Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package cacti for openSUSE:Factory checked in at 2023-01-03 15:05:16 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/cacti (Old) and /work/SRC/openSUSE:Factory/.cacti.new.1563 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "cacti" Tue Jan 3 15:05:16 2023 rev:44 rq:1046255 version:1.2.23 Changes: -------- --- /work/SRC/openSUSE:Factory/cacti/cacti.changes 2022-10-03 13:47:23.733697032 +0200 +++ /work/SRC/openSUSE:Factory/.cacti.new.1563/cacti.changes 2023-01-03 15:05:31.554566083 +0100 @@ -1,0 +2,15 @@ +Mon Jan 2 17:48:32 UTC 2023 - Andreas Stieger <andreas.stie...@gmx.de> + +- cacti 1.2.23, providing security fixes, feature improvements and + bug fixes: + * CVE-2022-46169: Unauthenticated Command Injection in Remote + Agent (boo#1206185) + * Security: Add .htaccess file to scripts folder + * When using Single Sign-on Frameworks, revocation was not always + detected in callbacks + * Fixes to the installer, and compatibility with PHP and MySQL + * Performance improvements for certain conditions + * Various UI fixes + * Bug fixes related to SNMP, RRDtools, and agents + +------------------------------------------------------------------- Old: ---- cacti-1.2.22.tar.gz New: ---- cacti-1.2.23.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ cacti.spec ++++++ --- /var/tmp/diff_new_pack.Nmv1tN/_old 2023-01-03 15:05:33.230575866 +0100 +++ /var/tmp/diff_new_pack.Nmv1tN/_new 2023-01-03 15:05:33.234575889 +0100 @@ -1,7 +1,7 @@ # # spec file for package cacti # -# Copyright (c) 2022 SUSE LLC +# Copyright (c) 2023 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -28,7 +28,7 @@ %bcond_with systemd %endif Name: cacti -Version: 1.2.22 +Version: 1.2.23 Release: 0 Summary: Web Front-End to Monitor System Data via RRDtool License: GPL-2.0-or-later ++++++ cacti-1.2.22.tar.gz -> cacti-1.2.23.tar.gz ++++++ /work/SRC/openSUSE:Factory/cacti/cacti-1.2.22.tar.gz /work/SRC/openSUSE:Factory/.cacti.new.1563/cacti-1.2.23.tar.gz differ: char 18, line 1 ++++++ cacti-config.patch ++++++ --- /var/tmp/diff_new_pack.Nmv1tN/_old 2023-01-03 15:05:33.282576169 +0100 +++ /var/tmp/diff_new_pack.Nmv1tN/_new 2023-01-03 15:05:33.286576192 +0100 @@ -1,8 +1,8 @@ -Index: cacti-1.2.12/include/config.php +Index: cacti-1.2.23/include/config.php =================================================================== ---- cacti-1.2.12.orig/include/config.php -+++ cacti-1.2.12/include/config.php -@@ -44,17 +44,17 @@ $database_ssl_ca = ''; +--- cacti-1.2.23.orig/include/config.php ++++ cacti-1.2.23/include/config.php +@@ -45,17 +45,17 @@ $database_persist = false; * must remain commented out. */ @@ -29,31 +29,31 @@ +//#$rdatabase_ssl_cert = ''; +//#$rdatabase_ssl_ca = ''; - /* + /** * The poller_id of this system. set to `1` for the main cacti web server. -@@ -69,13 +69,13 @@ $poller_id = 1; +@@ -70,13 +70,13 @@ $poller_id = 1; * would be set to `/cacti/`. */ -$url_path = '/cacti/'; +//$url_path = '/cacti/'; - /* + /** * Default session name - session name must contain alpha characters */ -$cacti_session_name = 'Cacti'; +//$cacti_session_name = 'Cacti'; - /* + /** * Default Cookie domain - The cookie domain to be used for Cacti -@@ -87,7 +87,7 @@ $cacti_session_name = 'Cacti'; +@@ -88,7 +88,7 @@ $cacti_session_name = 'Cacti'; * Save sessions to a database for load balancing */ -$cacti_db_session = false; +//$cacti_db_session = false; - /* + /** * Disable log rotation settings for packagers
