commit icingaweb2 for openSUSE:Factory

Mon, 24 Aug 2020 06:14:43 -0700 

Hello community,

here is the log from the commit of package icingaweb2 for openSUSE:Factory 
checked in at 2020-08-24 15:13:36
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Comparing /work/SRC/openSUSE:Factory/icingaweb2 (Old)
 and      /work/SRC/openSUSE:Factory/.icingaweb2.new.3399 (New)
++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Package is "icingaweb2"

Mon Aug 24 15:13:36 2020 rev:18 rq:828704 version:2.8.2

Changes:
--------
--- /work/SRC/openSUSE:Factory/icingaweb2/icingaweb2.changes    2020-06-29 
21:19:27.949988307 +0200
+++ /work/SRC/openSUSE:Factory/.icingaweb2.new.3399/icingaweb2.changes  
2020-08-24 15:14:09.954717513 +0200
@@ -1,0 +2,26 @@
+Sat Aug 22 15:00:54 UTC 2020 - ecsos <[email protected]>
+
+- Update to 2.8.2
+  
+  Notice: This is a security release. 
+          It is recommended to immediately upgrade to this release.
+
+  You can find all issues related to this release on the respective 
+  milestone.
+
+  * Path Traversal Vulnerability
+    The vulnerability in question allows an attacker to access 
+    arbitrary files which are readable by the process running 
+    Icinga Web 2. Technical details can be found at the 
+    corresponding CVE-2020-24368 and in the issue below.
+
+    - Possible path traversal when serving static image files #4226
+
+  * Broken Negated Filters with PostgreSQL
+    We've also included a small non-security related fix. Searching
+    for e.g. servicegroup!=support leads to an error instead of the
+    desired result when using a PostgreSQL database.
+
+    - Single negated membership filter fails with PostgreSQL #4196
+
+-------------------------------------------------------------------

Old:
----
  icingaweb2-2.8.1.tar.gz

New:
----
  icingaweb2-2.8.2.tar.gz

++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++

Other differences:
------------------
++++++ icingaweb2.spec ++++++
--- /var/tmp/diff_new_pack.s4vSK8/_old  2020-08-24 15:14:10.870717959 +0200
+++ /var/tmp/diff_new_pack.s4vSK8/_new  2020-08-24 15:14:10.874717961 +0200
@@ -20,7 +20,7 @@
 %define revision 1
 
 Name:           icingaweb2
-Version:        2.8.1
+Version:        2.8.2
 Release:        %{revision}%{?dist}
 Summary:        Icinga Web 2
 License:        GPL-2.0-or-later AND MIT AND BSD-3-Clause

++++++ icingaweb2-2.8.1.tar.gz -> icingaweb2-2.8.2.tar.gz ++++++
/work/SRC/openSUSE:Factory/icingaweb2/icingaweb2-2.8.1.tar.gz 
/work/SRC/openSUSE:Factory/.icingaweb2.new.3399/icingaweb2-2.8.2.tar.gz differ: 
char 13, line 1

Reply via email to