From: "Girar awaiter (felixz)" <girar-builder@altlinux.org>
To: Kirill Izmestev <felixz@altlinux.org>
Cc: girar-builder-p10@altlinux.org,
sisyphus-incominger@lists.altlinux.org,
girar-builder-p10@lists.altlinux.org
Subject: [#343613] p10 EPERM (try 2) itop.git=3.1.1.1-alt1
Date: Tue, 26 Mar 2024 13:35:44 +0000
Message-ID: <girar.task.343613.2.1@gyle.mskdc.altlinux.org> (raw)
In-Reply-To: <girar.task.343613.1.1@gyle.mskdc.altlinux.org>
https://git.altlinux.org/tasks/343613/logs/events.2.1.log
2024-Mar-26 13:31:47 :: task #343613 for p10 resumed by felixz:
2024-Mar-26 13:31:48 :: message: CVE_fixes
#100 build 3.1.1.1-alt1 from /gears/i/itop.git fetched at 2024-Mar-26 12:03:41 from sisyphus
2024-Mar-26 13:31:50 :: [ppc64le] #100 itop.git 3.1.1.1-alt1: build start
2024-Mar-26 13:31:50 :: [i586] #100 itop.git 3.1.1.1-alt1: build start
2024-Mar-26 13:31:50 :: [armh] #100 itop.git 3.1.1.1-alt1: build start
2024-Mar-26 13:31:50 :: [x86_64] #100 itop.git 3.1.1.1-alt1: build start
2024-Mar-26 13:31:50 :: [aarch64] #100 itop.git 3.1.1.1-alt1: build start
2024-Mar-26 13:32:01 :: [i586] #100 itop.git 3.1.1.1-alt1: build OK (cached)
2024-Mar-26 13:32:01 :: [x86_64] #100 itop.git 3.1.1.1-alt1: build OK (cached)
2024-Mar-26 13:32:06 :: [aarch64] #100 itop.git 3.1.1.1-alt1: build OK (cached)
2024-Mar-26 13:32:08 :: [ppc64le] #100 itop.git 3.1.1.1-alt1: build OK (cached)
2024-Mar-26 13:32:15 :: [armh] #100 itop.git 3.1.1.1-alt1: build OK (cached)
2024-Mar-26 13:32:37 :: #100: itop.git 3.1.1.1-alt1: build check OK
2024-Mar-26 13:32:40 :: build check OK
2024-Mar-26 13:32:56 :: noarch check OK
2024-Mar-26 13:32:58 :: plan: src +1 -1 =18779, noarch +3 -3 =20106
#100 itop 2.6.3-alt1 -> 3.1.1.1-alt1
Thu Jan 04 2024 Pavel Zilke <zidex@altlinux> 3.1.1.1-alt1
- New version 3.1.1.1
- Security fixes:
+ CVE-2023-48710 : Restrict pages/exec.php to PHP files
+ CVE-2023-48709 : Fix CSV injection in Excel from an iTop CSV export file
+ CVE-2023-46734 : Fix potential XSS vulnerabilities in TWIG CodeExtension filters
+ CVE-2023-47123 : Fix XSS vulnerability in n:n relations "tagset" widget
+ CVE-2023-47622 : Fix XSS vulnerabilities in ajax operations
+ CVE-2023-47626 : Fix XSS vulnerabilities in authent token
+ CVE-2023-44396 : Fix XSS vulnerabilities in dashlet ajax operations
[...]
2024-Mar-26 13:32:59 :: itop: mentions vulnerabilities: CVE-2023-48710 CVE-2023-48709 CVE-2023-46734 CVE-2023-47123 CVE-2023-47622 CVE-2023-47626 CVE-2023-44396 CVE-2023-43790 CVE-2023-38511 CVE-2023-45808 CVE-2022-24894 CVE-2022-31402 CVE-2022-39261 CVE-2021-46743 CVE-2022-31403 CVE-2022-31402 CVE-2020-4079 CVE-2020-16842 CVE-2020-15218 CVE-2020-15219 CVE-2020-15221 CVE-2020-15220 CVE-2020-12781 CVE-2020-12780 CVE-2020-12779 CVE-2020-12778 CVE-2020-12777
2024-Mar-26 13:33:26 :: patched apt indices
2024-Mar-26 13:33:38 :: created next repo
2024-Mar-26 13:33:46 :: duplicate provides check OK
2024-Mar-26 13:34:22 :: dependencies check OK
2024-Mar-26 13:34:33 :: [x86_64] #100 itop: install check OK (cached)
2024-Mar-26 13:34:33 :: [i586] #100 itop: install check OK (cached)
2024-Mar-26 13:34:37 :: [x86_64] #100 itop-apache2: install check OK (cached)
2024-Mar-26 13:34:37 :: [i586] #100 itop-apache2: install check OK (cached)
2024-Mar-26 13:34:40 :: [aarch64] #100 itop: install check OK (cached)
2024-Mar-26 13:34:41 :: [ppc64le] #100 itop: install check OK (cached)
2024-Mar-26 13:34:42 :: [i586] #100 itop-php8.1: install check OK (cached)
2024-Mar-26 13:34:42 :: [x86_64] #100 itop-php8.1: install check OK (cached)
2024-Mar-26 13:34:47 :: [aarch64] #100 itop-apache2: install check OK (cached)
2024-Mar-26 13:34:47 :: [armh] #100 itop: install check OK (cached)
2024-Mar-26 13:34:50 :: [ppc64le] #100 itop-apache2: install check OK (cached)
2024-Mar-26 13:34:54 :: [aarch64] #100 itop-php8.1: install check OK (cached)
2024-Mar-26 13:34:58 :: [ppc64le] #100 itop-php8.1: install check OK (cached)
2024-Mar-26 13:34:59 :: [armh] #100 itop-apache2: install check OK (cached)
2024-Mar-26 13:35:11 :: [armh] #100 itop-php8.1: install check OK (cached)
2024-Mar-26 13:35:13 :: gears inheritance check OK
2024-Mar-26 13:35:14 :: srpm inheritance check OK
girar-check-perms: access to itop DENIED for felixz: does not belong to maintainers list yet
check-subtask-perms: #100: itop: needs approvals from members of @maint and @tester groups
2024-Mar-26 13:35:15 :: acl check FAILED
2024-Mar-26 13:35:33 :: created contents_index files
2024-Mar-26 13:35:41 :: created hash files: noarch src
2024-Mar-26 13:35:44 :: task #343613 for p10 EPERM
next prev parent reply other threads:[~2024-03-26 13:35 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2024-03-26 12:10 [#343613] p10 TESTED itop.git=3.1.1.1-alt1 Girar awaiter (felixz)
2024-03-26 13:35 ` Girar awaiter (felixz) [this message]
2024-03-29 16:50 ` [#343613] p10 DONE (try 3) itop.git=3.1.1.1-alt1 Girar pender (amakeenk)
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=girar.task.343613.2.1@gyle.mskdc.altlinux.org \
--to=girar-builder@altlinux.org \
--cc=devel@lists.altlinux.org \
--cc=felixz@altlinux.org \
--cc=girar-builder-p10@altlinux.org \
--cc=girar-builder-p10@lists.altlinux.org \
--cc=sisyphus-incominger@lists.altlinux.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
ALT Linux Girar Builder robot reports
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/sisyphus-incominger/0 sisyphus-incominger/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 sisyphus-incominger sisyphus-incominger/ http://lore.altlinux.org/sisyphus-incominger \
sisyphus-incominger@lists.altlinux.org sisyphus-incominger@lists.altlinux.ru sisyphus-incominger@lists.altlinux.com
public-inbox-index sisyphus-incominger
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.sisyphus-incominger
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git