Hello community, here is the log from the commit of package patchinfo.2751 for openSUSE:13.1:Update checked in at 2014-05-02 14:24:53 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Comparing /work/SRC/openSUSE:13.1:Update/patchinfo.2751 (Old) and /work/SRC/openSUSE:13.1:Update/.patchinfo.2751.new (New) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Package is "patchinfo.2751" Changes: -------- New Changes file: NO CHANGES FILE!!! New: ---- _patchinfo ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ _patchinfo ++++++ <patchinfo incident="cacti"> <packager>aeneas_jaissle</packager> <issue tracker="cve" id="CVE-2014-2326"></issue> <issue tracker="cve" id="CVE-2014-2328"></issue> <issue tracker="cve" id="CVE-2014-2708"></issue> <issue tracker="cve" id="CVE-2014-2709"></issue> <issue tracker="bnc" id="870821">VUL-0: CVE-2014-2326: cacti: xss attacjs ub 0.8.7g</issue> <issue tracker="bnc" id="872008">VUL-0: CVE-2014-2708, CVE-2014-2709: cacti: command injection issues</issue> <issue tracker="cve" id="CVE-2013-5588"></issue> <issue tracker="cve" id="CVE-2013-5589"></issue> <issue tracker="bnc" id="837440">VUL-0: CVE-2013-5588 CVE-2013-5589: cacti: XSS and SQL injection vulnerabilities</issue> <category>security</category> <rating>moderate</rating> <summary>cacti: security fixes; cacti-spine: update to 0.8.8b</summary> <description>cacti was patched to fix several security issues: * CVE-2013-5588: XSS injection vulnerability * CVE-2013-5589: SQL injection vulnerability * CVE-2014-2326: XSS injection vulnerability * CVE-2014-2328: Remote Command Execution Vulnerability * CVE-2014-2708: SQL Injection Vulnerability * CVE-2014-2709: Remote Command Execution Vulnerability cacti-spine was updated to 0.8.8b to fix the following issue: * bug: set appropriate mysql 5.5+ timeouts</description> </patchinfo> -- To unsubscribe, e-mail: opensuse-commit+unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit+help@opensuse.org