File cacti.changes of Package cacti

Wed Mar 15 06:42:40 UTC 2017 -

- cacti 1.0.6:
  * issue#386: Allow special characters in graph title
  * issue#414: Install Wizard check path for spine
  * issue#415: SNMP session handling broken
  * issue#418: LDAP create user from template not working

Mon Mar 13 07:21:00 UTC 2017 -

- cacti 1.0.5:
  * issue#296: Poller warning for Non-SNMP device
  * issue#319: Add default 'High Collection Rate' data source profile
               to new installs to demonstrate concept of multiple rates
  * issue#330: Import templates to non-default Data Profile
  * issue#337: Error when try create new graph - SNMP - Generic OID
   issue#342:  Infinite loop in poller_automation.php with invalid
  * issue#343: Device discovery cannot handle dots in device name
  * issue#344: Unable to upgrade to latest Cacti on FreeBSD
  * issue#353: Legacy broadcast & multicast packet counters missing in
  * issue#354: Place on tree dashes / ordering is not correct
  * issue#355: Replace table rows with count when using InnoDB tables
  * issue#357: If recovery mode runs longer than a polling interval, a
               second is spawned
  * issue#358: Sending test e-mail results in warning
  * issue#360: Issue importing cacti.sql with some charsets
  * issue#364: Moving graph item causes page render issue
  * issue#365: ss_host_disk.php and ss_host_cpu.php should use return
  * issue#367: Upgrade chart.js to version 2.5
  * issue#368: Issue with device automation ip vs. ip_address
  * issue#369: Interface bits/second total Bandwidth wrong CDEF
  * issue#375: Drag and Drop of Devices and Graphs allows dropping
               onto self
  * issue#380: Ignores a non-standard SNMP port
  * issue#382: When using php5.5+ new users unable to change their
  * issue#384: graph_view.php backtrace errors
  * issue#385: Unable to place an aggregate grapn on a subtree
  * issue#390: Display graphs from this aggregate icon next to graph not
  * issue#392: cdef.php missing sql where for system cdef's
  * issue#398: checkbox is not honored when creating tree
  * issue#399: External link configuration: Order buttons don't work
  * issue#400: SNMP Engine ID (v3) field too short
  * issue#401: Graphs -> Apply Automation Rules fails
  * issue#404: Success even when test mail fails
  * issue#406: HRULE text format special characters not escaped
  * issue#408: Suppress SNMP units suffix from cacti_snmp_get() output
  * issue: Improve is_ipaddress functions
  * issue: Drag & drop showing when disabled on page
  * issue: Output messages displayed incorrectly in
           automation_templates.php and automation_snmp.php
  * issue: Importing template from old Cacti would not show data templates
  * issue: Handle snmp error exceptions better
  * issue: Update Apache .htaccess files to support multiple version
  * issue: When executing a full sync, if the table structured has
           changed, recreate the remote table
  * issue: Multiple domains not working as expected
  * feature#197: Add external_id to Cacti for linking Cacti to other
                 monitoring systems
  * feature#332: Support copy user groups
  * feature: Log proper IP address if logging in behind a NAT
  * feature: New qquery parsing rules: VALUE/TEST, VALUE/TABLE,

Tue Feb 28 15:20:18 UTC 2017 -

- Only allow to use the same spine version as the cacti version 

Mon Feb 27 10:44:47 UTC 2017 -

- cacti 1.0.4:
  * feature: Javascript: make menu movement smooth and use
  * feature: Added cacti_snmp_get_raw() for plugin developers
  * issue#288: Function cacti_snmp_get bad handling of wierd value
    into snmp_value
  * issue#298: Graph generation issue with SNMP - Bits/Sec + Total Bandwith
  * issue#301: Unresolvable DNS hostname causing backtraces
  * issue#302: spikekill memory leak
  * issue#303: Error when creating tree items with "&" in the name
  * issue#307: Aggregate graph gives CMDPHP errors
  * issue#308: UI resize issue
  * issue#309: Show "Save Successful" notification permanently
  * issue#311: Graph thumbnail settings in profile setting does not work
  * issue#320: Users can not change their own password
  * issue#324: Aggregate template graph template JavaScript error
  * issue#352: Add configurable auto-logout and page-reload options
  * issue#329: Customize the favicon
  * issue#334: primary key on poller output boost table not efficient/not being
    used correctly
  * issue: Fixed issues with Dark theme
  * issue: Fixed issues with Paw theme
  * issue: Fix timespan calculation
  * issue: Added misplaced join condition when generating RRDTool graphs
  * issue: Fix the selection of timestan based on local_graph_id and rra_id
  * issue: Correct error in discovery not adding devices
  * issue: Action message did not always display
  * issue: fix regex to use Domains like
  * issue: Properly align Order columns.
  * issue: address renaming issues with tree items.
  * issue: Add device snmp --version is ambiguous
  * issue: SNMP Availability failed to report down devices - This only was occuring
    for cmd.php collector.
  * issue: i18n remove embedded HTML syntax
  * issue: Wrap menu items to avoid scrolling 

Sun Feb 19 18:17:36 UTC 2017 -

- cacti 1.0.3:
  * Upgrade 0.8.8h to 1.0.0 fails to create poller_output_boost table
  *  Added missing template import hash for 1.0.2

Mon Feb 13 06:48:37 UTC 2017 -

- Build version 1.0.2
  * Changelog
    - issue#278: Correct Boost Status display issue
    - issue#275: Permission View issue and Device Dropdown when in Classic Theme
    - issue#270: Major Mib Cache corruption. Rebuild your MIB Cache after upgrading
    - issue: Resolve Cacti logo on Graphs page in Classic Theme
- Created a config.php fix patch, cacti-config.patch

Wed Feb  8 14:15:57 UTC 2017 -

- Build version 1.0.1
  * Fixes CVE-2014-4000 bnc#022564
  * Deleted cacti-log-path.patch is now handled via a symblink from
    /srv/www/cacti/log to /var/log/cacti
  * 1.0.1
    - feature: SpikeKill allows filling range to last known good value
    - issue#261: Add IPv4 and IPv6 Specific Counters to interfaces.xml
    - issue#257: Poller Output Table not Empty WARNING messages in cacti.log
    - issue#256: New Graph - Add Graph Items Fails (Data Sources shows None)
    - issue#255: Errors Creating new Graphs - Undefined Index Errors
    - issue#254: Unable to Properly add Data Source
    - issue#251: Remote Data Collector stuck on upgrade page
    - issue#247: Devices missing from tree device list
    - issue#245: Drag and Drop in Tree Edit Erratic
    - issue#243: SMTP Ping Failure with not SNMP Authentication
    - issue#241: Authentication Method: None not functional
    - issue#240: SQL error when install plugin
    - issue#238: Duplicate color id's cause error during Upgrade
    - issue#231: SNMPv3 - PHP ERROR WARNING: Fatal error: Unknown user name in file
    - issue: Resolving visual issues with row counts.
    - issue: When deleting Graphs prevent the removal of Data Sources that are still in use
    - issue: Improve SNMP agent performance through SQL optimizations
  * 1.0.0
    - feature: Support for remote data collectors
    - feature: Support Internationalization (i18n) for the main Cacti site, and supported plugins
    - feature: Data Source Profiles replace RRA settings allowing a single system to have multiple polling intervals
    - feature: Redesigned Tree page including Drag & Drop functionality
    - feature: New Graph Permissions system designed to make permissions simple to manage
    - feature: Add Themes 'Classic', 'Modern', 'Dark', and 'Paw'
    - feature: Debug Data Sources by comparing them to the Data Template
    - feature: New special Data Source type to detect the poller interval
    - feature: Bulk inserts in PHP poller to address latency issues
    - feature: Optimize data collection through in memory caching giving a 50% reduction in polling times when dealing with large sites
    - feature: Support RRDtool VDEFs
    - feature: Support RRDtool features: Right Axis Support, Dynamic Labels, Tab Width, Legend Position, Legend Direction
    - feature; Resizeable table columns
    - feature: Deprecated Single Pane Tree View
    - feature: Role Based Access Control (RBAC)
    - feature: Support User Group Permissions
    - feature: Show number of in use Graphs, Data Sources, and Devices for a given Template
    - feature: Support bulk re-sync of graphs to assigned Graph Template
    - feature: Bulk Device Settings changes
    - feature: CDEFs, Colors, GPrint Presets consolidated to Presets menu
    - feature: Authentication cookies for 'remember me' functionality
    - feature: Automatic logout after session inactivity
    - feature: Replace Boost server in favor of RRDtool Proxy
    - feature: Graph Details include CSV output, zoom, debug, and download links
    - feature: Graph Export moved to a plugin
    - feature: User change password functionality
    - feature: Automation added to core functionality through the merge of the Discovery and AutoM8 plugins
    - feature: Change interface graphs from 32 bit to 64 bit with ease
    - feature: Plugins now have hooks in device templates and automation
    - feature: Allow users to preview template imports to determine if there will be issues from importing
    - feature: Automatic removal of orphaned graph items when importing newer versions of graph templates
    - feature: Support for MySQL 5.7
    - feature: Support for PHP 7.0
    - feature: Merge Aggregate Plugin - Aggregate graph creation
    - feature: Merge AutoM8 Plugin - Automation of graph creation
    - feature: Merge Boost Plugin - Faster polling, result caching, on-demand RRDtool file updates
    - feature: Merge CLog Plugin - View Cacti logs
    - feature: Merge Discovery Plugin - Device discovery
    - feature: Merge Domains Plugin - Support for domain (ADS/LDAP) specific user templates
    - feature: Merge DSStats Plugin - Cache Data Source values for easy retrieval
    - feature: Merge Logrotate Plugin - Rotate Cacti logs
    - feature: Merge Realtime Plugin - Realtime graph viewing
    - feature: Merge Reporting (Nectar) Plugin - Reporting
    - feature: Merge RRDclean Plugin - RRD file cleanup and management
    - feature: Merge Secpass Plugin - User password policy enforcement
    - feature: Merge Settings Plugin - Shared settings for plugins
    - feature: Merge SNMP Agent Plugin - SNMP Agent for Cacti providing system statistics
    - feature: Merge SpikeKill Plugin - Remove unwanted spikes from graphs
    - feature: Merge SSL Plugin - Force https
    - feature: Merge SuperLinks Plugin - Add external links within Cacti
    - feature: Merge UGroup Plugin - User groups with permissions
    - feature: Merge Watermark Plugin - Watermark your Cacti graphs
    - bug: Fixed issue where old graph templates (0.8.6-), could import bogus data causing issues with Data Input Methods
    - bug#0000168: Duplicate data sources should be avoided when creating new graphs
    - bug#0000851: Review an imported template
    - bug#0001155: When viewing graph tree do not show empty nodes
    - bug#0001337: Form to filter for graphs in host view mode
    - bug#0001552: Date ranges not shown on graphs in the view with Daily, Weekly, Monthly & Yearly graphs
    - bug#0001573: RRA templates/grouping
    - bug#0001577: Override session handling and store session in Database
    - bug#0001790: Allow for XML delimiter in fields of a script query
    - bug#0001820: Unable to use a Data Input Method Output Field in more than one Data Source Item
    - bug#0001827: Changing the graph template messes up the graph item fields
    - bug#0001836: Add mysql error message to log
    - bug#0001877: Cookies path is not properly set
    - bug#0001966: Expand Devices in tree view not honored
    - bug#0001970: Data query index order cache should be populated on re-index
    - bug#0001981: Cacti is not full UTF-8
    - bug#0001986: CLI allow add_graphs.php to have multiples --snmp-field and --snmp-value options
    - bug#0001996: Allow using data input field in graph title
    - bug#0002096: Enumerated SNMP values not parsed correctly
    - bug#0002112: CLI add configurable parameters for device_add.php
    - bug#0002133: Restrict User to only manage specific device(s)
    - bug#0002135: Regular expression support for filter
    - bug#0002137: Data query oid_suffix parameter does not function
    - bug#0002159: Database creation file not fully compliant with strict SQL mode
    - bug#0002162: Unable to authenticate user with password containing UTF-8
    - bug#0002196: Incorrect script server instance number in log
    - bug#0002225: Make -Cc SNMP option configurable
    - bug#0002255: Script should only query local mounts
    - bug#0002336: Implement php-snmp class library
    - bug#0002340: Data query script execution should be escaped
    - bug#0002350: SNMP Data Query index_order ignored
    - bug#0002351: Ping does not work with non-English locale
    - bug#0002361: Spine does not log unknowns the same way cmd.php
    - bug#0002362: Poller cmd.php makes wrong hex-string to decimal conversion
    - bug#0002370: Cacti prints wrong date formats, does not honor a systems locale
    - bug#0002403: Typo in DELETE statement leading to poor graphing performance
    - bug#0002412: Graph Template duplication causes to be converted to TAB char
    - bug#0002418: Data Source Items named 'ds' break UI ability to add more items
    - bug#0002419: SNMP enum results not parsed correctly by cmd.php poller
    - bug#0002452: CVE-2014-4000 PHP Object Injection Vulnerabilities
    - bug#0002454: OS Command Injection
    - bug#0002468: Changing graph format to anything but PNG causes no output
    - bug#0002476: Add support for SNMP v3 EngineID
    - bug#0002483: Cisco ASA using Re-index method of verify all causes recache event every time
    - bug#0002484: Incorrect SQL request in cli script repair_database.php
    - bug#0002521: Unable to create two devices via CLI with the same IP-Address
    - bug#0002522: Zero padded hex strings are parsed incorrectly
    - bug#0002535: Graph Template Changes not updating RRDTool command
    - bug#0002636: Creating Data Template with "U" for min and max saves field data_input_field_id as 0 for first item
    - bug#0002697: CVE-2016-2313 allows remote authenticated users who use web authentication to bypass intended access
    - bug#0002698: When the host is down the wrong data type are used for some columns in the host table
    - bug#0002723: Renaming a disabled device still attempts to connect and get SNMP host information
    - bug#0002724: Multipage graphs the menu can disappear
    - bug#0002725: Changing graph template does not mark correct interfaces disabled on data query generated list  

Mon May  9 09:05:19 UTC 2016 -

- cacti 0.8.8h:
  * Authentication using web authentication as a user not in the
    cacti database allows complete access (regression)
  * Cacti SQL Injection Vulnerability
    (CVE-2016-3172) (boo#971357)
  * When click the [Clear] button after clicking the [Refresh]
    button in Preview Mode , fails to CSRFcheck
  * Cacti graph_view.php SQL Injection Vulnerability
    (CVE-2016-3659) (boo#974013)
  * Outdated MIBs for non-unicast packets
  * Index is a MySQL 5.6 reserved word
  * generate_graph_def_name() generates reserved word "cf"

Mon Feb 22 10:56:13 UTC 2016 -

- cacti 0.8.8g:
  * various graphing, PHP, HTML, output and monitoring fixes
  * Drop CVE-2015-8369.patch, CVE-2015-8604-CVE-2015-8377.patch,

Tue Feb  9 19:57:17 UTC 2016 -

- Fix the following vulnerabilities:
  * CVE-2015-8369: SQL injection in graph.php (boo#958863)
  * CVE-2015-8604: SQL injection in graphs_new.php (boo#960678)
  * CVE-2015-8377: SQL injection vulnerability in the
                   host_new_graphs_save function in graphs_new.php
  * CVE-2016-2313: Authentication using web authentication as a user
                   not in the cacti database allows complete access 
- adding CVE-2015-8369.patch, CVE-2015-8604-CVE-2015-8377.patch,

Mon Nov 16 16:21:14 UTC 2015 -

- Spec cleanup, split -doc package
- Universal "Requires:" for httpd and mod_php_any [boo#867607]
- Dropped
- Updated cacti.cron
- Dropped cacti-httpd.conf.vhost
- Dropped cacti-httpd.conf.nonsuse
- Updated cacti-httpd.conf (for openSUSE <= 1210 and other)
- Updated cacti-httpd.conf.default (for openSUSE > 1210)
- Dropped cacti-script.patch (applies to a non-packaged file)
- Updated cacti.logrotate

Sun Jul 26 19:12:38 UTC 2015 -

- cacti 0.8.8f:
  * 0.8.8e Poller Script Parser is Broken
  * cli/upgrade_database.php is missing releases
  * Graph managment graphs.php save button does not work
  * Poller Script Parser is Broken 

Mon Jul 20 10:53:24 UTC 2015 -

- Fixed the spec file so the package also builds for el7, Fedora 20 > etc.

Sat Jul 18 17:37:49 UTC 2015 -

- Update to 0.8.8e:
  This update contains importand security fixes: [boo#937997]
  - Multiple XSS and SQL injection vulnerabilities
  - CVE-2015-4634 - SQL injection in graphs.php
  Further fixes:
  - Fixed issue with graph zooming failing to work
  - Impossible to have a URL pointing directly to a graph
  - Cannot delete data sources from the GUI
  - viewing host in new tab - Undefined index: nodeid
  - status_fail_date and status_rec_date are set incorrectly after
    host is marked down
  - Incorrect value in Hosts column on Host Templates page
  - Incorrect row number in Devices -> (Edit) page

Tue Jun 16 13:21:16 UTC 2015 -

- Update to version 0.8.8d 
  - Fixes [bnc#934187]
    - CVE-2015-4342: cacti: Multiple XSS and SQL injection vulnerabilities
  - feature: Remove un-needed fonts and javascript files
  - bug: Fixed SQL injection VN: JVN#78187936 / TN:JPCERT#98968540
  - bug#0002261: PHP 5.4.0 added new error_reporting variable, causing cacti to show errors
  - bug#0002391: Odd Behaviour on ReIndex of Data Query Data
  - bug#0002393: Broken thumbnail images for graph templates
  - bug#0002402: Subtree must not have the same header as the parent header
  - bug#0002474: CLI add_device.php dows not set availability_method correctly
  - bug#0002449: The Save button does not work: Invalid html on page Console -> Cacti Settings: empty form tag
  - bug#0002428: Fail to delete all data input items when removing more than 1000 data sources
  - bug#0002439: Password with special character don't work with LDAP authentication
  - bug#0002461: invalid bn with ldap and anonymous bind
  - bug#0002465: Graph Export return empty CSV file
  - bug#0002484: Incorrect SQL request in cli script repair_database.php
  - bug#0002485: Broken pagenation on graph viewing
  - bug#0002489: SNMP - Get Mounted Partitions using Re-index method of Index Count Changed causes recache event every time
  - bug#0002490: Can not select page for multiple datasources per device
  - bug#0002494: CSV export always shows last day
  - bug#0002504: Data template search not functional
  - bug#0002542: [FG-VD-15-017] Cacti Cross-Site Scripting Vulnerability Notification
  - bug#0002543: Unable to switch pages within graphs_new.php due to invalid URL generation
  - bug#0002544: Duplicate entry in $nav_url during list view
  - bug#0002571: SQL Injection and Location header injection from cdef id CVE-2015-4342
  - bug#0002572: SQL injection in graph templates 
- Renamed two patch files, to a more generic name:
  - cacti-0.8.8c-cacti-log-path.patch to cacti-log-path.patch
  - cacti-0.8.8c-cacti-script.patch to cacti-script.patch

Mon Dec  8 11:25:49 UTC 2014 -

- Update to version 0.8.8c
  - New features
    - New graph tree view
    - Updated graph list and graph preview
    - Refactor graph tree view to remove GPL incompatible code
    - Updated command line database upgrade utility
    - Graph zooming now from everywhere 
  - Security fixes
    - CVE-2013-5588 - XSS issue via installer or device editing
    - CVE-2013-5589 - SQL injection vulnerability in device editing
    - CVE-2014-2326 - XSS issue via CDEF editing
    - CVE-2014-2327 - Cross-site request forgery (CSRF) vulnerability
    - CVE-2014-2328 - Remote Command Execution Vulnerability in graph export
    - CVE-2014-4002 - XSS issues in multiple files
    - CVE-2014-5025 - XSS issue via data source editing
    - CVE-2014-5026 - XSS issues in multiple files
  - Removed cacti-0.8.8b-cacti-log-path.patch as it is incompatible with 0.8.8c.
  - Removed cacti-0.8.8b-cacti-script.patch as it is incompatible with 0.8.8c.
  - Removed cacti-0.8.8b_CVE-2013-5588_CVE-2013-5589.patch as this code is incorprated to cacti 0.8.8c
  - Removed cacti-0.8.8b_security.patch as this code is incorprated to cacti 0.8.8c
  - Created cacti-0.8.8c-cacti-log-path.patch so that cacti only logs to /var/log/cacti
  - Created cacti-0.8.8c-cacti-script.patch so that cacti uses /usr/share/cacti/scripts

Sun Apr 13 20:21:53 UTC 2014 -

- Add cacti-0.8.8b_security.patch:
  - Fixes [bnc#870821]:
    - CVE-2014-2326: Unspecified HTML Injection Vulnerability
  - Fixes CVE-2014-2328:
    - Unspecified Remote Command Execution Vulnerability
  - Fixes [bnc#872008]:
    - CVE-2014-2708: Unspecified SQL Injection Vulnerability
    - CVE-2014-2709: Unspecified Remote Command Execution Vulnerability

- Add cacti-0.8.8b_CVE-2013-5588_CVE-2013-5589.patch:
  - Fixes [bnc#837440]:
    - CVE-2013-5588: HTML Injection Vulnerability
    - CVE-2013-5589: SQL Injection Vulnerability

Sat Apr 12 09:37:55 UTC 2014 -

- Change php requirements to be more general on SUSE systems

Thu Aug  8 06:57:12 UTC 2013 -

- Update to version 0.8.8b
  - bug: Fixed issue with custom data source information being lost when saved from edit
  - bug: Repopulate the poller cache on new installations
  - bug: Fix issue with poller not escaping the script query path correctly
  - bug: Allow snmpv3 priv proto none
  - bug: Fix issue where host activate may flush the entire poller item cache
  - security: SQL injection and shell escaping issues 

Mon Jun  4 08:57:00 UTC 2012 -

- Added official cacti 0.8.8a patch 

Mon Apr 30 11:09:10 UTC 2012 -

- New version 0.8.8a
- Fixed an rpmlint warning 

Mon Apr 16 10:27:23 UTC 2012 -

- Corrected the crontab file for openSUSE >= 12.2
- Some cross distro fixes so plugins will also build for other distros 

Tue Apr 10 17:03:29 UTC 2012 -

- Install cacti in /srv/www/cacti/  from openSUSE 12.2 onwards
- Passed the spec file through spec-cleaner
- Cacti-PA can be removed as cacti includes the Plugin Architure

Tue Apr 10 09:14:52 UTC 2012 -

- Minor changes in the spec file, updated version to 0.8.8 

Sun Jan  8 12:58:28 UTC 2012 -

- Reformated the spec file to the openSUSE standard 

Fri Dec 30 14:40:04 UTC 2011 -

- Added official settings_checkbox patch 

Tue Dec 13 22:15:03 UTC 2011 -

- Build version 0.8.7i 

Tue Oct  4 13:19:26 UTC 2011 -

- Upgrade to version 0.8.7h 

Fri Jun 10 00:00:00 UTC 2011

- added 'Provides' to make cactid installable

Sat Jul 10 00:00:00 UTC 2010

- update to cacti-0.8.7g

Sat May 22 00:00:00 UTC 2010

- update to cacti-0.8.7f

Wed Nov 11 00:00:00 UTC 2009

- Added the missing cli directory

Mon Aug 31 00:00:00 UTC 2009

- Minor change in the name of the patch file

Fri Aug 28 00:00:00 UTC 2009

- update to cacti-0.8.7e.tar.bz2 
  - bug#0001044: Creating a DS, Output field can't be selected for 
    DT with a DIM when "Use Per-Data Source Value" is on
  - bug#0001341: SNMP query: add oid_suffix for weird SNMP queries 
  - bug#0001345: Overwriting $snmp_index in query_snmp_host() breaks 
    SNMP Data query if using get method
  - bug#0001346: Strip out noisy 'No Such Instance currently exists 
    at this OID' 
  - bug#0001404: timeout in "function ping_icmp" (lib/ping.php)
  - bug#0001405: Spaces in DS when .rrd file is created, so it fails
  - bug#0001407: Place graph thumbnail into div to lower page length 
    changes on load graphs
  - bug#0001410: Thumbnail Columns is not honored for host display 
    with snmp index group style
  - bug#0001411: Graph searching issue
  - bug#0001413: strip_quotes fails 
  - bug#0001426: multiple form opening due to bug in draw_edit_form() 
  - bug#0001436: CSV Export Start Date and End Date are always 
    1970-01-01 01:00:00 
  - bug#0001443: format_snmp_string can return a number with a leading space 
  - bug#0001446: Wrong dates override in CSV export 
  - bug#0001456: oid_uptime is not parsed correctly 
  - bug#0001460: Skiping input parameters in data_query_field_list()
    may lead to SQL errors
  - bug#0001464: Typo in install/index.php 
  - bug#0001467: Customisable oid index parse regexp for weird MIBs
  - bug#0001468: Tree is not expanded correctly
  - bug#0001469: Tree is not being expanded if user followed link 
    outside of cacti
  - bug#0001476: Mark stacked columns in rrdtool_function_xport() output 
  - bug#0001477: Spelling error in a variable in html_tree.php
  - bug#0001478: Combo boxes on Graph Management page produce URLs 
    with leading spaces
  - bug: Top Graph Header Breaks When Plugins Used
  - bug: SNMP v3 Password issue caused by Firefox's Password AutoFill
  - bug: Strip Quotes does not properly handle the value 'U'
  - bug: Changes to the graph tree would not show up immediately for 
    current user
- bzip sources  

Mon Jun 15 00:00:00 UTC 2009

- reverted BuildRequires from libdb-4_5-devel to db-devel

Fri May 22 00:00:00 UTC 2009

- Working with prefix

Sat Apr 25 00:00:00 UTC 2009

- Updated BuildRequires to libdb-4_5-devel

Sat Feb 14 00:00:00 UTC 2009

- cleaned out the spec file
- deleted file for the PA platform

Fri Feb 13 00:00:00 UTC 2009

- build version cacti-0.8.7d

Thu Feb 12 00:00:00 UTC 2009

- improving the spec file
- added multi rpm distro build
- Added the plug-in framework

Mon Feb 2 00:00:00 UTC 2009

- building version 0.8.7c

Mon Apr 14 00:00:00 UTC 2008

- add official cacti patches
- cleanup buildrequires

Tue Apr  8 00:00:00 UTC 2008

- cacti does not really work without cron, but cron is not installed
  by default in the minimal system

Tue Feb 19 00:00:00 UTC 2008

- updated to 0.8.7b
  * security fixes:
  - Fix several security vulnerabilities
  * bug fixes:
  - Unnecessary (and faulty) DEF generation for CF:AVERAGE
  - Small visual fix for Cacti in "View Cacti Log File"
  - Graph xport modification to increase default rows output
  - Poller incorrectly identifies unique hosts
  - CLI Scripts bring MySQL down on large installations
  - Filtering broken on Data Sources page
  - Fix looping poller recache events
  - ss_fping.php 100%% "Pkt Loss" does not work properly
  - Graphs with no template and/or no host cause filtering errors on Graph Management page
  - View Poller Cache does not show Data Sources that have no host
  - Graph Generation fails if e.g. ifDescr contains some blanks
  - TCP/UDP ping port ignored
  - Downed Device Detection: None leads to database errors
  - update_host_status handles ping_availability incorrectly
  - "U" not allowed as min/max RRD value
  - Deleted user causes error on user log viewer
  - Re-assign duplicate radio button IDs
  - Add HTML title attributes for certain pages
  - Cacti does not guarentee RRA consolidation functions exist in RRA's
  - Alert on changing logarithmic scaling removed
  - add_hosts.php did not accept privacy protocol
  * features added:
  - show basic RRDtool graph options on Graph Template edit
  - Add additional logging to Graph Xport
  - Add rows dropdown to devices, graphs and data sources
  - Add device_id and event count to devices
  - Add ids to devices, graphs and data sources pages
  - Add database repair utility

Tue Nov 20 00:00:00 UTC 2007

- updated to 0.8.7a
  * "Use Per-Data Source Value (Ignore this Value)" runs only when when checking "Allow Empty Input"
  * Add --autoscale-min (rrdtool 1.2.x only) and --autoscale-max (using upper AND lower limit)
  * Allow for --logarithmic scaling without autoscaling
  * Data sources in RRAs have random order, messing up predefined CDEFs
  * Graph Templates drop down populates with duplicates
  * Upgrade from 0.8.6j to 0.8.7 defaults to Authentication Method NONE
  * Graph template - GRINT creates CF function DEF
  * Invalid date format - "half hour" not the GNU Date format
  * SQL error when using 'Auth Method' None when no 'guest' user exists
  * Graph Filter dropdowns do not respect user graph permissions
  * Potential SQL injection vulnerability
  * RRDtool 1.2.15 complain for garbage characters when rrdtool_function_xport is used
  * cmd.php: potential call to invalid "availability_method" key on wrong hash
  * Log file viewer inefficient filtering uses excess memory
  * doc change for using COUNTERs as integers only
  * Fixed extra spaces in GPRINT. Better Alignment for Autopadding
  * doc change for patching cacti when running SELinux
  * Cron interval detection causes multiple pollers to run
  * Max OIDS is not saved in device view
  * Undefined variable: rra in graph.php on line 241
  * Dates are not stored in host table using correct format
  * Graph Export Generates SQL Errors
  * Usernames with spaces and dashes are not able to save
  * Allow for --units=si on logarithmic scaled graphs (rrdtool-1.2.x only).
  * add opacity/alpha channel to graph items (rrdtool-1.2.x only).
  * Move to Top for List and Tree View. Omit boring scrolling
  * add availability pings to host interface

Tue Oct 30 00:00:00 UTC 2007

- update to 0.8.7
  * changes are too numerous to list
- dropped obsolete patches:
  * graph-image.patch (included in update)

Wed Sep 19 00:00:00 UTC 2007

- fix CVE-2007-3112 and CVE-2007-3113 (graph-image.patch) [#326228]

Mon Jun 25 00:00:00 UTC 2007

- fix last checkin

Thu Jun 21 00:00:00 UTC 2007

- update buildrequires

Thu Feb  8 00:00:00 UTC 2007

- updated to 0.8.6j:
  * fixed CVE-2006-6799
  * fixed hostname sorting on the devices page
  * fixed poller.php does not giving any output with MySQL disabled
  * added bottom navigation bar to graph viewing
  * added "collapsible" branches to the graph tree editor
  * added natural sort to graph items in the tree
- dropped obsoleted patches:
  * cacti-0.8.6h-CVE-2006-6799.patch (included in update)
- fixed spec file for #norootforbuild

Tue Jan  9 00:00:00 UTC 2007

- fixed CVE-2006-6799 [#231082]

Fri Mar 17 00:00:00 UTC 2006

- fix path settings

Wed Jan 25 00:00:00 UTC 2006

- converted neededforbuild to BuildRequires

Wed Jan 18 00:00:00 UTC 2006

- dont require php4 directly use the php abstraction

Fri Jan  6 00:00:00 UTC 2006

- update to 0.8.6h
- fixed logrotate setting

Tue Jan  3 00:00:00 UTC 2006

- update to 0.8.6g

Tue Oct 25 00:00:00 UTC 2005

- added php4-session to required packages (#130282)

Sat Jul  2 00:00:00 UTC 2005

- update to 0.8.6f

Sat Jun 18 00:00:00 UTC 2005

- update to 0.8.6e final

Thu Jun 16 00:00:00 UTC 2005

- update to 0.8.6e

Fri Jan 21 00:00:00 UTC 2005

- update to 0.8.6c

Fri Nov 19 00:00:00 UTC 2004

- update to 0.8.6b
- added logrotate config

Mon Sep 20 00:00:00 UTC 2004

- fix sql injection bug (#43908)

Mon Aug 30 00:00:00 UTC 2004

- remove apache1 traces

Wed Apr 28 00:00:00 UTC 2004

- update to 0.8.5a

Mon Feb 16 00:00:00 UTC 2004

- update to 0.8.5

Mon Dec 29 00:00:00 UTC 2003

- initial SUSE package
openSUSE Build Service is sponsored by