From: "Girar pender (amakeenk)" <girar-builder@altlinux.org>
To: Pavel Zilke <zidex@altlinux.org>
Cc: sisyphus-incominger@lists.altlinux.org, girar-builder-p9@altlinux.org
Subject: [#307140] p9 DONE (try 2) glpi.git=9.5.9-alt1
Date: Fri, 23 Sep 2022 15:16:19 +0000
Message-ID: <girar.task.307140.2.1@gyle.mskdc.altlinux.org> (raw)
In-Reply-To: <girar.task.307140.1.1@gyle.mskdc.altlinux.org>
https://git.altlinux.org/tasks/archive/done/_299/307140/logs/events.2.1.log
2022-Sep-23 15:09:22 :: task #307140 for p9 resumed by amakeenk:
2022-Sep-23 15:09:22 :: message: critical_security_fix
#100 build 9.5.9-alt1 from /people/zidex/packages/glpi.git fetched at 2022-Sep-20 21:53:10
2022-Sep-23 15:09:22 :: waiting for a shared lock on p9
2022-Sep-23 15:12:28 :: acquired a shared lock on p9
2022-Sep-23 15:12:30 :: [aarch64] #100 glpi.git 9.5.9-alt1: build start
2022-Sep-23 15:12:30 :: [armh] #100 glpi.git 9.5.9-alt1: build start
2022-Sep-23 15:12:30 :: [i586] #100 glpi.git 9.5.9-alt1: build start
2022-Sep-23 15:12:30 :: [ppc64le] #100 glpi.git 9.5.9-alt1: build start
2022-Sep-23 15:12:30 :: [x86_64] #100 glpi.git 9.5.9-alt1: build start
2022-Sep-23 15:12:38 :: [i586] #100 glpi.git 9.5.9-alt1: build OK (cached)
2022-Sep-23 15:12:38 :: [x86_64] #100 glpi.git 9.5.9-alt1: build OK (cached)
2022-Sep-23 15:12:45 :: [aarch64] #100 glpi.git 9.5.9-alt1: build OK (cached)
2022-Sep-23 15:12:49 :: [ppc64le] #100 glpi.git 9.5.9-alt1: build OK (cached)
2022-Sep-23 15:12:55 :: [armh] #100 glpi.git 9.5.9-alt1: build OK (cached)
2022-Sep-23 15:13:16 :: #100: glpi.git 9.5.9-alt1: build check OK
2022-Sep-23 15:13:16 :: build check OK
2022-Sep-23 15:13:35 :: noarch check OK
2022-Sep-23 15:13:37 :: plan: src +1 -1 =18279, noarch +3 -3 =19172
#100 glpi 9.5.8-alt1 -> 9.5.9-alt1
Wed Sep 14 2022 Pavel Zilke <zidex@altlinux> 9.5.9-alt1
- New version 9.5.9
- This release fixes several critical security issues that has been recently discovered. Update is strongly recommended!
- Security fixes:
+ CVE-2022-35945 : XSS through registration API
+ CVE-2022-31143 : Leak of sensitive information through login page error
+ CVE-2022-35914 : [critical] Command injection using a third-party library script
+ CVE-2022-35946 : SQL injection through plugin controller
+ CVE-2022-35947 : [critical] Authentication via SQL injection
+ CVE-2022-36112 : Blind Server-Side Request Forgery (SSRF) in RSS feeds and planning
2022-Sep-23 15:13:37 :: glpi: mentions vulnerabilities: CVE-2022-35945 CVE-2022-31143 CVE-2022-35914 CVE-2022-35946 CVE-2022-35947 CVE-2022-36112
2022-Sep-23 15:14:01 :: patched apt indices
2022-Sep-23 15:14:11 :: created next repo
2022-Sep-23 15:14:19 :: duplicate provides check OK
2022-Sep-23 15:14:54 :: dependencies check OK
2022-Sep-23 15:15:03 :: [x86_64] #100 glpi: install check OK (cached)
2022-Sep-23 15:15:03 :: [i586] #100 glpi: install check OK (cached)
2022-Sep-23 15:15:05 :: [x86_64] #100 glpi-apache2: install check OK (cached)
2022-Sep-23 15:15:05 :: [i586] #100 glpi-apache2: install check OK (cached)
2022-Sep-23 15:15:07 :: [x86_64] #100 glpi-php7: install check OK (cached)
2022-Sep-23 15:15:07 :: [i586] #100 glpi-php7: install check OK (cached)
2022-Sep-23 15:15:07 :: gears inheritance check OK
2022-Sep-23 15:15:07 :: srpm inheritance check OK
girar-check-perms: access to @maint ALLOWED for cas: member of approved group
girar-check-perms: access to @tester ALLOWED for amakeenk: member of approved group
check-subtask-perms: #100: glpi: approved by cas, approved by amakeenk
2022-Sep-23 15:15:09 :: acl check OK
2022-Sep-23 15:15:29 :: created contents_index files
2022-Sep-23 15:15:37 :: created hash files: noarch src
2022-Sep-23 15:15:40 :: task #307140 for p9 TESTED
2022-Sep-23 15:15:42 :: task is ready for commit
2022-Sep-23 15:15:47 :: repo clone OK
2022-Sep-23 15:15:47 :: packages update OK
2022-Sep-23 15:15:50 :: [noarch] update OK
2022-Sep-23 15:15:50 :: repo update OK
2022-Sep-23 15:16:00 :: repo save OK
2022-Sep-23 15:16:00 :: src index update OK
2022-Sep-23 15:16:00 :: updated /gears/g/glpi.git branch `p9'
2022-Sep-23 15:16:19 :: gears update OK
2022-Sep-23 15:16:19 :: task #307140 for p9 DONE
prev parent reply other threads:[~2022-09-23 15:16 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-09-20 23:39 [#307140] p9 EPERM glpi.git=9.5.9-alt1 Girar awaiter (zidex)
2022-09-23 15:16 ` Girar pender (amakeenk) [this message]
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=girar.task.307140.2.1@gyle.mskdc.altlinux.org \
--to=girar-builder@altlinux.org \
--cc=devel@lists.altlinux.org \
--cc=girar-builder-p9@altlinux.org \
--cc=sisyphus-incominger@lists.altlinux.org \
--cc=zidex@altlinux.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
ALT Linux Girar Builder robot reports
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/sisyphus-incominger/0 sisyphus-incominger/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 sisyphus-incominger sisyphus-incominger/ http://lore.altlinux.org/sisyphus-incominger \
sisyphus-incominger@lists.altlinux.org sisyphus-incominger@lists.altlinux.ru sisyphus-incominger@lists.altlinux.com
public-inbox-index sisyphus-incominger
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.sisyphus-incominger
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git