Homeblogssteveking's blog

TortoiseSVN 1.4.5 released

Mon, 2007-08-27 19:14 — steveking

TortoiseSVN 1.4.5 has been released, linked against Subversion 1.4.5.

Important!
This is a security fix release. Please update as soon as possible!

Security Advisory:
On some platforms (e.g., Win32), svn client can create files in bad place.

Summary:
This vulnerability requires prior write access to the repository.
In Subversion 1.4.4 and earlier versions, on platforms where the directory separator is "\" (or anything other than "/"), the client libraries can allow files outside the working copy to be created during a checkout or update. This could, in theory, be used to place arbitrary code at arbitrary locations on the client machine, for example, in system startup scripts.


Comments

Thu, 2007-10-11 18:50 — Anonymous (not verified)

Does TSVN 1.4.5 works with SVN 1.4.3?

Does TSVN 1.4.5 works with SVN 1.4.3? Last time I updated TSVN I had to change my SVN version!! If it isn't compatible why does TSVN indicate that I should upgrade!! It should at least warn me that it's not comptatible with SVN version x.x.x

Thank for the good work.


Thu, 2007-10-11 20:57 — steveking

read the docs

Compatibility between versions
Release notes for 1.4.x (note the part at the bottom)
FAQ entry


Mon, 2008-01-21 07:57 — madonna (not verified)

TortoiseSVN is known by many

TortoiseSVN is known by many as the easiest and best to work with SVN repositories on the internet.