvc/Makefile (expand / switch to unified diff)

--- pkgsrc/www/viewvc/Makefile 2008/01/24 07:23:47 1.4
+++ pkgsrc/www/viewvc/Makefile 2008/03/06 21:21:10 1.5
@@ -1,19 +1,19 @@ @@ -1,19 +1,19 @@
1# $NetBSD: Makefile,v 1.4 2008/01/24 07:23:47 obache Exp $ 1# $NetBSD: Makefile,v 1.5 2008/03/06 21:21:10 adrianp Exp $
2# 2#
3 3
4DISTNAME= viewvc-1.0.4 4DISTNAME= viewvc-1.0.5
5CATEGORIES= devel www 5CATEGORIES= devel www
6MASTER_SITES= http://viewvc.tigris.org/files/documents/3330/37319/ 6MASTER_SITES= http://viewvc.tigris.org/files/documents/3330/41694/
7 7
8MAINTAINER= adrianp@NetBSD.org 8MAINTAINER= adrianp@NetBSD.org
9HOMEPAGE= http://www.viewvc.org/ 9HOMEPAGE= http://www.viewvc.org/
10COMMENT= Viewing the content of CVS/SVN repositories with a Webbrowser 10COMMENT= Viewing the content of CVS/SVN repositories with a Webbrowser
11 11
12PYTHON_PATCH_SCRIPTS= viewvc-install bin/* bin/cgi/*.cgi lib/*.py 12PYTHON_PATCH_SCRIPTS= viewvc-install bin/* bin/cgi/*.cgi lib/*.py
13 13
14.if !exists(/usr/bin/rlog) 14.if !exists(/usr/bin/rlog)
15DEPENDS+= rcs-[0-9]*:../../devel/rcs 15DEPENDS+= rcs-[0-9]*:../../devel/rcs
16.endif 16.endif
17 17
18NO_BUILD= YES 18NO_BUILD= YES
19VIEWVCDIR= share/viewvc 19VIEWVCDIR= share/viewvc
cvs diff -r1.1.1.1 -r1.2 pkgsrc/www/viewvc/PLIST (expand / switch to unified diff)

--- pkgsrc/www/viewvc/PLIST 2006/10/21 09:05:44 1.1.1.1
+++ pkgsrc/www/viewvc/PLIST 2008/03/06 21:21:10 1.2
@@ -1,14 +1,14 @@ @@ -1,14 +1,14 @@
1@comment $NetBSD: PLIST,v 1.1.1.1 2006/10/21 09:05:44 adrianp Exp $ 1@comment $NetBSD: PLIST,v 1.2 2008/03/06 21:21:10 adrianp Exp $
2share/examples/viewvc/viewvc.conf 2share/examples/viewvc/viewvc.conf
3share/examples/viewvc/cvsgraph.conf 3share/examples/viewvc/cvsgraph.conf
4${VIEWVCDIR}/bin/cgi/query.cgi 4${VIEWVCDIR}/bin/cgi/query.cgi
5${VIEWVCDIR}/bin/cgi/viewvc.cgi 5${VIEWVCDIR}/bin/cgi/viewvc.cgi
6${VIEWVCDIR}/bin/cvsdbadmin 6${VIEWVCDIR}/bin/cvsdbadmin
7${VIEWVCDIR}/bin/loginfo-handler 7${VIEWVCDIR}/bin/loginfo-handler
8${VIEWVCDIR}/bin/make-database 8${VIEWVCDIR}/bin/make-database
9${VIEWVCDIR}/bin/mod_python/.htaccess 9${VIEWVCDIR}/bin/mod_python/.htaccess
10${VIEWVCDIR}/bin/mod_python/handler.py 10${VIEWVCDIR}/bin/mod_python/handler.py
11${VIEWVCDIR}/bin/mod_python/query.py 11${VIEWVCDIR}/bin/mod_python/query.py
12${VIEWVCDIR}/bin/mod_python/viewvc.py 12${VIEWVCDIR}/bin/mod_python/viewvc.py
13${VIEWVCDIR}/bin/standalone.py 13${VIEWVCDIR}/bin/standalone.py
14${VIEWVCDIR}/bin/svndbadmin 14${VIEWVCDIR}/bin/svndbadmin
@@ -111,26 +111,92 @@ ${VIEWVCDIR}/templates/include/log_foote @@ -111,26 +111,92 @@ ${VIEWVCDIR}/templates/include/log_foote
111${VIEWVCDIR}/templates/include/log_header.ezt 111${VIEWVCDIR}/templates/include/log_header.ezt
112${VIEWVCDIR}/templates/include/paging.ezt 112${VIEWVCDIR}/templates/include/paging.ezt
113${VIEWVCDIR}/templates/include/pathrev_form.ezt 113${VIEWVCDIR}/templates/include/pathrev_form.ezt
114${VIEWVCDIR}/templates/include/sort.ezt 114${VIEWVCDIR}/templates/include/sort.ezt
115${VIEWVCDIR}/templates/log.ezt 115${VIEWVCDIR}/templates/log.ezt
116${VIEWVCDIR}/templates/log_table.ezt 116${VIEWVCDIR}/templates/log_table.ezt
117${VIEWVCDIR}/templates/markup.ezt 117${VIEWVCDIR}/templates/markup.ezt
118${VIEWVCDIR}/templates/query.ezt 118${VIEWVCDIR}/templates/query.ezt
119${VIEWVCDIR}/templates/query_form.ezt 119${VIEWVCDIR}/templates/query_form.ezt
120${VIEWVCDIR}/templates/query_results.ezt 120${VIEWVCDIR}/templates/query_results.ezt
121${VIEWVCDIR}/templates/revision.ezt 121${VIEWVCDIR}/templates/revision.ezt
122${VIEWVCDIR}/templates/roots.ezt 122${VIEWVCDIR}/templates/roots.ezt
123${VIEWVCDIR}/templates/rss.ezt 123${VIEWVCDIR}/templates/rss.ezt
 124${VIEWVCDIR}/templates-contrib/README
 125${VIEWVCDIR}/templates-contrib/viewsvn/INSTALL
 126${VIEWVCDIR}/templates-contrib/viewsvn/README
 127${VIEWVCDIR}/templates-contrib/viewsvn/extras/fix-blame-output.diff
 128${VIEWVCDIR}/templates-contrib/viewsvn/extras/svnindex.css
 129${VIEWVCDIR}/templates-contrib/viewsvn/extras/svnindex.xsl
 130${VIEWVCDIR}/templates-contrib/viewsvn/screenshots/diff.png
 131${VIEWVCDIR}/templates-contrib/viewsvn/screenshots/dir.png
 132${VIEWVCDIR}/templates-contrib/viewsvn/screenshots/log.png
 133${VIEWVCDIR}/templates-contrib/viewsvn/screenshots/markup.png
 134${VIEWVCDIR}/templates-contrib/viewsvn/templates/annotate.ezt
 135${VIEWVCDIR}/templates-contrib/viewsvn/templates/diff.ezt
 136${VIEWVCDIR}/templates-contrib/viewsvn/templates/directory.ezt
 137${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/broken.png
 138${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/dir.png
 139${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/down.png
 140${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/download.png
 141${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/favicon-svn.ico
 142${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/feed-icon-16x16.jpg
 143${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/logo-svn.png
 144${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/logo-viewvc.png
 145${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/svn.png
 146${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/text.png
 147${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/tortoisesvn/back.png
 148${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/tortoisesvn/back_small.png
 149${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/tortoisesvn/blame.png
 150${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/tortoisesvn/checkout.png
 151${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/tortoisesvn/diff.png
 152${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/tortoisesvn/forward.png
 153${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/tortoisesvn/license.txt
 154${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/tortoisesvn/log.png
 155${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/tortoisesvn/patch.png
 156${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/tortoisesvn/repos.png
 157${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/tortoisesvn/tsvn.png
 158${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/up.png
 159${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/viewvc.png
 160${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/styles.css
 161${VIEWVCDIR}/templates-contrib/viewsvn/templates/error.ezt
 162${VIEWVCDIR}/templates-contrib/viewsvn/templates/graph.ezt
 163${VIEWVCDIR}/templates-contrib/viewsvn/templates/include/diff_form.ezt
 164${VIEWVCDIR}/templates-contrib/viewsvn/templates/include/dir_footer.ezt
 165${VIEWVCDIR}/templates-contrib/viewsvn/templates/include/dir_header.ezt
 166${VIEWVCDIR}/templates-contrib/viewsvn/templates/include/file_header.ezt
 167${VIEWVCDIR}/templates-contrib/viewsvn/templates/include/footer.ezt
 168${VIEWVCDIR}/templates-contrib/viewsvn/templates/include/header.ezt
 169${VIEWVCDIR}/templates-contrib/viewsvn/templates/include/log_footer.ezt
 170${VIEWVCDIR}/templates-contrib/viewsvn/templates/include/log_header.ezt
 171${VIEWVCDIR}/templates-contrib/viewsvn/templates/include/paging.ezt
 172${VIEWVCDIR}/templates-contrib/viewsvn/templates/include/pathrev_form.ezt
 173${VIEWVCDIR}/templates-contrib/viewsvn/templates/log.ezt
 174${VIEWVCDIR}/templates-contrib/viewsvn/templates/markup.ezt
 175${VIEWVCDIR}/templates-contrib/viewsvn/templates/query.ezt
 176${VIEWVCDIR}/templates-contrib/viewsvn/templates/query_form.ezt
 177${VIEWVCDIR}/templates-contrib/viewsvn/templates/query_results.ezt
 178${VIEWVCDIR}/templates-contrib/viewsvn/templates/revision.ezt
 179${VIEWVCDIR}/templates-contrib/viewsvn/templates/roots.ezt
 180${VIEWVCDIR}/templates-contrib/viewsvn/templates/rss.ezt
 181@dirrm ${VIEWVCDIR}/templates-contrib/viewsvn/screenshots
 182@dirrm ${VIEWVCDIR}/templates-contrib/viewsvn/extras
 183@dirrm ${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images/tortoisesvn
 184@dirrm ${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot/images
 185@dirrm ${VIEWVCDIR}/templates-contrib/viewsvn/templates/docroot
 186@dirrm ${VIEWVCDIR}/templates-contrib/viewsvn/templates/include
 187@dirrm ${VIEWVCDIR}/templates-contrib/viewsvn/templates
 188@dirrm ${VIEWVCDIR}/templates-contrib/viewsvn
 189@dirrm ${VIEWVCDIR}/templates-contrib
124@dirrm ${VIEWVCDIR}/templates/include 190@dirrm ${VIEWVCDIR}/templates/include
125@dirrm ${VIEWVCDIR}/templates/docroot/images 191@dirrm ${VIEWVCDIR}/templates/docroot/images
126@dirrm ${VIEWVCDIR}/templates/docroot 192@dirrm ${VIEWVCDIR}/templates/docroot
127@dirrm ${VIEWVCDIR}/templates 193@dirrm ${VIEWVCDIR}/templates
128@dirrm ${VIEWVCDIR}/lib/vclib/svn_ra 194@dirrm ${VIEWVCDIR}/lib/vclib/svn_ra
129@dirrm ${VIEWVCDIR}/lib/vclib/svn 195@dirrm ${VIEWVCDIR}/lib/vclib/svn
130@dirrm ${VIEWVCDIR}/lib/vclib/ccvs/rcsparse 196@dirrm ${VIEWVCDIR}/lib/vclib/ccvs/rcsparse
131@dirrm ${VIEWVCDIR}/lib/vclib/ccvs 197@dirrm ${VIEWVCDIR}/lib/vclib/ccvs
132@dirrm ${VIEWVCDIR}/lib/vclib/bincvs 198@dirrm ${VIEWVCDIR}/lib/vclib/bincvs
133@dirrm ${VIEWVCDIR}/lib/vclib 199@dirrm ${VIEWVCDIR}/lib/vclib
134@dirrm ${VIEWVCDIR}/lib 200@dirrm ${VIEWVCDIR}/lib
135@dirrm ${VIEWVCDIR}/bin/mod_python 201@dirrm ${VIEWVCDIR}/bin/mod_python
136@dirrm ${VIEWVCDIR}/bin/cgi 202@dirrm ${VIEWVCDIR}/bin/cgi
cvs diff -r1.3 -r1.4 pkgsrc/www/viewvc/distinfo (expand / switch to unified diff)

--- pkgsrc/www/viewvc/distinfo 2007/05/20 09:01:04 1.3
+++ pkgsrc/www/viewvc/distinfo 2008/03/06 21:21:10 1.4
@@ -1,7 +1,7 @@ @@ -1,7 +1,7 @@
1$NetBSD: distinfo,v 1.3 2007/05/20 09:01:04 xtraeme Exp $ 1$NetBSD: distinfo,v 1.4 2008/03/06 21:21:10 adrianp Exp $
2 2
3SHA1 (viewvc-1.0.4.tar.gz) = 6946266c8d7392f8c8b7b890723c23d57926891f 3SHA1 (viewvc-1.0.5.tar.gz) = dccda7e35881a90662f638694f37b0aa2ecb1998
4RMD160 (viewvc-1.0.4.tar.gz) = 2f08d6697d69bbdf0d6660be0000d1a1aef76faa 4RMD160 (viewvc-1.0.5.tar.gz) = 9a1e76076f8216ba481213f29befa60870291926
5Size (viewvc-1.0.4.tar.gz) = 383491 bytes 5Size (viewvc-1.0.5.tar.gz) = 522323 bytes
6SHA1 (patch-aa) = da1bc13cf0936289d4254d73f14864c39b2ddf96 6SHA1 (patch-aa) = da1bc13cf0936289d4254d73f14864c39b2ddf96
7SHA1 (patch-ab) = c8562a82ea747690d748807503d826bbc0a063ab 7SHA1 (patch-ab) = c8562a82ea747690d748807503d826bbc0a063ab