ALT Linux Girar Builder robot reports
 help / color / mirror / Atom feed
* [#307140] p9 EPERM glpi.git=9.5.9-alt1
@ 2022-09-20 23:39 Girar awaiter (zidex)
  2022-09-23 15:16 ` [#307140] p9 DONE (try 2) glpi.git=9.5.9-alt1 Girar pender (amakeenk)
  0 siblings, 1 reply; 2+ messages in thread
From: Girar awaiter (zidex) @ 2022-09-20 23:39 UTC (permalink / raw)
  To: Pavel Zilke; +Cc: sisyphus-incominger, girar-builder-p9

https://git.altlinux.org/tasks/307140/logs/events.1.1.log

subtask  name  aarch64  armh  i586  ppc64le  x86_64
   #100  glpi     2:11  3:09  1:25     2:27    1:13

2022-Sep-20 23:33:38 :: task #307140 for p9 started by zidex:
2022-Sep-20 23:33:38 :: message: critical_security_fix
#100 build 9.5.9-alt1 from /people/zidex/packages/glpi.git fetched at 2022-Sep-20 21:53:10
2022-Sep-20 23:33:40 :: [ppc64le] #100 glpi.git 9.5.9-alt1: build start
2022-Sep-20 23:33:40 :: [armh] #100 glpi.git 9.5.9-alt1: build start
2022-Sep-20 23:33:40 :: [x86_64] #100 glpi.git 9.5.9-alt1: build start
2022-Sep-20 23:33:40 :: [i586] #100 glpi.git 9.5.9-alt1: build start
2022-Sep-20 23:33:40 :: [aarch64] #100 glpi.git 9.5.9-alt1: build start
2022-Sep-20 23:34:53 :: [x86_64] #100 glpi.git 9.5.9-alt1: build OK
2022-Sep-20 23:35:05 :: [i586] #100 glpi.git 9.5.9-alt1: build OK
2022-Sep-20 23:35:51 :: [aarch64] #100 glpi.git 9.5.9-alt1: build OK
2022-Sep-20 23:36:07 :: [ppc64le] #100 glpi.git 9.5.9-alt1: build OK
2022-Sep-20 23:36:49 :: [armh] #100 glpi.git 9.5.9-alt1: build OK
2022-Sep-20 23:37:10 :: #100: glpi.git 9.5.9-alt1: build check OK
2022-Sep-20 23:37:10 :: build check OK
2022-Sep-20 23:37:28 :: noarch check OK
2022-Sep-20 23:37:30 :: plan: src +1 -1 =18279, noarch +3 -3 =19172
#100 glpi 9.5.8-alt1 -> 9.5.9-alt1
 Wed Sep 14 2022 Pavel Zilke <zidex@altlinux> 9.5.9-alt1
 - New version 9.5.9
 - This release fixes several critical security issues that has been recently discovered. Update is strongly recommended!
 - Security fixes:
  + CVE-2022-35945 : XSS through registration API
  + CVE-2022-31143 : Leak of sensitive information through login page error
  + CVE-2022-35914 : [critical] Command injection using a third-party library script
  + CVE-2022-35946 : SQL injection through plugin controller
  + CVE-2022-35947 : [critical] Authentication via SQL injection
  + CVE-2022-36112 : Blind Server-Side Request Forgery (SSRF) in RSS feeds and planning
2022-Sep-20 23:37:30 :: glpi: mentions vulnerabilities: CVE-2022-35945 CVE-2022-31143 CVE-2022-35914 CVE-2022-35946 CVE-2022-35947 CVE-2022-36112
2022-Sep-20 23:37:51 :: patched apt indices
2022-Sep-20 23:38:01 :: created next repo
2022-Sep-20 23:38:07 :: duplicate provides check OK
2022-Sep-20 23:38:40 :: dependencies check OK
2022-Sep-20 23:38:52 :: [x86_64] #100 glpi: install check OK
2022-Sep-20 23:38:53 :: [i586] #100 glpi: install check OK
2022-Sep-20 23:38:59 :: [x86_64] #100 glpi-apache2: install check OK
2022-Sep-20 23:39:01 :: [i586] #100 glpi-apache2: install check OK
2022-Sep-20 23:39:06 :: [x86_64] #100 glpi-php7: install check OK
2022-Sep-20 23:39:09 :: [i586] #100 glpi-php7: install check OK
2022-Sep-20 23:39:09 :: gears inheritance check OK
2022-Sep-20 23:39:09 :: srpm inheritance check OK
girar-check-perms: access to glpi DENIED for zidex: project `glpi' is not listed in the acl file for repository `p9', and the policy for such projects in `p9' is to deny
check-subtask-perms: #100: glpi: needs approvals from members of @maint and @tester groups
2022-Sep-20 23:39:11 :: acl check FAILED
2022-Sep-20 23:39:31 :: created contents_index files
2022-Sep-20 23:39:39 :: created hash files: noarch src
2022-Sep-20 23:39:42 :: task #307140 for p9 EPERM


^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2022-09-23 15:16 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2022-09-20 23:39 [#307140] p9 EPERM glpi.git=9.5.9-alt1 Girar awaiter (zidex)
2022-09-23 15:16 ` [#307140] p9 DONE (try 2) glpi.git=9.5.9-alt1 Girar pender (amakeenk)

ALT Linux Girar Builder robot reports

This inbox may be cloned and mirrored by anyone:

	git clone --mirror http://lore.altlinux.org/sisyphus-incominger/0 sisyphus-incominger/git/0.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 sisyphus-incominger sisyphus-incominger/ http://lore.altlinux.org/sisyphus-incominger \
		sisyphus-incominger@lists.altlinux.org sisyphus-incominger@lists.altlinux.ru sisyphus-incominger@lists.altlinux.com
	public-inbox-index sisyphus-incominger

Example config snippet for mirrors.
Newsgroup available over NNTP:
	nntp://lore.altlinux.org/org.altlinux.lists.sisyphus-incominger


AGPL code for this site: git clone https://public-inbox.org/public-inbox.git