[ant-ivy] branch master updated (9d7b5e13 -> 9c4802b7)

Fri, 04 Nov 2022 03:32:22 -0700 

This is an automated email from the ASF dual-hosted git repository.

bodewig pushed a change to branch master
in repository https://gitbox.apache.org/repos/asf/ant-ivy.git


    from 9d7b5e13 ignore failing test
     new 03b6b8c3 CVE-2022-37865 ZipPacking allows overwriting arbitrary files
     new 3f374602 CVE-2022-37866 prevent path-traversal with bogus module 
coordinates
     new 9c4802b7 update release notes with CVE information

The 3 revisions listed above as "new" are entirely new to this
repository and will be described in separate emails.  The revisions
listed as "add" were already present in the repository and have only
been added to this reference.


Summary of changes:
 asciidoc/release-notes.adoc                        |   5 +-
 src/java/org/apache/ivy/core/IvyPatternHelper.java |  72 +++++++++++---
 .../core/cache/DefaultRepositoryCacheManager.java  |  25 ++++-
 .../core/cache/DefaultResolutionCacheManager.java  |  12 +++
 src/java/org/apache/ivy/core/pack/ZipPacking.java  |  11 ++-
 .../org/apache/ivy/core/resolve/ResolveEngine.java |   4 +
 .../apache/ivy/core/retrieve/RetrieveEngine.java   |  15 ++-
 .../ivy/plugins/report/XmlReportOutputter.java     |   4 +
 .../plugins/repository/file/FileRepository.java    |  12 ++-
 src/java/org/apache/ivy/util/FileUtil.java         |  62 +++++++++++++
 test/java/org/apache/ivy/ant/FileUtilTest.java     |  72 ++++++++++++++
 .../cache/DefaultRepositoryCacheManagerTest.java   |  58 ++++++++++++
 .../cache/DefaultResolutionCacheManagerTest.java   |  64 +++++++++++++
 .../org/apache/ivy/core/pack/ZipPackingTest.java   |  72 ++++++++++++++
 .../apache/ivy/core/resolve/ResolveEngineTest.java |  35 +++++++
 .../org/apache/ivy/core/retrieve/RetrieveTest.java | 103 +++++++++++++++++++++
 .../repository/file/FileRepositoryTest.java        |  85 +++++++++++++++++
 .../org/apache/ivy/util/IvyPatternHelperTest.java  |  91 ++++++++++++++++++
 test/zip/test.zip                                  | Bin 0 -> 554 bytes
 19 files changed, 778 insertions(+), 24 deletions(-)
 create mode 100644 
test/java/org/apache/ivy/core/cache/DefaultResolutionCacheManagerTest.java
 create mode 100644 test/java/org/apache/ivy/core/pack/ZipPackingTest.java
 create mode 100644 
test/java/org/apache/ivy/plugins/repository/file/FileRepositoryTest.java
 create mode 100644 test/zip/test.zip

Reply via email to