[Automake-commit] [SCM] GNU Automake branch, master, updated. v1.11-92-g

automake-commit

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Automake-commit] [SCM] GNU Automake branch, master, updated. v1.11-92-g

From:	Ralf Wildenhues
Subject:	[Automake-commit] [SCM] GNU Automake branch, master, updated. v1.11-92-gb211937
Date:	Tue, 08 Dec 2009 22:12:29 +0000

This is an automated email from the git hooks/post-receive script. It was
generated because a ref change was pushed to the repository containing
the project "GNU Automake".

http://git.sv.gnu.org/gitweb/?p=automake.git;a=commitdiff;h=b211937f2106e05d6d3577bf393ae8b4198ce1fb

The branch, master has been updated
       via  b211937f2106e05d6d3577bf393ae8b4198ce1fb (commit)
       via  df834b02d49220bdb3dcff82f6564d5c2c41e8d6 (commit)
      from  b3f8778bd870913efbf5799cb9a10285a9476b7f (commit)

Those revisions listed above that are new to this repository have
not appeared on any other notification email; so we list those
revisions in full, below.

- Log -----------------------------------------------------------------
commit b211937f2106e05d6d3577bf393ae8b4198ce1fb
Merge: b3f8778bd870913efbf5799cb9a10285a9476b7f 
df834b02d49220bdb3dcff82f6564d5c2c41e8d6
Author: Ralf Wildenhues <address@hidden>
Date:   Sun Dec 6 16:25:04 2009 +0100

    Merge branch 'maint'

-----------------------------------------------------------------------

Summary of changes:
 ChangeLog |    4 ++++
 NEWS      |    7 +++++++
 2 files changed, 11 insertions(+), 0 deletions(-)

diff --git a/ChangeLog b/ChangeLog
index 3e0f5b4..a91561f 100644
--- a/ChangeLog
+++ b/ChangeLog
@@ -1,3 +1,7 @@
+2009-12-06  Ralf Wildenhues  <address@hidden>
+
+       * NEWS: Update.
+
 2009-12-05  Antonio Diaz Diaz  <address@hidden>
 
        Replace unlzma, gunzip, bunzip2 with pack tool -d invocation.
diff --git a/NEWS b/NEWS
index 0851e63..3253fc5 100644
--- a/NEWS
+++ b/NEWS
@@ -14,6 +14,8 @@ New in 1.11a:
 
 Bugs fixed in 1.11a:
 
+  - Lots of minor bugfixes.
+
 * Bugs introduced by 1.11:
 
   - The `parallel-tests' test driver works around a GNU make 3.80 bug with
@@ -33,6 +35,11 @@ Bugs fixed in 1.11a:
   - AM_PROG_GCJ uses AC_CHECK_TOOLS to look for `gcj' now, so that prefixed
     tools are preferred in a cross-compile setup.
 
+  - The distribution is tarred up with mode 755 now by the `dist*' targets.
+    This fixes a race condition where untrusted users could modify files
+    in the $(PACKAGE)-$(VERSION) distdir before packing if the toplevel
+    build directory was world-searchable.  This is CVE-2009-4029.
+
 
 New in 1.11:
 


hooks/post-receive
-- 
GNU Automake

[Prev in Thread]

Current Thread

[Next in Thread]

[Automake-commit] [SCM] GNU Automake branch, master, updated. v1.11-92-gb211937, Ralf Wildenhues <=

Prev by Date: [Automake-commit] [SCM] GNU Automake branch, branch-1-8, updated. Release-1-8-5-7-gc17a55f
Next by Date: [Automake-commit] [SCM] GNU Automake branch, branch-1.11, updated. v1.11-64-gc50afc2
Previous by thread: [Automake-commit] [SCM] GNU Automake branch, branch-1-8, updated. Release-1-8-5-7-gc17a55f
Next by thread: [Automake-commit] [SCM] GNU Automake branch, branch-1.11, updated. v1.11-64-gc50afc2
Index(es):
- Date
- Thread