Hello community, here is the log from the commit of package cacti for openSUSE:Factory checked in at 2020-02-06 13:08:23 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/cacti (Old) and /work/SRC/openSUSE:Factory/.cacti.new.26092 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "cacti" Thu Feb 6 13:08:23 2020 rev:27 rq:770246 version:1.2.8 Changes: -------- --- /work/SRC/openSUSE:Factory/cacti/cacti.changes 2019-09-30 16:01:35.800865698 +0200 +++ /work/SRC/openSUSE:Factory/.cacti.new.26092/cacti.changes 2020-02-06 13:08:25.608342725 +0100 @@ -1,0 +2,15 @@ +Sun Feb 2 17:10:52 UTC 2020 - Andreas Stieger <andreas.stie...@gmx.de> + +- cacti 1.2.8: + * CVE-2019-17357: When viewing graphs, some input variables were + not properly checked (SQL injection possible) [boo#1158990] + * CVE-2019-17358: Unsafe deserialisation of data [boo#1158992] + * When using HTTPS, secure cookie to prevent potential weakness + * various bug fixes + +------------------------------------------------------------------- +Thu Oct 17 15:13:04 UTC 2019 - Richard Brown <rbr...@suse.com> + +- Remove obsolete Groups tag (fate#326485) + +------------------------------------------------------------------- Old: ---- cacti-1.2.7.tar.gz New: ---- cacti-1.2.8.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ cacti.spec ++++++ --- /var/tmp/diff_new_pack.c88nmO/_old 2020-02-06 13:08:27.680343853 +0100 +++ /var/tmp/diff_new_pack.c88nmO/_new 2020-02-06 13:08:27.684343855 +0100 @@ -1,7 +1,7 @@ # # spec file for package cacti # -# Copyright (c) 2019 SUSE LINUX GmbH, Nuernberg, Germany. +# Copyright (c) 2020 SUSE LINUX GmbH, Nuernberg, Germany. # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -22,11 +22,10 @@ %define cacti_dir %{apache_datadir}/cacti %endif Name: cacti -Version: 1.2.7 +Version: 1.2.8 Release: 0 Summary: Web Front-End to Monitor System Data via RRDtool License: GPL-2.0-or-later -Group: System/Monitoring URL: http://www.cacti.net/ Source0: http://www.cacti.net/downloads/%{name}-%{version}.tar.gz Source1: %{name}.cron @@ -84,7 +83,6 @@ %package doc Summary: Documentation for Cacti -Group: Documentation/HTML Requires: %{name} = %{version} %description doc ++++++ cacti-1.2.7.tar.gz -> cacti-1.2.8.tar.gz ++++++ /work/SRC/openSUSE:Factory/cacti/cacti-1.2.7.tar.gz /work/SRC/openSUSE:Factory/.cacti.new.26092/cacti-1.2.8.tar.gz differ: char 5, line 1