Hello community, here is the log from the commit of package patchinfo.4073 for openSUSE:13.2:Update checked in at 2015-10-15 09:10:58 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:13.2:Update/patchinfo.4073 (Old) and /work/SRC/openSUSE:13.2:Update/.patchinfo.4073.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "patchinfo.4073" Changes: -------- New Changes file: NO CHANGES FILE!!! New: ---- _patchinfo ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ _patchinfo ++++++ <patchinfo incident="4073"> <issue id="920813" tracker="bnc">VUL-0: CVE-2015-0254: jakarta-taglibs-standard: XXE and RCE via XSL extension in JSTL XML tags</issue> <issue id="CVE-2015-0254" tracker="cve" /> <category>security</category> <rating>moderate</rating> <name>jakarta-taglibs-standard</name> <packager>scarabeus_iv</packager> <description>jakarta-taglibs-standard was updated to fix one security issue. This security issue was fixed: - CVE-2015-0254: Apache Standard Taglibs before 1.2.3 allowed remote attackers to execute arbitrary code or conduct external XML entity (XXE) attacks via a crafted XSLT extension (bsc#920813). </description> <summary>Security update for jakarta-taglibs-standard</summary> </patchinfo>
