Overview
Request 1206578 superseded
- cacti 1.2.28:
security #GHSA-49f2-hwx9-qffr: XSS vulnerability when creating external links with the consolenewsection parameter
security #GHSA-fgc6-g8gc-wcg5: XSS vulnerability when creating external links with the title parameter
security #GHSA-gxq4-mv8h-6qj4: RCE vulnerability can be executed via Log Poisoning
security #GHSA-wh9c-v56x-v77c: XSS vulnerability when creating external links with the fileurl parameter
issue #5636: When using LDAP authentication the first time, warnings may appear in logs
issue #5754: When installing, a replication loop for plugin_realms may occur
issue #5759: When installing, remote poller may attempt to sync with other pollers
issue #5768: When a Data Query has a space, indexes may not be properly escaped
issue #5771: Boost does not always order data source records properly
issue #5772: Add IP address to the login audit for successful logins by xmacan
issue #5773: Undefined variable error may sometimes occur when dealing with RRD output by MSS970
issue #5777: When export to CSV, only the first line of notes is included
issue #5780: When rendering forms, missing default value can cause errors
issue #5782: Allow hosted content to be executable for the links page
issue #5783: When closing database connections, some may linger incorrectly
issue #5785: When changing passwords, an infinite loop may occur by ddb4github
issue #5790: When using Cacti Daemon, a "Cron out of sync" message may be reported
issue #5791: Add ability to filter/sort users by group or last login time
issue #5792: When using List View, unable to add Graphs to a Report
issue #5797: When using SNMPv3, some devices may show polling issues
issue #5802: Limit table conversion to Cacti core tables
issue #5806: Fix issues with posix-based kills on Windows
issue #5813: When installing, password changes may fail on new installations
issue #5814: When using structured RRD folders, permission issues may be flagged incorrectly
issue #5823: When unable to locate a valid theme, new default will be Modern
issue #5824: Properly cache the data source information for dsstats processing
issue #5840: When reindexing, verify all fields may not work as intended
feature #5784: Add ability to log database connections/disconnections
feature #5796: Add Ping Method where connection refused assumes host is up
feature #5819: When displaying graphs, default end time does not show full 24 hour period
feature #5825: Add --id to remove_device.php
feature #5828: Add Location and Site to Graph List View
feature #5830: Add more verbose logging to Boost
feature: Update jQuery to 3.7.1
feature: Update jQueryUI to 1.14.0
feature: Update Purify.js to 3.1.6
feature: Update billboard.js to 3.13.0
feature: Improve the performance of the repopulation of the poller cache
- attempt to set permissions on several sub folders
to fix https://build.opensuse.org/package/show/openSUSE:Factory/cacti#comment-1466121
- Recent builds are being placed in /usr/share instead of existing /srv/www/cacti. This is an attempt to fix.
- Created by joelgb
- In state superseded
- Supersedes 1200909
- Superseded by 1206589
Recent builds are being placed in /usr/share instead of existing /srv/www/cacti. This is an attempt to fix.
Placing the files in /usr/share is correct and using /srv/www/cacti is wrong. Please don't accept this wrong fix.
@STorresi, @aeneas_jaissle, @aldemir_a, @bitshuffler, @bnicholes, @ciriarte, @dakechi, @darix, @deadpoint, @dstoecker, @ecsos, @jcavalheiro, @lrupp, @marostegui, @mcaj, @mge1512, @mnhauke, @mseben, @netmask, @peternixon, @psmt, @rhomann, @schubi2, @shapbot, @witekbedyk, @worldcitizen, @wrosenauer: review reminder
Request History
joelgb created request
- cacti 1.2.28:
security #GHSA-49f2-hwx9-qffr: XSS vulnerability when creating external links with the consolenewsection parameter
security #GHSA-fgc6-g8gc-wcg5: XSS vulnerability when creating external links with the title parameter
security #GHSA-gxq4-mv8h-6qj4: RCE vulnerability can be executed via Log Poisoning
security #GHSA-wh9c-v56x-v77c: XSS vulnerability when creating external links with the fileurl parameter
issue #5636: When using LDAP authentication the first time, warnings may appear in logs
issue #5754: When installing, a replication loop for plugin_realms may occur
issue #5759: When installing, remote poller may attempt to sync with other pollers
issue #5768: When a Data Query has a space, indexes may not be properly escaped
issue #5771: Boost does not always order data source records properly
issue #5772: Add IP address to the login audit for successful logins by xmacan
issue #5773: Undefined variable error may sometimes occur when dealing with RRD output by MSS970
issue #5777: When export to CSV, only the first line of notes is included
issue #5780: When rendering forms, missing default value can cause errors
issue #5782: Allow hosted content to be executable for the links page
issue #5783: When closing database connections, some may linger incorrectly
issue #5785: When changing passwords, an infinite loop may occur by ddb4github
issue #5790: When using Cacti Daemon, a "Cron out of sync" message may be reported
issue #5791: Add ability to filter/sort users by group or last login time
issue #5792: When using List View, unable to add Graphs to a Report
issue #5797: When using SNMPv3, some devices may show polling issues
issue #5802: Limit table conversion to Cacti core tables
issue #5806: Fix issues with posix-based kills on Windows
issue #5813: When installing, password changes may fail on new installations
issue #5814: When using structured RRD folders, permission issues may be flagged incorrectly
issue #5823: When unable to locate a valid theme, new default will be Modern
issue #5824: Properly cache the data source information for dsstats processing
issue #5840: When reindexing, verify all fields may not work as intended
feature #5784: Add ability to log database connections/disconnections
feature #5796: Add Ping Method where connection refused assumes host is up
feature #5819: When displaying graphs, default end time does not show full 24 hour period
feature #5825: Add --id to remove_device.php
feature #5828: Add Location and Site to Graph List View
feature #5830: Add more verbose logging to Boost
feature: Update jQuery to 3.7.1
feature: Update jQueryUI to 1.14.0
feature: Update Purify.js to 3.1.6
feature: Update billboard.js to 3.13.0
feature: Improve the performance of the repopulation of the poller cache
- attempt to set permissions on several sub folders
to fix https://build.opensuse.org/package/show/openSUSE:Factory/cacti#comment-1466121
- Recent builds are being placed in /usr/share instead of existing /srv/www/cacti. This is an attempt to fix.
