I'm happy to announce the release of Apache Subversion 1.9.5.
Please choose the mirror closest to you by visiting:
http://subversion.apache.org/download/#recommended-release
This release fixes one security issue:
CVE-2016-8734:
Unrestricted XML entity expansion in mod_dontdothat and Subversion
clients using http(s)://
http://subversion.apache.org/security/CVE-2016-8734-advisory.txt
The SHA1 checksums are:
8bd6a44a1aed30c4c6b6b068488dafb44eaa6adf subversion-1.9.5.tar.bz2
ac9f8ee235f1b667dd6506864af8035aaedfc2d9 subversion-1.9.5.tar.gz
3b16b5780a0cff364ec87cdce76b2fa910dbca05 subversion-1.9.5.zip
PGP Signatures are available at:
http://www.apache.org/dist/subversion/subversion-1.9.5.tar.bz2.asc
http://www.apache.org/dist/subversion/subversion-1.9.5.tar.gz.asc
http://www.apache.org/dist/subversion/subversion-1.9.5.zip.asc
For this release, the following people have provided PGP signatures:
Bert Huijben [4096R/CCC8E1DF] with fingerprint:
3D1D C66D 6D2E 0B90 3952 8138 C4A6 C625 CCC8 E1DF
Branko Čibej [4096R/A347943F] with fingerprint:
BA3C 15B1 337C F0FB 222B D41A 1BCA 6586 A347 943F
Evgeny Kotkov [4096R/09F9FA74] with fingerprint:
E7B2 A7F4 EC28 BE9F F8B3 8BA4 B64F FF12 09F9 FA74
Johan Corveleyn [4096R/010C8AAD] with fingerprint:
8AA2 C10E EAAD 44F9 6972 7AEA B59C E6D6 010C 8AAD
Stefan Fuhrmann [4096R/57921ACC] with fingerprint:
056F 8016 D9B8 7B1B DE41 7467 99EC 741B 5792 1ACC
Stefan Sperling [2048R/9A59B973] with fingerprint:
8BC4 DAE0 C5A4 D65F 4044 0107 4F7D BAA9 9A59 B973
Release notes for the 1.9.x release series may be found at:
http://subversion.apache.org/docs/release-notes/1.9.html
You can find the list of changes between 1.9.5 and earlier versions at:
http://svn.apache.org/repos/asf/subversion/tags/1.9.5/CHANGES
Questions, comments, and bug reports to users@subversion.apache.org.
Thanks,
- The Subversion Team
