8906 moderate openSUSE Leap 42.3 Update This update for icinga fixes the following issues: Update to 1.14.0 - CVE-2015-8010: Fixed XSS in the icinga classic UI (boo#952777) - CVE-2016-8641 / CVE-2016-10089: fixed a possible symlink attack for files/dirs created by root (boo#1011630 and boo#1018047) - CVE-2016-0726: removed the pre-configured administrative account with fixed password for the WebUI - (boo#961115) icinga-1.14.0-8.3.2.src.rpm icinga-1.14.0-8.3.2.x86_64.rpm icinga-debuginfo-1.14.0-8.3.2.x86_64.rpm icinga-debugsource-1.14.0-8.3.2.x86_64.rpm icinga-devel-1.14.0-8.3.2.x86_64.rpm icinga-doc-1.14.0-8.3.2.x86_64.rpm icinga-idoutils-1.14.0-8.3.2.x86_64.rpm icinga-idoutils-debuginfo-1.14.0-8.3.2.x86_64.rpm icinga-idoutils-mysql-1.14.0-8.3.2.x86_64.rpm icinga-idoutils-oracle-1.14.0-8.3.2.x86_64.rpm icinga-idoutils-pgsql-1.14.0-8.3.2.x86_64.rpm icinga-plugins-downtimes-1.14.0-8.3.2.x86_64.rpm icinga-plugins-eventhandlers-1.14.0-8.3.2.x86_64.rpm icinga-www-1.14.0-8.3.2.x86_64.rpm icinga-www-config-1.14.0-8.3.2.x86_64.rpm icinga-www-debuginfo-1.14.0-8.3.2.x86_64.rpm monitoring-tools-1.14.0-8.3.2.x86_64.rpm monitoring-tools-debuginfo-1.14.0-8.3.2.x86_64.rpm