From 5861a6eb873f6bb15e6c4c042cf1a47b224ddc0a Mon Sep 17 00:00:00 2001 From: Joey Hess Date: Thu, 9 Nov 2017 12:23:56 -0400 Subject: [PATCH] add news item for git-annex 6.20171109 --- doc/news/version_6.20170818.mdwn | 49 -------------------------------- doc/news/version_6.20171109.mdwn | 13 +++++++++ 2 files changed, 13 insertions(+), 49 deletions(-) delete mode 100644 doc/news/version_6.20170818.mdwn create mode 100644 doc/news/version_6.20171109.mdwn diff --git a/doc/news/version_6.20170818.mdwn b/doc/news/version_6.20170818.mdwn deleted file mode 100644 index 388f36562b..0000000000 --- a/doc/news/version_6.20170818.mdwn +++ /dev/null @@ -1,49 +0,0 @@ -**Note** this is a security fix release. A prompt upgrade is strongly -recommended. Attacks using this security hole will involve the attacker -either providing a ssh repository url to the user, or the user pulling from -a git-annex repository provided by an attacker and then running `git annex -enableremote`. For details about the security hole, see -[[bugs/dashed_ssh_hostname_security_hole]]. CVE-2017-12976 - -git-annex 6.20170818 released with [[!toggle text="these changes"]] -[[!toggleable text=""" - * Security fix: Disallow hostname starting with a dash, which - would get passed to ssh and be treated an option. This could - be used by an attacker who provides a crafted repository url - to cause the victim to execute arbitrary code via -oProxyCommand. - (The same class of security hole recently affected git itself.) - * git-annex.cabal: Deal with breaking changes in Cabal 2.0. - * Fix build with QuickCheck 2.10. - * fsck: Support --json. - * move, copy: Support --batch. - * Added GIT\_ANNEX\_VECTOR\_CLOCK environment variable, which can be used to - override the default timestamps used in log files in the git-annex - branch. This is a dangerous environment variable; use with caution. - * Fix a git-annex test failure when run on NFS due to NFS lock files - preventing directory removal. - * test: Avoid most situations involving failure to delete test - directories, by forking a worker process and only deleting the test - directory once it exits. - * Disable http-client's default 30 second response timeout when HEADing - an url to check if it exists. Some web servers take quite a long time - to answer a HEAD request. - * Added remote configuration settings annex-ignore-command and - annex-sync-command, which are dynamic equivilants of the annex-ignore - and annex-sync configurations. - * Prevent spaces from being embedded in the name of new WORM keys, - as that handing spaces in keys would complicate things like the - external special remote protocol. - * migrate: WORM keys containing spaces will be migrated to not contain - spaces anymore. - * External special remotes will refuse to operate on keys with spaces in - their names. That has never worked correctly due to the design of the - external special remote protocol. Display an error message suggesting - migration. - * Fix incorrect external special remote documentation, which said that - the filename parameter to the TRANSFER command could not contain - spaces. It can in fact contain spaces. Special remotes implementors - that relied on that may need to fix bugs in their special remotes. - * Fix the external special remotes git-annex-remote-ipfs, - git-annex-remote-torrent and the example.sh template to correctly - support filenames with spaces. - * Windows: Win32 package has subsumed Win32-extras; update dependency."""]] diff --git a/doc/news/version_6.20171109.mdwn b/doc/news/version_6.20171109.mdwn new file mode 100644 index 0000000000..ff4893c86e --- /dev/null +++ b/doc/news/version_6.20171109.mdwn @@ -0,0 +1,13 @@ +git-annex 6.20171109 released with [[!toggle text="these changes"]] +[[!toggleable text=""" + * Fix export of subdir of a branch. + * Fix exporting of non-annexed files to external special remotes. + * unlock, lock: Support --json. + * When there are multiple urls for a file, still treat it as being present + in the web when some urls don't work, as long as at least one url does + work. + * Makefile improvement for sudo make install. + Thanks, Eric Siegerman + * Makefile improvement for BUILDER=stack, use stack to run ghc. + * testremote: Test exporttree. + * Fix directory special remote's cleanup of empty export directories."""]] \ No newline at end of file