From: "Girar awaiter (cas)" <girar-builder@altlinux.org>
To: Andrey Cherepanov <cas@altlinux.org>
Cc: sisyphus-incominger@lists.altlinux.org,
girar-builder-p11@altlinux.org,
girar-builder-p11@lists.altlinux.org
Subject: [#374980] p11 EPERM keycloak.git=26.1.2-alt1
Date: Sun, 16 Feb 2025 15:39:44 +0000
Message-ID: <girar.task.374980.1.1@gyle.mskdc.altlinux.org> (raw)
https://git.altlinux.org/tasks/374980/logs/events.1.1.log
https://packages.altlinux.org/tasks/374980
subtask name aarch64 i586 x86_64
#100 keycloak - - 4:28
2025-Feb-16 15:31:57 :: task #374980 for p11 started by cas:
2025-Feb-16 15:31:57 :: message: CVE_fixes
#100 build 26.1.2-alt1 from /gears/k/keycloak.git fetched at 2025-Feb-16 15:31:53 from sisyphus
2025-Feb-16 15:31:59 :: [i586] #100 keycloak.git 26.1.2-alt1: build start
2025-Feb-16 15:31:59 :: [x86_64] #100 keycloak.git 26.1.2-alt1: build start
2025-Feb-16 15:31:59 :: [aarch64] #100 keycloak.git 26.1.2-alt1: build start
2025-Feb-16 15:32:18 :: [i586] #100 keycloak.git 26.1.2-alt1: build SKIPPED
2025-Feb-16 15:32:25 :: [aarch64] #100 keycloak.git 26.1.2-alt1: build SKIPPED
2025-Feb-16 15:36:27 :: [x86_64] #100 keycloak.git 26.1.2-alt1: build OK
2025-Feb-16 15:36:37 :: #100: keycloak.git 26.1.2-alt1: build check OK
2025-Feb-16 15:36:38 :: build check OK
2025-Feb-16 15:36:38 :: noarch check OK
2025-Feb-16 15:36:39 :: plan: src +1 -1 =19694, x86_64 +1 -1 =34753
#100 keycloak 24.0.4-alt1 -> 26.1.2-alt1
Tue Feb 11 2025 Andrey Cherepanov <cas@altlinux> 26.1.2-alt1
- New version.
- Security fixes:
+ CVE-2024-11736 Unrestricted admin use of system and environment variables
+ CVE-2024-11734 Denial of Service in Keycloak Server via Security Headers
+ CVE-2024-10451 Sensitive Data Exposure in Keycloak Build Process
+ CVE-2024-10270 Potential Denial of Service
+ CVE-2024-10492 Keycloak path trasversal
+ CVE-2024-9666 Keycloak proxy header handling Denial-of-Service (DoS) vulnerability
+ CVE-2024-10039 Bypassing mTLS validation
[...]
2025-Feb-16 15:36:40 :: keycloak: closes bugs: 50434
2025-Feb-16 15:36:40 :: keycloak: mentions vulnerabilities: CVE-2024-11736 CVE-2024-11734 CVE-2024-10451 CVE-2024-10270 CVE-2024-10492 CVE-2024-9666 CVE-2024-10039 CVE-2021-44549 CVE-2024-8883 CVE-2024-8698 CVE-2024-7341
2025-Feb-16 15:37:17 :: patched apt indices
2025-Feb-16 15:37:25 :: created next repo
2025-Feb-16 15:37:35 :: duplicate provides check OK
2025-Feb-16 15:38:10 :: dependencies check OK
2025-Feb-16 15:38:20 :: [x86_64] ELF symbols check OK
x86_64: keycloak=26.1.2-alt1 post-install unowned files:
/tmp/hsperfdata_root
2025-Feb-16 15:38:56 :: [x86_64] #100 keycloak: install check OK
2025-Feb-16 15:39:12 :: [x86_64-i586] generated apt indices
2025-Feb-16 15:39:12 :: [x86_64-i586] created next repo
2025-Feb-16 15:39:21 :: [x86_64-i586] dependencies check OK
2025-Feb-16 15:39:22 :: gears inheritance check OK
2025-Feb-16 15:39:23 :: srpm inheritance check OK
girar-check-perms: access to @maint ALLOWED for cas: member of approved group
check-subtask-perms: #100: keycloak: allowed for cas, needs an approval from a member of @tester group
2025-Feb-16 15:39:24 :: acl check FAILED
2025-Feb-16 15:39:34 :: created contents_index files
2025-Feb-16 15:39:42 :: created hash files: src x86_64
2025-Feb-16 15:39:44 :: task #374980 for p11 EPERM
next reply other threads:[~2025-02-16 15:39 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2025-02-16 15:39 Girar awaiter (cas) [this message]
2025-02-17 8:21 ` [#374980] p11 DONE (try 2) keycloak.git=26.1.2-alt1 Girar pender (amakeenk)
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=girar.task.374980.1.1@gyle.mskdc.altlinux.org \
--to=girar-builder@altlinux.org \
--cc=cas@altlinux.org \
--cc=devel@lists.altlinux.org \
--cc=girar-builder-p11@altlinux.org \
--cc=girar-builder-p11@lists.altlinux.org \
--cc=sisyphus-incominger@lists.altlinux.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
ALT Linux Girar Builder robot reports
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/sisyphus-incominger/0 sisyphus-incominger/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 sisyphus-incominger sisyphus-incominger/ http://lore.altlinux.org/sisyphus-incominger \
sisyphus-incominger@lists.altlinux.org sisyphus-incominger@lists.altlinux.ru sisyphus-incominger@lists.altlinux.com
public-inbox-index sisyphus-incominger
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.sisyphus-incominger
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git