Overview

File _patchinfo of Package patchinfo.4203

<patchinfo incident="4203">
   <issue id="1034310" tracker="bnc">Hexchat has pci.ids set to the wrong location for Opensuse</issue>
   <issue id="1020739" tracker="bnc">VUL-1: CVE-2016-2087: hexchat: Directory traversal vulnerability</issue>
   <issue id="2016-2087" tracker="cve" />
   <category>security</category>
   <rating>moderate</rating>
   <packager>JonathanKang</packager>
   <description>
This update for hexchat fixes the following issues:
 
- CVE-2016-2087: A directory traversal was possible if a user could be convinced to connect to a server with a hostname with ".." in its name. (bsc#1020739).
 
This non-security issue was fixed:
 
- Add dependency on iso-codes and hwdata as hexchat tries to use them (bsc#1034310)
</description>
<summary>Security update for hexchat</summary>
</patchinfo>
openSUSE Build Service is sponsored by
Places