Hello community, here is the log from the commit of package otrs for openSUSE:Factory checked in at 2014-04-05 16:47:57 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/otrs (Old) and /work/SRC/openSUSE:Factory/.otrs.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "otrs" Changes: -------- --- /work/SRC/openSUSE:Factory/otrs/otrs.changes 2014-03-28 16:25:12.000000000 +0100 +++ /work/SRC/openSUSE:Factory/.otrs.new/otrs.changes 2014-04-05 16:47:59.000000000 +0200 @@ -1,0 +2,95 @@ +Thu Apr 3 22:00:49 UTC 2014 - [email protected] + +- fix for bnc#871758 (CVE-2014-2553) +- update to 3.3.6 + fix for OSA-2014-04 (CVE-2014-2553) + fix for OSA-2014-05 (CVE-2014-2554) + * Updated French translation, thanks to Guillaume Houdmon. + * Extended the OTRS system registration to optionally also send the + support assessment data along with the system registration data. + Support assessment data is improved and extended and can be + accessed in the new Service Center module of the admin area. + * Fixed bug#10405 - When using the search feature of the tree + selection overlay, one is not able to expand subtrees of matching + entries. + * Fixed bug#10340 - Dynamic field not visible in queue view screen + (AgentTicketOverviewSmall.dtl). + * Fixed bug#10400 - AgentTicketProccess will not use error messages + of dynamic field drivers. + * Fixed bug#10397 - DynamicField configuration in SysConfig + 'DefaultOverviewColumns' causes JS error. + * Fixed bug#9592 - Ticket history overflows for dynamic field. + * Fixed bug#10368 - Ticket title isn't shown. + * Updated Japanese translation, thanks to Toshihiro Takehara.. + * Fixed bug#10381 - AgentTicket*View has invalid SortBy options. + * Fixed bug#10383 - Missing 'DefaultColumns' SysConfig for + AgentTicketSearch view. + * Fixed bug#10384 - out-of-office information not displayed in + Ticket Zoom. + * Fixed bug#10379 - ACL Not Working. + * Fixed bug#10385 - Wrong Queue ID for Errors and FormUpdate in + AgentTicketActionCommon. + * Fixed bug#10369 - Ticket::Frontend::Quote does not work with + RichText Editor. + * Improved handling of cachekeys in Stats.pm to prevent cacheing + problems in the dashboard stats. + * Fixed bug#10334 - Deleting the attachment deletes the recepients + too. + * Fixed bug#10374 - OTRS does not protect against clickjacking. + * Fixed bug#10364 - Inline images displayed as attachment in SMIME + and PGP signed messages. + * Fixed bug#10251 - SMIME signing fail on mails with attachements. + * Fixed bug#10277 - Statistics per agent also shows invalid agents. + * Fixed bug#10318 - Dynamic Field: Multi Select does not allow + empty values. + * Fixed bug#10365 - Custom State types not working with + "otrs.PendingJobs.pl" any more. + * Fixed bug#10349 - System Email notification external not + highlighted correctly. + * Fixed bug#10361 - Incorrect handling of special characters in + DynamicFields. + * Fixed bug#10324 - Customer user field still marked as empty even + after providing data. + * Fixed bug#10019 - Tickets via "In line action bar" cannot be moved. + * Fixed bug#10283 - MouseOver on the Transitions does not show + transition actions. + * Fixed bug#10241 - ACL-Editor Bug.. + * Fixed bug#10338 - Empty Content-ID causes strange result -> + HTML-tags are "corrupted". + * Fixed bug#9951 - Line breaks at the end of salutation templates + are not saved. + * Fixed bug#10275 - Problem with encoding in attachment. + * Fixed bug#10085 - Postmaster incorrectly decodes headers, causes + garbage in the database. + * Fixed bug#10336 - Problem with symlinked theme directories. + * Fixed bug#10328 - Error in AdminPostMasterFilter if the name of + DynamicField changed. + * Fixed bug#10264 - Description (espacially article description) in + processes are shown on improper place. + * Fixed bug#10244 - No mouseover popup for fields in ActivityDialogs. + * Fixed bug#10240 - Restricting process list by ACLs is only working + with UserID. + * Fixed bug#10299 - "Ouf of Office" shows inactive agents. + * Fixed bug#10321 - Applying Filters to tickets in Status View or + Queue View will log out session.. + * Fixed bug#9600 - When a ticket is deleted by generic agent job, + No such TicketID error. + * Fixed bug#10057 - Advanced Search Window is Cramped and Confusing. + * Fixed bug#9675 - No use Ticket::Hook in AgentLinkObject. + * Updated Japanese translation, thanks to Norihiro Tanaka! + * Fixed bug#10300 - Special character in customer id cuts off string. + * Fixed bug#10309 - mails with an empty return-path header must not + trigger auto responses in OTRS. + * Fixed bug#10245 - Use of uninitialized value $Param{"Value2"} in + string. + * Fixed bug#10182 - Customer email suddenly treated by OTRS as + 'email-internal'. + * Fixed bug#10285 - No use Ticket::Hook in CustomerTicketZoom. + * Fixed bug#9787 - Queue field doesn't appear in ProcessMgmt. + * Fixed bug#10222 - Customer search during ticket creation - OTRS + shows details also if no customer match the search. + * Fixed bug#10259 - GenericInterface: mapping key can't map from / to 0. +- rebased perm patch +- update httpd_conf patch + +------------------------------------------------------------------- Old: ---- itsm-3.3.5.tar.bz2 otrs-3.3.5.tar.bz2 New: ---- itsm-3.3.6.tar.bz2 otrs-3.3.6.tar.bz2 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ otrs.spec ++++++ --- /var/tmp/diff_new_pack.nOQJmr/_old 2014-04-05 16:48:02.000000000 +0200 +++ /var/tmp/diff_new_pack.nOQJmr/_new 2014-04-05 16:48:02.000000000 +0200 @@ -16,8 +16,8 @@ # -%define otrs_ver 3.3.5 -%define itsm_ver 3.3.5 +%define otrs_ver 3.3.6 +%define itsm_ver 3.3.6 %define itsm_min 3.3 %define otrs_root /srv %define otrsdoc_dir_files AUTHORS* CHANGES* COPYING* CREDITS README* UPGRADING.SuSE doc ++++++ itsm-3.3.5.tar.bz2 -> itsm-3.3.6.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/otrs/itsm-3.3.5.tar.bz2 /work/SRC/openSUSE:Factory/.otrs.new/itsm-3.3.6.tar.bz2 differ: char 11, line 1 ++++++ otrs-3.3.5.tar.bz2 -> otrs-3.3.6.tar.bz2 ++++++ /work/SRC/openSUSE:Factory/otrs/otrs-3.3.5.tar.bz2 /work/SRC/openSUSE:Factory/.otrs.new/otrs-3.3.6.tar.bz2 differ: char 11, line 1 ++++++ otrs-httpd_conf.patch ++++++ --- /var/tmp/diff_new_pack.nOQJmr/_old 2014-04-05 16:48:02.000000000 +0200 +++ /var/tmp/diff_new_pack.nOQJmr/_new 2014-04-05 16:48:02.000000000 +0200 @@ -31,17 +31,44 @@ AllowOverride None Options +ExecCGI -Includes -@@ -75,7 +75,8 @@ Alias /otrs-web/ "/opt/otrs/var/httpd/ht +@@ -75,7 +75,35 @@ Alias /otrs-web/ "/opt/otrs/var/httpd/ht </IfModule> </Directory> -<Directory "/opt/otrs/var/httpd/htdocs/"> ++<Directory "@OTRS_ROOT@/otrs/var/httpd/htdocs/js/thirdparty/ckeditor-4.3/"> ++ # ++ # Copyright (c) 2003-2010, CKSource - Frederico Knabben. All rights reserved. ++ # For licensing, see LICENSE.html or http://ckeditor.com/license ++ # ++ ++ # ++ # On some specific Linux installations you could face problems with Firefox. ++ # It could give you errors when loading the editor saying that some illegal ++ # characters were found (three strange chars in the beginning of the file). ++ # This could happen if you map the .js or .css files to PHP, for example. ++ # ++ # Those characters are the Byte Order Mask (BOM) of the Unicode encoded files. ++ # All FCKeditor files are Unicode encoded. ++ # ++ ++ AddType application/x-javascript .js ++ AddType text/css .css ++ ++ # ++ # If PHP is mapped to handle XML files, you could have some issues. The ++ # following will disable it. ++ # ++ ++ AddType text/xml .xml ++</Directory> ++ +<Directory "@OTRS_ROOT@/otrs/var/httpd/htdocs/"> + Options +FollowSymlinks AllowOverride None <IfModule mod_version.c> -@@ -107,28 +108,28 @@ Alias /otrs-web/ "/opt/otrs/var/httpd/ht +@@ -107,28 +135,28 @@ Alias /otrs-web/ "/opt/otrs/var/httpd/ht <IfModule mod_headers.c> # Cache css-cache for 30 days ++++++ otrs-perm.patch ++++++ --- /var/tmp/diff_new_pack.nOQJmr/_old 2014-04-05 16:48:02.000000000 +0200 +++ /var/tmp/diff_new_pack.nOQJmr/_new 2014-04-05 16:48:02.000000000 +0200 @@ -2,7 +2,7 @@ =================================================================== --- Kernel/System/Package.pm.orig +++ Kernel/System/Package.pm -@@ -3005,7 +3005,7 @@ sub _FileSystemCheck { +@@ -3062,7 +3062,7 @@ sub _FileSystemCheck { } # create test files in following directories -- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
