Script 'mail_helper' called by obssrc Hello community, here is the log from the commit of package cacti for openSUSE:Factory checked in at 2021-05-06 22:52:39 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/cacti (Old) and /work/SRC/openSUSE:Factory/.cacti.new.2988 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "cacti" Thu May 6 22:52:39 2021 rev:38 rq:890825 version:1.2.17 Changes: -------- --- /work/SRC/openSUSE:Factory/cacti/cacti.changes 2020-12-21 10:26:11.220168297 +0100 +++ /work/SRC/openSUSE:Factory/.cacti.new.2988/cacti.changes 2021-05-06 22:53:14.550597263 +0200 @@ -1,0 +2,27 @@ +Wed May 5 18:58:50 UTC 2021 - Andreas Stieger <[email protected]> + +- cacti 1.2.17: + * Fix incorrect handling of fields led to potential XSS issues + * CVE-2020-35701: Fix SQL Injection vulnerability (boo#1180804) + * Fix various XSS issues with HTML Forms handling + * Fix handling of Daylight Saving Time changes + * Multiple fixes and extensions to plugins + * Fix multiple display, export, and input validation issues + * SNMPv3 Password field was not correctly limited + * Improved regular expression handling for searcu + * Improved support for RRDproxy + * Improved behavior on large systems + * MariaDB/MysQL: Support persistent connections and improve + multiple operations and options + * Add Theme 'Midwinter' + * Modify automation to test for data before creating graphs + * Add hooks for plugins to show customize graph source and customize + template url + * Allow CSRF security key to be refreshed at command line + * Allow remote pollers statistics to be cleared + * Allow user to be automatically logged out after admin defined + period + * When replicating, ensure Cacti can detect and verify replica + servers + +------------------------------------------------------------------- Old: ---- cacti-1.2.16.tar.gz New: ---- cacti-1.2.17.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ cacti.spec ++++++ --- /var/tmp/diff_new_pack.Iy3rz5/_old 2021-05-06 22:53:15.082595069 +0200 +++ /var/tmp/diff_new_pack.Iy3rz5/_new 2021-05-06 22:53:15.082595069 +0200 @@ -1,7 +1,7 @@ # # spec file for package cacti # -# Copyright (c) 2020 SUSE LLC +# Copyright (c) 2021 SUSE LLC # # All modifications and additions to the file contributed by third parties # remain the property of their copyright owners, unless otherwise agreed @@ -16,6 +16,7 @@ # +%{!?make_build: %define make_build make %{?_smp_mflags}} %if 0%{?suse_version} <= 1210 %define cacti_dir %{_datadir}/cacti %else @@ -27,7 +28,7 @@ %bcond_with systemd %endif Name: cacti -Version: 1.2.16 +Version: 1.2.17 Release: 0 Summary: Web Front-End to Monitor System Data via RRDtool License: GPL-2.0-or-later ++++++ cacti-1.2.16.tar.gz -> cacti-1.2.17.tar.gz ++++++ /work/SRC/openSUSE:Factory/cacti/cacti-1.2.16.tar.gz /work/SRC/openSUSE:Factory/.cacti.new.2988/cacti-1.2.17.tar.gz differ: char 18, line 1
