Hello community, here is the log from the commit of package cacti for openSUSE:Factory checked in at 2020-02-18 13:29:44 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:Factory/cacti (Old) and /work/SRC/openSUSE:Factory/.cacti.new.26092 (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "cacti" Tue Feb 18 13:29:44 2020 rev:28 rq:774966 version:1.2.9 Changes: -------- --- /work/SRC/openSUSE:Factory/cacti/cacti.changes 2020-02-06 13:08:25.608342725 +0100 +++ /work/SRC/openSUSE:Factory/.cacti.new.26092/cacti.changes 2020-02-18 13:29:47.984748530 +0100 @@ -1,0 +2,10 @@ +Sat Feb 15 18:46:00 UTC 2020 - Andreas Stieger <[email protected]> + +- cacti 1.2.9: + * CVE-2020-7106: Lack of escaping on some pages could lead to XSS + exposure (boo#1161297) + * CVE-2020-7237: Remote Code Execution due to input validation + failure in Performance Boost Debug Log (boo#1161297) + * many bug fixes + +------------------------------------------------------------------- Old: ---- cacti-1.2.8.tar.gz New: ---- cacti-1.2.9.tar.gz ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ cacti.spec ++++++ --- /var/tmp/diff_new_pack.9KkcCS/_old 2020-02-18 13:29:48.736749991 +0100 +++ /var/tmp/diff_new_pack.9KkcCS/_new 2020-02-18 13:29:48.740750000 +0100 @@ -22,7 +22,7 @@ %define cacti_dir %{apache_datadir}/cacti %endif Name: cacti -Version: 1.2.8 +Version: 1.2.9 Release: 0 Summary: Web Front-End to Monitor System Data via RRDtool License: GPL-2.0-or-later ++++++ cacti-1.2.8.tar.gz -> cacti-1.2.9.tar.gz ++++++ /work/SRC/openSUSE:Factory/cacti/cacti-1.2.8.tar.gz /work/SRC/openSUSE:Factory/.cacti.new.26092/cacti-1.2.9.tar.gz differ: char 5, line 1
