From 4ae62bee3d0ec298f116e643a505514be5411f705c6ecff6c4545a3e65d8f606 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Tom=C3=A1=C5=A1=20Chv=C3=A1tal?= <tchvatal@suse.com>
Date: Thu, 6 Aug 2015 11:03:02 +0000
Subject: [PATCH] httpd (dav) configurations (CVE-2015-3184) bnc#939514    
 bnc#939517

OBS-URL: https://build.opensuse.org/package/show/devel:tools:scm:svn/subversion?expand=0&rev=210
---
 subversion.changes | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/subversion.changes b/subversion.changes
index 77eadcb..d252aea 100644
--- a/subversion.changes
+++ b/subversion.changes
@@ -4,8 +4,9 @@ Thu Aug  6 10:48:33 UTC 2015 - stsp@elego.de
 - Apache Subversion 1.8.14
   This release fixes two vulnerabilities:
   * mod_authz_svn: do not leak information in mixed anonymous/authenticated
-    httpd (dav) configurations (CVE-2015-3184)
+    httpd (dav) configurations (CVE-2015-3184) bnc#939514
   * do not leak paths that were hidden by path-based authz (CVE-2015-3187)
+    bnc#939517
   Non-security fixes:
   * document svn:autoprops
   * fix 'svn cp ^/A/D/H@1 ^/A' to properly create A