forked from pool/apache-ivy
f300aedf73
- Upgrade to version 2.5.1 (bsc#1205142, bsc#1205138) * Breaking: + Removed old fr\jayasoft\ivy\ant\antlib.xml AntLib definition file. * Fixes: + CVE-2022-37865 allow create/overwrite any file on the system. (see https://ant.apache.org/ivy/security.html) + CVE-2022-37866 Path traversal in patterns. (see https://ant.apache.org/ivy/security.html) + ResolveEngine resets dictator resolver to null in the global configuration. + ConcurrentModificationException in MessageLoggerHelper.sumupProblems. + useOrigin="true" fails with file-based ibiblio. + ivy:retrieve Ant task didn’t create an empty fileset when no files were retrieved to a non-empty directory. + ivy:retrieve Ant task relied on the default HTTP header "Accept" which caused problems with servers that interpret it strictly (e.g. AWS CodeArtifact). * Improvements: + Ivy command now accepts a URL for the -settings option. OBS-URL: https://build.opensuse.org/request/show/1035296 OBS-URL: https://build.opensuse.org/package/show/openSUSE:Factory/apache-ivy?expand=0&rev=21 |
||
---|---|---|
.gitattributes | ||
.gitignore | ||
apache-ivy-2.5.1-src.tar.gz | ||
apache-ivy-global-settings.patch | ||
apache-ivy.changes | ||
apache-ivy.spec | ||
ivy-2.5.1.pom | ||
ivy.1 |