Hello community, here is the log from the commit of package patchinfo.2372 for openSUSE:13.1:Update checked in at 2013-12-23 14:35:46 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:13.1:Update/patchinfo.2372 (Old) and /work/SRC/openSUSE:13.1:Update/.patchinfo.2372.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++
Package is "patchinfo.2372" Changes: -------- New Changes file: NO CHANGES FILE!!! New: ---- _patchinfo ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ _patchinfo ++++++ <patchinfo> <issue id="852847" tracker="bnc">VUL-0: CVE-2013-6404: quassel: manipulated clients can access backlog of all users on a shared core</issue> <issue id="CVE-2013-6404" tracker="cve" /> <category>security</category> <rating>moderate</rating> <packager>alarrosa</packager> <description> - Add fix-CVE-2013-6404.diff: Fix a vulnerability by which an authenticated malicious user using a custom client, could access the backlog of all users of a quassel core. This fixes CVE-2013-6404 (bnc#852847). </description> <summary>update for quassel</summary> </patchinfo> -- To unsubscribe, e-mail: opensuse-commit+unsubscr...@opensuse.org For additional commands, e-mail: opensuse-commit+h...@opensuse.org