Module: check_mk
Branch: master
Commit: df7bb1172958dea094c4c322162ce597fa52c9ec
URL:
http://git.mathias-kettner.de/git/?p=check_mk.git;a=commit;h=df7bb1172958de…
Author: Lars Michelsen <lm(a)mathias-kettner.de>
Date: Fri Jun 20 10:58:44 2014 +0200
reclassified security related werks to new class
---
.werks/215 | 2 +-
.werks/766 | 2 +-
.werks/767 | 2 +-
.werks/784 | 2 +-
.werks/891 | 2 +-
.werks/930 | 2 +-
6 files changed, 6 insertions(+), 6 deletions(-)
diff --git a/.werks/215 b/.werks/215
index e499a5f..f184316 100644
--- a/.werks/215
+++ b/.werks/215
@@ -3,7 +3,7 @@ Level: 1
Component: multisite
Version: 1.2.3i7
Date: 1384935234
-Class: feature
+Class: security
It is now possible to disable the HTML escaping in plugin outputs and
log messages. This is useful if one really wants to use HTML codes
diff --git a/.werks/766 b/.werks/766
index 21d8748..33f0d6b 100644
--- a/.werks/766
+++ b/.werks/766
@@ -3,7 +3,7 @@ Level: 3
Component: multisite
Version: 1.2.5i2
Date: 1396259365
-Class: fix
+Class: security
This change fixes possible attacks against Check_MK Multisite users. In previous
versions a possible attacker could try to make the browsers of authenticated users
diff --git a/.werks/767 b/.werks/767
index 8b5a122..a54a8c4 100644
--- a/.werks/767
+++ b/.werks/767
@@ -1,7 +1,7 @@
Title: Signing and verification of WATO snapshot (addresses CVE-2014-2330)
Level: 2
Component: wato
-Class: fix
+Class: security
State: unknown
Version: 1.2.5i2
Date: 1396346149
diff --git a/.werks/784 b/.werks/784
index 3e38fb9..14ff121 100644
--- a/.werks/784
+++ b/.werks/784
@@ -1,7 +1,7 @@
Title: Improved security of WATO bulk inventory by using transaction ids
Level: 2
Component: wato
-Class: feature
+Class: security
State: unknown
Version: 1.2.5i3
Date: 1396612529
diff --git a/.werks/891 b/.werks/891
index 9ce16c1..4c5afd0 100644
--- a/.werks/891
+++ b/.werks/891
@@ -1,7 +1,7 @@
Title: Fix HTML encoding of tootip in inline timeline of availability
Level: 1
Component: reporting
-Class: fix
+Class: security
State: unknown
Version: 1.2.5i3
Date: 1400748002
diff --git a/.werks/930 b/.werks/930
index 58ef00e..64c0590 100644
--- a/.werks/930
+++ b/.werks/930
@@ -3,7 +3,7 @@ Level: 2
Component: wato
Version: 1.2.5i3
Date: 1401449745
-Class: feature
+Class: security
The upload of insecure snapshots has been disabled per default, because those
snapshots represent a security risk if their content were modified willingly or
unwillingly.