- update to 5.0.1:
Database Changes
+ For MySQL and MariaDB, the default character set has been updated to
utf8mb4 to accommodate more unicode characters including emojis.
See README.MySQL and README.MariaDB for details.
+ The Id field in some tables is changed from INT to BIGINT to accommodate
large RT systems that may hit the maximum number of ids. Because this
change touches large RT tables like Transactions and Attachments,
this upgrade step may take a while to run.
+ You also will need free disk space equal to the size of these tables
while running because MySQL, MariaDB, and Postgres will create a temporary
copy of the table while running. If you don't have sufficient space,
it can cause this step to fail.
Notable Changes
+ System configuration options can now be changed by SuperUsers via the
web UI. File-based configuration options are still loaded. Changes made
via the web UI take precedence over file-based options if both are set.
+ If you prefer to keep all configuration in files and disable editing in
the web UI, set this option to 0:
Set($ShowEditSystemConfig, 0);
+ The variables which alter the set of HTML elements allowed in HTML
scrubbing have moved; they have been renamed, and are now found under
RT::Interface::Web::Scrubber.
+ The articles interface on tickets has been simplified, now showing only
a dropdown for selecting articles. This dropdown converts to an autocomplete
box when the dropdown contains more than $DropdownMenuLimit items.
+ With this simplified interface, the "hotlist" feature is no longer
needed as all articles in classes applied to a given queue are available
in the dropdown/autocomplete field. To prevent articles in a class from
appearing for a queue, you can unapply the class from that queue.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:perl/request-tracker?expand=0&rev=67
2021-04-13 16:33:18 +00:00
|
|
|
Index: rt-5.0.1/Makefile.in
|
2017-05-10 20:31:26 +00:00
|
|
|
===================================================================
|
- update to 5.0.1:
Database Changes
+ For MySQL and MariaDB, the default character set has been updated to
utf8mb4 to accommodate more unicode characters including emojis.
See README.MySQL and README.MariaDB for details.
+ The Id field in some tables is changed from INT to BIGINT to accommodate
large RT systems that may hit the maximum number of ids. Because this
change touches large RT tables like Transactions and Attachments,
this upgrade step may take a while to run.
+ You also will need free disk space equal to the size of these tables
while running because MySQL, MariaDB, and Postgres will create a temporary
copy of the table while running. If you don't have sufficient space,
it can cause this step to fail.
Notable Changes
+ System configuration options can now be changed by SuperUsers via the
web UI. File-based configuration options are still loaded. Changes made
via the web UI take precedence over file-based options if both are set.
+ If you prefer to keep all configuration in files and disable editing in
the web UI, set this option to 0:
Set($ShowEditSystemConfig, 0);
+ The variables which alter the set of HTML elements allowed in HTML
scrubbing have moved; they have been renamed, and are now found under
RT::Interface::Web::Scrubber.
+ The articles interface on tickets has been simplified, now showing only
a dropdown for selecting articles. This dropdown converts to an autocomplete
box when the dropdown contains more than $DropdownMenuLimit items.
+ With this simplified interface, the "hotlist" feature is no longer
needed as all articles in classes applied to a given queue are available
in the dropdown/autocomplete field. To prevent articles in a class from
appearing for a queue, you can unapply the class from that queue.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:perl/request-tracker?expand=0&rev=67
2021-04-13 16:33:18 +00:00
|
|
|
--- rt-5.0.1.orig/Makefile.in
|
|
|
|
|
+++ rt-5.0.1/Makefile.in
|
|
|
|
|
@@ -282,8 +282,6 @@ fixdeps:
|
2011-11-01 13:11:52 +00:00
|
|
|
fixperms:
|
|
|
|
|
# Make the libraries readable
|
|
|
|
|
chmod $(RT_READABLE_DIR_MODE) $(DESTDIR)$(RT_PATH)
|
|
|
|
|
- chown -R $(LIBS_OWNER) $(DESTDIR)$(RT_LIB_PATH)
|
|
|
|
|
- chgrp -R $(LIBS_GROUP) $(DESTDIR)$(RT_LIB_PATH)
|
|
|
|
|
chmod -R u+rwX,go-w,go+rX $(DESTDIR)$(RT_LIB_PATH)
|
|
|
|
|
|
|
|
|
|
|
- update to 5.0.1:
Database Changes
+ For MySQL and MariaDB, the default character set has been updated to
utf8mb4 to accommodate more unicode characters including emojis.
See README.MySQL and README.MariaDB for details.
+ The Id field in some tables is changed from INT to BIGINT to accommodate
large RT systems that may hit the maximum number of ids. Because this
change touches large RT tables like Transactions and Attachments,
this upgrade step may take a while to run.
+ You also will need free disk space equal to the size of these tables
while running because MySQL, MariaDB, and Postgres will create a temporary
copy of the table while running. If you don't have sufficient space,
it can cause this step to fail.
Notable Changes
+ System configuration options can now be changed by SuperUsers via the
web UI. File-based configuration options are still loaded. Changes made
via the web UI take precedence over file-based options if both are set.
+ If you prefer to keep all configuration in files and disable editing in
the web UI, set this option to 0:
Set($ShowEditSystemConfig, 0);
+ The variables which alter the set of HTML elements allowed in HTML
scrubbing have moved; they have been renamed, and are now found under
RT::Interface::Web::Scrubber.
+ The articles interface on tickets has been simplified, now showing only
a dropdown for selecting articles. This dropdown converts to an autocomplete
box when the dropdown contains more than $DropdownMenuLimit items.
+ With this simplified interface, the "hotlist" feature is no longer
needed as all articles in classes applied to a given queue are available
in the dropdown/autocomplete field. To prevent articles in a class from
appearing for a queue, you can unapply the class from that queue.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:perl/request-tracker?expand=0&rev=67
2021-04-13 16:33:18 +00:00
|
|
|
@@ -294,17 +292,14 @@ fixperms:
|
2011-11-01 13:11:52 +00:00
|
|
|
|
|
|
|
|
#TODO: the config file should probably be able to have its
|
|
|
|
|
# owner set separately from the binaries.
|
|
|
|
|
- chown -R $(BIN_OWNER) $(DESTDIR)$(RT_ETC_PATH)
|
|
|
|
|
- chgrp -R $(RTGROUP) $(DESTDIR)$(RT_ETC_PATH)
|
2017-05-10 20:31:26 +00:00
|
|
|
-
|
2011-11-01 13:11:52 +00:00
|
|
|
chmod 0440 $(DESTDIR)$(CONFIG_FILE)
|
|
|
|
|
chmod 0640 $(DESTDIR)$(SITE_CONFIG_FILE)
|
|
|
|
|
|
|
|
|
|
# Make the system binaries
|
|
|
|
|
- cd $(DESTDIR)$(RT_BIN_PATH) && ( chmod 0755 $(BINARIES) ; chown $(BIN_OWNER) $(BINARIES); chgrp $(RTGROUP) $(BINARIES))
|
2014-02-20 18:39:58 +00:00
|
|
|
+ cd $(DESTDIR)$(RT_BIN_PATH) && ( chmod 0755 $(BINARIES))
|
2011-11-01 13:11:52 +00:00
|
|
|
|
|
|
|
|
# Make the system binaries executable also
|
|
|
|
|
- cd $(DESTDIR)$(RT_SBIN_PATH) && ( chmod 0755 $(SYSTEM_BINARIES) ; chown $(BIN_OWNER) $(SYSTEM_BINARIES); chgrp $(RTGROUP) $(SYSTEM_BINARIES))
|
2014-02-20 18:39:58 +00:00
|
|
|
+ cd $(DESTDIR)$(RT_SBIN_PATH) && ( chmod 0755 $(SYSTEM_BINARIES))
|
2011-11-01 13:11:52 +00:00
|
|
|
|
2013-05-02 12:20:04 +00:00
|
|
|
# Make upgrade scripts executable if they are in the source.
|
|
|
|
|
#
|
- update to 5.0.1:
Database Changes
+ For MySQL and MariaDB, the default character set has been updated to
utf8mb4 to accommodate more unicode characters including emojis.
See README.MySQL and README.MariaDB for details.
+ The Id field in some tables is changed from INT to BIGINT to accommodate
large RT systems that may hit the maximum number of ids. Because this
change touches large RT tables like Transactions and Attachments,
this upgrade step may take a while to run.
+ You also will need free disk space equal to the size of these tables
while running because MySQL, MariaDB, and Postgres will create a temporary
copy of the table while running. If you don't have sufficient space,
it can cause this step to fail.
Notable Changes
+ System configuration options can now be changed by SuperUsers via the
web UI. File-based configuration options are still loaded. Changes made
via the web UI take precedence over file-based options if both are set.
+ If you prefer to keep all configuration in files and disable editing in
the web UI, set this option to 0:
Set($ShowEditSystemConfig, 0);
+ The variables which alter the set of HTML elements allowed in HTML
scrubbing have moved; they have been renamed, and are now found under
RT::Interface::Web::Scrubber.
+ The articles interface on tickets has been simplified, now showing only
a dropdown for selecting articles. This dropdown converts to an autocomplete
box when the dropdown contains more than $DropdownMenuLimit items.
+ With this simplified interface, the "hotlist" feature is no longer
needed as all articles in classes applied to a given queue are available
in the dropdown/autocomplete field. To prevent articles in a class from
appearing for a queue, you can unapply the class from that queue.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:perl/request-tracker?expand=0&rev=67
2021-04-13 16:33:18 +00:00
|
|
|
@@ -319,26 +314,10 @@ fixperms:
|
2013-10-04 17:10:49 +00:00
|
|
|
$(DESTDIR)$(LOCAL_LEXICON_PATH) \
|
|
|
|
|
$(DESTDIR)$(RT_STATIC_PATH) \
|
|
|
|
|
$(DESTDIR)$(LOCAL_STATIC_PATH)
|
2011-11-01 13:11:52 +00:00
|
|
|
- chown -R $(LIBS_OWNER) $(DESTDIR)$(MASON_HTML_PATH) \
|
|
|
|
|
- $(DESTDIR)$(MASON_LOCAL_HTML_PATH) \
|
|
|
|
|
- $(DESTDIR)$(RT_LEXICON_PATH) \
|
2013-10-04 17:10:49 +00:00
|
|
|
- $(DESTDIR)$(LOCAL_LEXICON_PATH) \
|
|
|
|
|
- $(DESTDIR)$(RT_STATIC_PATH) \
|
|
|
|
|
- $(DESTDIR)$(LOCAL_STATIC_PATH)
|
2011-11-01 13:11:52 +00:00
|
|
|
- chgrp -R $(LIBS_GROUP) $(DESTDIR)$(MASON_HTML_PATH) \
|
|
|
|
|
- $(DESTDIR)$(MASON_LOCAL_HTML_PATH) \
|
|
|
|
|
- $(DESTDIR)$(RT_LEXICON_PATH) \
|
2013-10-04 17:10:49 +00:00
|
|
|
- $(DESTDIR)$(LOCAL_LEXICON_PATH) \
|
|
|
|
|
- $(DESTDIR)$(RT_STATIC_PATH) \
|
|
|
|
|
- $(DESTDIR)$(LOCAL_STATIC_PATH)
|
2011-11-01 13:11:52 +00:00
|
|
|
|
|
|
|
|
# Make the web ui's data dir writable
|
|
|
|
|
chmod 0770 $(DESTDIR)$(MASON_DATA_PATH) \
|
|
|
|
|
$(DESTDIR)$(MASON_SESSION_PATH)
|
|
|
|
|
- chown -R $(WEB_USER) $(DESTDIR)$(MASON_DATA_PATH) \
|
|
|
|
|
- $(DESTDIR)$(MASON_SESSION_PATH)
|
|
|
|
|
- chgrp -R $(WEB_GROUP) $(DESTDIR)$(MASON_DATA_PATH) \
|
|
|
|
|
- $(DESTDIR)$(MASON_SESSION_PATH)
|
|
|
|
|
|
|
|
|
|
dirs:
|
|
|
|
|
$(INSTALL) -m 0755 -d $(DESTDIR)$(RT_LOG_PATH)
|
- update to 5.0.1:
Database Changes
+ For MySQL and MariaDB, the default character set has been updated to
utf8mb4 to accommodate more unicode characters including emojis.
See README.MySQL and README.MariaDB for details.
+ The Id field in some tables is changed from INT to BIGINT to accommodate
large RT systems that may hit the maximum number of ids. Because this
change touches large RT tables like Transactions and Attachments,
this upgrade step may take a while to run.
+ You also will need free disk space equal to the size of these tables
while running because MySQL, MariaDB, and Postgres will create a temporary
copy of the table while running. If you don't have sufficient space,
it can cause this step to fail.
Notable Changes
+ System configuration options can now be changed by SuperUsers via the
web UI. File-based configuration options are still loaded. Changes made
via the web UI take precedence over file-based options if both are set.
+ If you prefer to keep all configuration in files and disable editing in
the web UI, set this option to 0:
Set($ShowEditSystemConfig, 0);
+ The variables which alter the set of HTML elements allowed in HTML
scrubbing have moved; they have been renamed, and are now found under
RT::Interface::Web::Scrubber.
+ The articles interface on tickets has been simplified, now showing only
a dropdown for selecting articles. This dropdown converts to an autocomplete
box when the dropdown contains more than $DropdownMenuLimit items.
+ With this simplified interface, the "hotlist" feature is no longer
needed as all articles in classes applied to a given queue are available
in the dropdown/autocomplete field. To prevent articles in a class from
appearing for a queue, you can unapply the class from that queue.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:perl/request-tracker?expand=0&rev=67
2021-04-13 16:33:18 +00:00
|
|
|
@@ -363,14 +342,15 @@ clean-mason-cache:
|
2017-05-10 20:31:26 +00:00
|
|
|
rm -rf $(DESTDIR)$(MASON_DATA_PATH)/etc/*
|
|
|
|
|
rm -rf $(DESTDIR)$(MASON_DATA_PATH)/obj/*
|
|
|
|
|
|
|
|
|
|
-install: testdeps config-install dirs files-install fixperms instruct
|
|
|
|
|
+#install: testdeps config-install dirs files-install fixperms instruct
|
|
|
|
|
+install: config-install dirs files-install fixperms instruct
|
|
|
|
|
|
2014-02-20 18:39:58 +00:00
|
|
|
files-install: libs-install etc-install config-install bin-install sbin-install html-install doc-install font-install po-install static-install
|
2011-11-01 13:11:52 +00:00
|
|
|
|
|
|
|
|
config-install:
|
|
|
|
|
-@COMMENT_INPLACE_LAYOUT@ $(INSTALL) -m 0755 -o $(BIN_OWNER) -g $(RTGROUP) -d $(DESTDIR)$(CONFIG_FILE_PATH)
|
|
|
|
|
-@COMMENT_INPLACE_LAYOUT@ -$(INSTALL) -m 0440 -o $(BIN_OWNER) -g $(RTGROUP) etc/RT_Config.pm $(DESTDIR)$(CONFIG_FILE)
|
|
|
|
|
-@COMMENT_INPLACE_LAYOUT@ [ -f $(DESTDIR)$(SITE_CONFIG_FILE) ] || $(INSTALL) -m 0640 -o $(BIN_OWNER) -g $(RTGROUP) etc/RT_SiteConfig.pm $(DESTDIR)$(SITE_CONFIG_FILE)
|
2017-05-10 20:31:26 +00:00
|
|
|
+@COMMENT_INPLACE_LAYOUT@ $(INSTALL) -m 0755 -d $(DESTDIR)$(CONFIG_FILE_PATH)
|
|
|
|
|
+@COMMENT_INPLACE_LAYOUT@ -$(INSTALL) -m 0440 etc/RT_Config.pm $(DESTDIR)$(CONFIG_FILE)
|
|
|
|
|
+@COMMENT_INPLACE_LAYOUT@ [ -f $(DESTDIR)$(SITE_CONFIG_FILE)] || $(INSTALL) -m 0640 etc/RT_SiteConfig.pm $(DESTDIR)$(SITE_CONFIG_FILE)
|
2011-11-01 13:11:52 +00:00
|
|
|
@COMMENT_INPLACE_LAYOUT@ @echo "Installed configuration. About to install RT in $(RT_PATH)"
|
|
|
|
|
|
|
|
|
|
test:
|
- update to 5.0.1:
Database Changes
+ For MySQL and MariaDB, the default character set has been updated to
utf8mb4 to accommodate more unicode characters including emojis.
See README.MySQL and README.MariaDB for details.
+ The Id field in some tables is changed from INT to BIGINT to accommodate
large RT systems that may hit the maximum number of ids. Because this
change touches large RT tables like Transactions and Attachments,
this upgrade step may take a while to run.
+ You also will need free disk space equal to the size of these tables
while running because MySQL, MariaDB, and Postgres will create a temporary
copy of the table while running. If you don't have sufficient space,
it can cause this step to fail.
Notable Changes
+ System configuration options can now be changed by SuperUsers via the
web UI. File-based configuration options are still loaded. Changes made
via the web UI take precedence over file-based options if both are set.
+ If you prefer to keep all configuration in files and disable editing in
the web UI, set this option to 0:
Set($ShowEditSystemConfig, 0);
+ The variables which alter the set of HTML elements allowed in HTML
scrubbing have moved; they have been renamed, and are now found under
RT::Interface::Web::Scrubber.
+ The articles interface on tickets has been simplified, now showing only
a dropdown for selecting articles. This dropdown converts to an autocomplete
box when the dropdown contains more than $DropdownMenuLimit items.
+ With this simplified interface, the "hotlist" feature is no longer
needed as all articles in classes applied to a given queue are available
in the dropdown/autocomplete field. To prevent articles in a class from
appearing for a queue, you can unapply the class from that queue.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:perl/request-tracker?expand=0&rev=67
2021-04-13 16:33:18 +00:00
|
|
|
@@ -474,7 +454,7 @@ etc-install:
|
2011-11-01 13:11:52 +00:00
|
|
|
sbin-install:
|
|
|
|
|
@COMMENT_INPLACE_LAYOUT@ $(INSTALL) -m 0755 -d $(DESTDIR)$(RT_SBIN_PATH)
|
|
|
|
|
@COMMENT_INPLACE_LAYOUT@ for file in $(SYSTEM_BINARIES) ; do \
|
|
|
|
|
-@COMMENT_INPLACE_LAYOUT@ $(INSTALL) -o $(BIN_OWNER) -g $(RTGROUP) -m 0755 "sbin/$$file" "$(DESTDIR)$(RT_SBIN_PATH)/" ; \
|
2017-05-10 20:31:26 +00:00
|
|
|
+@COMMENT_INPLACE_LAYOUT@ $(INSTALL) -m 0755 "sbin/$$file" "$(DESTDIR)$(RT_SBIN_PATH)/" ; \
|
2011-11-01 13:11:52 +00:00
|
|
|
@COMMENT_INPLACE_LAYOUT@ done
|
|
|
|
|
|
|
|
|
|
|
- update to 5.0.1:
Database Changes
+ For MySQL and MariaDB, the default character set has been updated to
utf8mb4 to accommodate more unicode characters including emojis.
See README.MySQL and README.MariaDB for details.
+ The Id field in some tables is changed from INT to BIGINT to accommodate
large RT systems that may hit the maximum number of ids. Because this
change touches large RT tables like Transactions and Attachments,
this upgrade step may take a while to run.
+ You also will need free disk space equal to the size of these tables
while running because MySQL, MariaDB, and Postgres will create a temporary
copy of the table while running. If you don't have sufficient space,
it can cause this step to fail.
Notable Changes
+ System configuration options can now be changed by SuperUsers via the
web UI. File-based configuration options are still loaded. Changes made
via the web UI take precedence over file-based options if both are set.
+ If you prefer to keep all configuration in files and disable editing in
the web UI, set this option to 0:
Set($ShowEditSystemConfig, 0);
+ The variables which alter the set of HTML elements allowed in HTML
scrubbing have moved; they have been renamed, and are now found under
RT::Interface::Web::Scrubber.
+ The articles interface on tickets has been simplified, now showing only
a dropdown for selecting articles. This dropdown converts to an autocomplete
box when the dropdown contains more than $DropdownMenuLimit items.
+ With this simplified interface, the "hotlist" feature is no longer
needed as all articles in classes applied to a given queue are available
in the dropdown/autocomplete field. To prevent articles in a class from
appearing for a queue, you can unapply the class from that queue.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:perl/request-tracker?expand=0&rev=67
2021-04-13 16:33:18 +00:00
|
|
|
@@ -482,7 +462,7 @@ sbin-install:
|
2011-11-01 13:11:52 +00:00
|
|
|
bin-install:
|
|
|
|
|
@COMMENT_INPLACE_LAYOUT@ $(INSTALL) -m 0755 -d $(DESTDIR)$(RT_BIN_PATH)
|
|
|
|
|
@COMMENT_INPLACE_LAYOUT@ for file in $(BINARIES) ; do \
|
|
|
|
|
-@COMMENT_INPLACE_LAYOUT@ $(INSTALL) -o $(BIN_OWNER) -g $(RTGROUP) -m 0755 "bin/$$file" "$(DESTDIR)$(RT_BIN_PATH)/" ; \
|
2017-05-10 20:31:26 +00:00
|
|
|
+@COMMENT_INPLACE_LAYOUT@ $(INSTALL) -m 0755 "bin/$$file" "$(DESTDIR)$(RT_BIN_PATH)/" ; \
|
2011-11-01 13:11:52 +00:00
|
|
|
@COMMENT_INPLACE_LAYOUT@ done
|
|
|
|
|
|
2014-02-20 18:39:58 +00:00
|
|
|
|
- update to 5.0.1:
Database Changes
+ For MySQL and MariaDB, the default character set has been updated to
utf8mb4 to accommodate more unicode characters including emojis.
See README.MySQL and README.MariaDB for details.
+ The Id field in some tables is changed from INT to BIGINT to accommodate
large RT systems that may hit the maximum number of ids. Because this
change touches large RT tables like Transactions and Attachments,
this upgrade step may take a while to run.
+ You also will need free disk space equal to the size of these tables
while running because MySQL, MariaDB, and Postgres will create a temporary
copy of the table while running. If you don't have sufficient space,
it can cause this step to fail.
Notable Changes
+ System configuration options can now be changed by SuperUsers via the
web UI. File-based configuration options are still loaded. Changes made
via the web UI take precedence over file-based options if both are set.
+ If you prefer to keep all configuration in files and disable editing in
the web UI, set this option to 0:
Set($ShowEditSystemConfig, 0);
+ The variables which alter the set of HTML elements allowed in HTML
scrubbing have moved; they have been renamed, and are now found under
RT::Interface::Web::Scrubber.
+ The articles interface on tickets has been simplified, now showing only
a dropdown for selecting articles. This dropdown converts to an autocomplete
box when the dropdown contains more than $DropdownMenuLimit items.
+ With this simplified interface, the "hotlist" feature is no longer
needed as all articles in classes applied to a given queue are available
in the dropdown/autocomplete field. To prevent articles in a class from
appearing for a queue, you can unapply the class from that queue.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:perl/request-tracker?expand=0&rev=67
2021-04-13 16:33:18 +00:00
|
|
|
Index: rt-5.0.1/sbin/rt-setup-fulltext-index.in
|
- update to 4.4.4:
Security Updates
+ One of RT's dependencies, the Perl module Email::Address, has a denial
of service vulnerability which could induce a denial of service of RT
itself.
We recommend updating to Email::Address version 1.912 or later. The
Email::Address vulnerabilities are assigned CVE-2015-7686 and CVE-2015-12558.
CVE-2015-7686 was addressed in RT with a previous update.
Email::Address version 1.912 addresses both of these CVEs with updates
directly in the source module.
+ One of RT's dependencies, the Perl module Email::Address::List, relies
on and operates similarly to Email::Address and therefore also has
potential denial of service vulnerabilities.
These vulnerabilities are assigned CVE-2018-18898. We recommend
administrators install Email::Address::List version 0.06 or later.
+ An optional RT dependency, HTML::Gumbo, incorrectly escaped HTML in
some cases. Since RT relies on this module to escape HTML content,
it's possible this issue could allow malicious HTML to be displayed
in RT.
For RT's using this optional module, we recommend administrators
install HTML::Gumbo version 0.18 or later.
* The version of jQuery used in RT 4.2 and 4.4 has a Cross-site Scripting
(XSS) vulnerability when using cross-domain Ajax requests.
This vulnerability is assigned CVE-2015-9251.
RT does not use this jQuery feature so it is not directly vulnerable.
jQuery version 1.12 no longer receives official updates, however a
fix was posted with recommendations for applications to patch locally,
so RT will follow this recommendation and ship with a patched version.
EU General Data Protection Regulation (GDPR)
Several new features were added to support GDPR compliance and are summarized here.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:perl/request-tracker?expand=0&rev=61
2019-03-14 13:50:49 +00:00
|
|
|
===================================================================
|
- update to 5.0.1:
Database Changes
+ For MySQL and MariaDB, the default character set has been updated to
utf8mb4 to accommodate more unicode characters including emojis.
See README.MySQL and README.MariaDB for details.
+ The Id field in some tables is changed from INT to BIGINT to accommodate
large RT systems that may hit the maximum number of ids. Because this
change touches large RT tables like Transactions and Attachments,
this upgrade step may take a while to run.
+ You also will need free disk space equal to the size of these tables
while running because MySQL, MariaDB, and Postgres will create a temporary
copy of the table while running. If you don't have sufficient space,
it can cause this step to fail.
Notable Changes
+ System configuration options can now be changed by SuperUsers via the
web UI. File-based configuration options are still loaded. Changes made
via the web UI take precedence over file-based options if both are set.
+ If you prefer to keep all configuration in files and disable editing in
the web UI, set this option to 0:
Set($ShowEditSystemConfig, 0);
+ The variables which alter the set of HTML elements allowed in HTML
scrubbing have moved; they have been renamed, and are now found under
RT::Interface::Web::Scrubber.
+ The articles interface on tickets has been simplified, now showing only
a dropdown for selecting articles. This dropdown converts to an autocomplete
box when the dropdown contains more than $DropdownMenuLimit items.
+ With this simplified interface, the "hotlist" feature is no longer
needed as all articles in classes applied to a given queue are available
in the dropdown/autocomplete field. To prevent articles in a class from
appearing for a queue, you can unapply the class from that queue.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:perl/request-tracker?expand=0&rev=67
2021-04-13 16:33:18 +00:00
|
|
|
--- rt-5.0.1.orig/sbin/rt-setup-fulltext-index.in
|
|
|
|
|
+++ rt-5.0.1/sbin/rt-setup-fulltext-index.in
|
- update to 4.4.4:
Security Updates
+ One of RT's dependencies, the Perl module Email::Address, has a denial
of service vulnerability which could induce a denial of service of RT
itself.
We recommend updating to Email::Address version 1.912 or later. The
Email::Address vulnerabilities are assigned CVE-2015-7686 and CVE-2015-12558.
CVE-2015-7686 was addressed in RT with a previous update.
Email::Address version 1.912 addresses both of these CVEs with updates
directly in the source module.
+ One of RT's dependencies, the Perl module Email::Address::List, relies
on and operates similarly to Email::Address and therefore also has
potential denial of service vulnerabilities.
These vulnerabilities are assigned CVE-2018-18898. We recommend
administrators install Email::Address::List version 0.06 or later.
+ An optional RT dependency, HTML::Gumbo, incorrectly escaped HTML in
some cases. Since RT relies on this module to escape HTML content,
it's possible this issue could allow malicious HTML to be displayed
in RT.
For RT's using this optional module, we recommend administrators
install HTML::Gumbo version 0.18 or later.
* The version of jQuery used in RT 4.2 and 4.4 has a Cross-site Scripting
(XSS) vulnerability when using cross-domain Ajax requests.
This vulnerability is assigned CVE-2015-9251.
RT does not use this jQuery feature so it is not directly vulnerable.
jQuery version 1.12 no longer receives official updates, however a
fix was posted with recommendations for applications to patch locally,
so RT will follow this recommendation and ship with a patched version.
EU General Data Protection Regulation (GDPR)
Several new features were added to support GDPR compliance and are summarized here.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:perl/request-tracker?expand=0&rev=61
2019-03-14 13:50:49 +00:00
|
|
|
@@ -49,6 +49,7 @@
|
|
|
|
|
use strict;
|
|
|
|
|
use warnings;
|
|
|
|
|
no warnings 'once';
|
|
|
|
|
+use lib '__vendorperl__';
|
|
|
|
|
use Term::ReadKey;
|
|
|
|
|
|
|
|
|
|
# fix lib paths, some may be relative
|
- update to 5.0.1:
Database Changes
+ For MySQL and MariaDB, the default character set has been updated to
utf8mb4 to accommodate more unicode characters including emojis.
See README.MySQL and README.MariaDB for details.
+ The Id field in some tables is changed from INT to BIGINT to accommodate
large RT systems that may hit the maximum number of ids. Because this
change touches large RT tables like Transactions and Attachments,
this upgrade step may take a while to run.
+ You also will need free disk space equal to the size of these tables
while running because MySQL, MariaDB, and Postgres will create a temporary
copy of the table while running. If you don't have sufficient space,
it can cause this step to fail.
Notable Changes
+ System configuration options can now be changed by SuperUsers via the
web UI. File-based configuration options are still loaded. Changes made
via the web UI take precedence over file-based options if both are set.
+ If you prefer to keep all configuration in files and disable editing in
the web UI, set this option to 0:
Set($ShowEditSystemConfig, 0);
+ The variables which alter the set of HTML elements allowed in HTML
scrubbing have moved; they have been renamed, and are now found under
RT::Interface::Web::Scrubber.
+ The articles interface on tickets has been simplified, now showing only
a dropdown for selecting articles. This dropdown converts to an autocomplete
box when the dropdown contains more than $DropdownMenuLimit items.
+ With this simplified interface, the "hotlist" feature is no longer
needed as all articles in classes applied to a given queue are available
in the dropdown/autocomplete field. To prevent articles in a class from
appearing for a queue, you can unapply the class from that queue.
OBS-URL: https://build.opensuse.org/package/show/devel:languages:perl/request-tracker?expand=0&rev=67
2021-04-13 16:33:18 +00:00
|
|
|
Index: rt-5.0.1/sbin/rt-test-dependencies.in
|
|
|
|
|
===================================================================
|
|
|
|
|
--- rt-5.0.1.orig/sbin/rt-test-dependencies.in
|
|
|
|
|
+++ rt-5.0.1/sbin/rt-test-dependencies.in
|
|
|
|
|
@@ -48,7 +48,7 @@
|
|
|
|
|
# END BPS TAGGED BLOCK }}}
|
|
|
|
|
use strict;
|
|
|
|
|
use warnings;
|
|
|
|
|
-
|
|
|
|
|
+use lib '__vendorperl__';
|
|
|
|
|
use Getopt::Long;
|
|
|
|
|
|
|
|
|
|
use Cwd qw(abs_path);
|
|
|
|
|
@@ -436,7 +436,7 @@ sub check_users_groups {
|
|
|
|
|
my $group = sub { $line->("group", sub {getgrnam($_[0])}, @_) };
|
|
|
|
|
my $user = sub { $line->("user", sub {getpwnam($_[0])}, @_) };
|
|
|
|
|
|
|
|
|
|
- $group->( rt => "@RTGROUP@" );
|
|
|
|
|
+# $group->( rt => "@RTGROUP@" );
|
|
|
|
|
$user->( bin => "@BIN_OWNER@" );
|
|
|
|
|
$user->( libs => "@LIBS_OWNER@" );
|
|
|
|
|
$group->( libs => "@LIBS_GROUP@" );
|