From: "Girar awaiter (zidex)" <girar-builder@altlinux.org> To: Pavel Zilke <zidex@altlinux.org> Cc: girar-builder-p10@altlinux.org, sisyphus-incominger@lists.altlinux.org, girar-builder-p10@lists.altlinux.org Subject: [#306811] p10 EPERM glpi.git=9.5.9-alt1 Date: Wed, 14 Sep 2022 20:11:37 +0000 Message-ID: <girar.task.306811.1.1@gyle.mskdc.altlinux.org> (raw) https://git.altlinux.org/tasks/306811/logs/events.1.1.log subtask name aarch64 armh i586 ppc64le x86_64 #100 glpi 1:25 2:08 59 1:43 56 2022-Sep-14 20:05:35 :: task #306811 for p10 started by zidex: 2022-Sep-14 20:05:35 :: message: critical_security_fix #100 build 9.5.9-alt1 from /people/zidex/packages/glpi.git fetched at 2022-Sep-14 20:04:53 2022-Sep-14 20:05:35 :: [i586] #100 glpi.git 9.5.9-alt1: build start 2022-Sep-14 20:05:35 :: [armh] #100 glpi.git 9.5.9-alt1: build start 2022-Sep-14 20:05:35 :: [aarch64] #100 glpi.git 9.5.9-alt1: build start 2022-Sep-14 20:05:35 :: [x86_64] #100 glpi.git 9.5.9-alt1: build start 2022-Sep-14 20:05:35 :: [ppc64le] #100 glpi.git 9.5.9-alt1: build start 2022-Sep-14 20:06:31 :: [x86_64] #100 glpi.git 9.5.9-alt1: build OK 2022-Sep-14 20:06:34 :: [i586] #100 glpi.git 9.5.9-alt1: build OK 2022-Sep-14 20:07:00 :: [aarch64] #100 glpi.git 9.5.9-alt1: build OK 2022-Sep-14 20:07:18 :: [ppc64le] #100 glpi.git 9.5.9-alt1: build OK 2022-Sep-14 20:07:43 :: [armh] #100 glpi.git 9.5.9-alt1: build OK 2022-Sep-14 20:08:06 :: #100: glpi.git 9.5.9-alt1: build check OK 2022-Sep-14 20:08:06 :: build check OK 2022-Sep-14 20:08:22 :: noarch check OK 2022-Sep-14 20:08:24 :: plan: src +1 -1 =17877, noarch +3 -3 =16477 #100 glpi 9.5.8-alt1 -> 9.5.9-alt1 Wed Sep 14 2022 Pavel Zilke <zidex@altlinux> 9.5.9-alt1 - New version 9.5.9 - This release fixes several critical security issues that has been recently discovered. Update is strongly recommended! - Security fixes: + CVE-2022-35945 : XSS through registration API + CVE-2022-31143 : Leak of sensitive information through login page error + CVE-2022-35914 : [critical] Command injection using a third-party library script + CVE-2022-35946 : SQL injection through plugin controller + CVE-2022-35947 : [critical] Authentication via SQL injection + CVE-2022-36112 : Blind Server-Side Request Forgery (SSRF) in RSS feeds and planning 2022-Sep-14 20:08:24 :: glpi: mentions vulnerabilities: CVE-2022-35945 CVE-2022-31143 CVE-2022-35914 CVE-2022-35946 CVE-2022-35947 CVE-2022-36112 2022-Sep-14 20:08:51 :: patched apt indices 2022-Sep-14 20:09:05 :: created next repo 2022-Sep-14 20:09:12 :: duplicate provides check OK 2022-Sep-14 20:09:50 :: dependencies check OK 2022-Sep-14 20:10:02 :: [x86_64] #100 glpi: install check OK 2022-Sep-14 20:10:03 :: [i586] #100 glpi: install check OK 2022-Sep-14 20:10:09 :: [x86_64] #100 glpi-apache2: install check OK 2022-Sep-14 20:10:10 :: [i586] #100 glpi-apache2: install check OK 2022-Sep-14 20:10:12 :: [aarch64] #100 glpi: install check OK 2022-Sep-14 20:10:15 :: [ppc64le] #100 glpi: install check OK 2022-Sep-14 20:10:16 :: [x86_64] #100 glpi-php7: install check OK 2022-Sep-14 20:10:17 :: [i586] #100 glpi-php7: install check OK 2022-Sep-14 20:10:24 :: [aarch64] #100 glpi-apache2: install check OK 2022-Sep-14 20:10:24 :: [armh] #100 glpi: install check OK 2022-Sep-14 20:10:30 :: [ppc64le] #100 glpi-apache2: install check OK 2022-Sep-14 20:10:35 :: [aarch64] #100 glpi-php7: install check OK 2022-Sep-14 20:10:43 :: [armh] #100 glpi-apache2: install check OK 2022-Sep-14 20:10:43 :: [ppc64le] #100 glpi-php7: install check OK 2022-Sep-14 20:11:03 :: [armh] #100 glpi-php7: install check OK 2022-Sep-14 20:11:04 :: gears inheritance check OK 2022-Sep-14 20:11:04 :: srpm inheritance check OK girar-check-perms: access to glpi DENIED for zidex: project `glpi' is not listed in the acl file for repository `p10', and the policy for such projects in `p10' is to deny check-subtask-perms: #100: glpi: needs approvals from members of @maint and @tester groups 2022-Sep-14 20:11:05 :: acl check FAILED 2022-Sep-14 20:11:25 :: created contents_index files 2022-Sep-14 20:11:34 :: created hash files: noarch src 2022-Sep-14 20:11:36 :: task #306811 for p10 EPERM
next reply other threads:[~2022-09-14 20:11 UTC|newest] Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top 2022-09-14 20:11 Girar awaiter (zidex) [this message] 2022-09-16 14:19 ` [#306811] p10 DONE (try 2) glpi.git=9.5.9-alt1 Girar pender (amakeenk)
Reply instructions: You may reply publicly to this message via plain-text email using any one of the following methods: * Save the following mbox file, import it into your mail client, and reply-to-all from there: mbox Avoid top-posting and favor interleaved quoting: https://en.wikipedia.org/wiki/Posting_style#Interleaved_style * Reply using the --to, --cc, and --in-reply-to switches of git-send-email(1): git send-email \ --in-reply-to=girar.task.306811.1.1@gyle.mskdc.altlinux.org \ --to=girar-builder@altlinux.org \ --cc=devel@lists.altlinux.org \ --cc=girar-builder-p10@altlinux.org \ --cc=girar-builder-p10@lists.altlinux.org \ --cc=sisyphus-incominger@lists.altlinux.org \ --cc=zidex@altlinux.org \ /path/to/YOUR_REPLY https://kernel.org/pub/software/scm/git/docs/git-send-email.html * If your mail client supports setting the In-Reply-To header via mailto: links, try the mailto: link
ALT Linux Girar Builder robot reports This inbox may be cloned and mirrored by anyone: git clone --mirror http://lore.altlinux.org/sisyphus-incominger/0 sisyphus-incominger/git/0.git # If you have public-inbox 1.1+ installed, you may # initialize and index your mirror using the following commands: public-inbox-init -V2 sisyphus-incominger sisyphus-incominger/ http://lore.altlinux.org/sisyphus-incominger \ sisyphus-incominger@lists.altlinux.org sisyphus-incominger@lists.altlinux.ru sisyphus-incominger@lists.altlinux.com public-inbox-index sisyphus-incominger Example config snippet for mirrors. Newsgroup available over NNTP: nntp://lore.altlinux.org/org.altlinux.lists.sisyphus-incominger AGPL code for this site: git clone https://public-inbox.org/public-inbox.git