Return-Path: 
 <dev-return-28332-apmail-subversion-dev-archive=subversion.apache.org@subversion.apache.org>
X-Original-To: apmail-subversion-dev-archive@minotaur.apache.org
Delivered-To: apmail-subversion-dev-archive@minotaur.apache.org
Received: from mail.apache.org (hermes.apache.org [140.211.11.3])
	by minotaur.apache.org (Postfix) with SMTP id 709FF102F8
	for <apmail-subversion-dev-archive@minotaur.apache.org>;
 Fri, 30 Aug 2013 15:35:19 +0000 (UTC)
Received: (qmail 62151 invoked by uid 500); 30 Aug 2013 15:35:17 -0000
Delivered-To: apmail-subversion-dev-archive@subversion.apache.org
Received: (qmail 62106 invoked by uid 500); 30 Aug 2013 15:35:16 -0000
Mailing-List: contact dev-help@subversion.apache.org; run by ezmlm
Precedence: bulk
List-Help: <mailto:dev-help@subversion.apache.org>
List-Unsubscribe: <mailto:dev-unsubscribe@subversion.apache.org>
List-Post: <mailto:dev@subversion.apache.org>
List-Id: <dev.subversion.apache.org>
Delivered-To: mailing list dev@subversion.apache.org
Received: (qmail 62086 invoked by uid 99); 30 Aug 2013 15:35:15 -0000
Received: from nike.apache.org (HELO nike.apache.org) (192.87.106.230)
    by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 30 Aug 2013 15:35:15 +0000
X-ASF-Spam-Status: No, hits=-0.0 required=5.0
	tests=SPF_HELO_PASS
X-Spam-Check-By: apache.org
Received-SPF: error (nike.apache.org: local policy)
Received: from [50.197.89.41] (HELO mail.brain.org) (50.197.89.41)
    by apache.org (qpsmtpd/0.29) with ESMTP; Fri, 30 Aug 2013 15:35:09 +0000
Received: from localhost (localhost [127.0.0.1])
	by mail.brain.org (Postfix) with ESMTP id ACCB3179E1E7;
	Fri, 30 Aug 2013 08:34:26 -0700 (PDT)
X-Virus-Scanned: Debian amavisd-new at fornix.brain.org
Received: from mail.brain.org ([127.0.0.1])
	by localhost (fornix.brain.org [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id H-FJnzcYOodW; Fri, 30 Aug 2013 08:34:22 -0700 (PDT)
Received: from fmri.brain.org (fmri.brain.org
 [IPv6:2001:470:e966:5:223:dfff:fedf:433d])
	(using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by mail.brain.org (Postfix) with ESMTPSA id 11D9C179E19A;
	Fri, 30 Aug 2013 08:34:22 -0700 (PDT)
Message-ID: <5220BB7D.7010506@apache.org>
Date: Fri, 30 Aug 2013 08:34:21 -0700
From: Ben Reser <breser@apache.org>
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.7;
 rv:24.0) Gecko/20100101 Thunderbird/24.0
MIME-Version: 1.0
To: announce@subversion.apache.org, announce@apache.org,
 users@subversion.apache.org, dev@subversion.apache.org
Subject: Apache Subversion 1.8.3 released
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-Virus-Checked: Checked by ClamAV on apache.org

I'm happy to announce the release of Apache Subversion 1.8.3.

Please note that Subversion 1.8.3 is the next release after Subversion 1.8.1.
The 1.8.2 release was not published publicly, due to issues found
during testing.

Please choose the mirror closest to you by visiting:

    http://subversion.apache.org/download/#recommended-release

This release addresses three security issues:
    CVE-2013-4246: fsfs: corruption from editing packed revision properties
    CVE-2013-4262: admin-side tools: symlink attack against pid file
    CVE-2013-4246: svnserve: symlink attack against pid file

More information on these vulnerabilities, including the relevant
advisories and potential attack vectors and workarounds, can be found
on the Subversion security website:
    http://subversion.apache.org/security/

This release changes mod_dav_svn to no longer map requests to the local
filesystem.  Administrators of mod_dav_svn servers should read the
section about this in the release notes:
    http://subversion.apache.org/docs/release-notes/1.8.html#mod_dav_svn-fsmap

The SHA1 checksums are:

    e328e9f1c57f7c78bea4c3af869ec5d4503580cf subversion-1.8.3.tar.bz2
    f004934ef6ed8ee4ede1202e0734098350d80812 subversion-1.8.3.zip
    4bc7cceb0d16a09ba839a53435f5671d40867d44 subversion-1.8.3.tar.gz

PGP Signatures are available at:

    http://www.apache.org/dist/subversion/subversion-1.8.3.tar.bz2.asc
    http://www.apache.org/dist/subversion/subversion-1.8.3.tar.gz.asc
    http://www.apache.org/dist/subversion/subversion-1.8.3.zip.asc

For this release, the following people have provided PGP signatures:

   Ben Reser [4096R/16A0DE01] with fingerprint:
    19BB CAEF 7B19 B280 A0E2  175E 62D4 8FAD 16A0 DE01
   Bert Huijben [4096R/CCC8E1DF] with fingerprint:
    3D1D C66D 6D2E 0B90 3952  8138 C4A6 C625 CCC8 E1DF
   Ivan Zhakov [4096R/F6AD8147] with fingerprint:
    4829 8F0F E47F 4B8A 43FD  6525 919F 6F61 F6AD 8147
   Julian Foad [4096R/4EECC493] with fingerprint:
    6011 63CF 9D49 9FD7 18CF  582D 1FB0 64B8 4EEC C493
   Paul T. Burba [4096R/56F3D7BC] with fingerprint:
    1A0F E7C6 B3C5 F8D4 D0C4  A20B 64DD C071 56F3 D7BC
   Philip Martin [2048R/ED1A599C] with fingerprint:
    A844 790F B574 3606 EE95  9207 76D7 88E1 ED1A 599C

Release notes for the 1.8.x release series may be found at:

    http://subversion.apache.org/docs/release-notes/1.8.html

You can find the list of changes between 1.8.3 and earlier versions at:

    http://svn.apache.org/repos/asf/subversion/tags/1.8.3/CHANGES

Questions, comments, and bug reports to users@subversion.apache.org.

Thanks,
- The Subversion Team