From: "Girar awaiter (rider)" <girar-builder@altlinux.org>
To: Anton Farygin <rider@altlinux.org>
Cc: sisyphus-incominger@lists.altlinux.org,
girar-builder-p11@altlinux.org,
girar-builder-p11@lists.altlinux.org
Subject: [#404638] p11 EPERM curl.git=8.18.0-alt1
Date: Fri, 9 Jan 2026 13:40:46 +0000
Message-ID: <girar.task.404638.1.1@gyle.mskdc.altlinux.org> (raw)
https://git.altlinux.org/tasks/404638/logs/events.1.1.log
https://packages.altlinux.org/tasks/404638
subtask name aarch64 i586 x86_64
#100 curl 11:51 10:05 9:45
2026-Jan-09 13:23:33 :: task #404638 for p11 started by rider:
2026-Jan-09 13:23:33 :: message: New version with security fixes (8.14.1 -> 8.18.0)
#100 build 8.18.0-alt1 from /people/rider/packages/curl.git fetched at 2026-Jan-09 13:23:31
2026-Jan-09 13:23:35 :: [i586] #100 curl.git 8.18.0-alt1: build start
2026-Jan-09 13:23:35 :: [aarch64] #100 curl.git 8.18.0-alt1: build start
2026-Jan-09 13:23:35 :: [x86_64] #100 curl.git 8.18.0-alt1: build start
2026-Jan-09 13:33:20 :: [x86_64] #100 curl.git 8.18.0-alt1: build OK
2026-Jan-09 13:33:40 :: [i586] #100 curl.git 8.18.0-alt1: build OK
2026-Jan-09 13:35:26 :: [aarch64] #100 curl.git 8.18.0-alt1: build OK
2026-Jan-09 13:35:32 :: 100: build check OK
2026-Jan-09 13:35:33 :: build check OK
2026-Jan-09 13:35:44 :: #100: curl.git 8.18.0-alt1: version check OK
2026-Jan-09 13:35:44 :: build version check OK
2026-Jan-09 13:35:50 :: noarch check OK
2026-Jan-09 13:35:52 :: plan: src +1 -1 =19981, aarch64 +5 -5 =35232, i586 +5 -5 =34138, x86_64 +5 -5 =36016
#100 curl 8.14.1-alt2 -> 8.18.0-alt1
Fri Jan 09 2026 Anton Farygin <rider@altlinux> 8.18.0-alt1
- 8.17.0 -> 8.18.0
- Fixes:
* CVE-2025-15224: libssh key passphrase bypass without agent set
* CVE-2025-15079: libssh global known_hosts override
* CVE-2025-14819: OpenSSL partial chain store policy bypass
* CVE-2025-14524: bearer token leak on cross-protocol redirect
* CVE-2025-14017: broken TLS options for threaded LDAPS
* CVE-2025-13034: No QUIC certificate pinning with GnuTLS
Wed Nov 05 2025 Anton Farygin <rider@altlinux.com> 8.17.0-alt1
[...]
2026-Jan-09 13:35:52 :: curl: fixes vulnerabilities: CVE-2025-15224 CVE-2025-15079 CVE-2025-14819 CVE-2025-14524 CVE-2025-14017 CVE-2025-13034 CVE-2025-10148 CVE-2025-9086
2026-Jan-09 13:36:35 :: patched apt indices
2026-Jan-09 13:36:44 :: created next repo
2026-Jan-09 13:36:54 :: duplicate provides check OK
2026-Jan-09 13:37:32 :: dependencies check OK
2026-Jan-09 13:38:02 :: [x86_64 i586 aarch64] ELF symbols check OK
2026-Jan-09 13:38:16 :: [i586] #100 curl: install check OK
2026-Jan-09 13:38:17 :: [x86_64] #100 curl: install check OK
2026-Jan-09 13:38:26 :: [aarch64] #100 curl: install check OK
2026-Jan-09 13:38:27 :: [i586] #100 curl-debuginfo: install check OK
2026-Jan-09 13:38:27 :: [x86_64] #100 curl-debuginfo: install check OK
2026-Jan-09 13:38:34 :: [i586] #100 libcurl: install check OK
2026-Jan-09 13:38:35 :: [x86_64] #100 libcurl: install check OK
2026-Jan-09 13:38:42 :: [aarch64] #100 curl-debuginfo: install check OK
2026-Jan-09 13:38:45 :: [i586] #100 libcurl-debuginfo: install check OK
2026-Jan-09 13:38:45 :: [x86_64] #100 libcurl-debuginfo: install check OK
2026-Jan-09 13:38:53 :: [i586] #100 libcurl-devel: install check OK
2026-Jan-09 13:38:53 :: [x86_64] #100 libcurl-devel: install check OK
2026-Jan-09 13:38:55 :: [aarch64] #100 libcurl: install check OK
2026-Jan-09 13:39:11 :: [aarch64] #100 libcurl-debuginfo: install check OK
2026-Jan-09 13:39:24 :: [aarch64] #100 libcurl-devel: install check OK
2026-Jan-09 13:39:26 :: [x86_64-i586] plan: #2 +2 -2 =11778
2026-Jan-09 13:39:44 :: [x86_64-i586] arepo build OK
2026-Jan-09 13:40:03 :: [x86_64-i586] generated apt indices
2026-Jan-09 13:40:04 :: [x86_64-i586] created next repo
2026-Jan-09 13:40:18 :: [x86_64-i586] dependencies check OK
2026-Jan-09 13:40:19 :: gears inheritance check OK
2026-Jan-09 13:40:20 :: srpm inheritance check OK
girar-check-perms: access to curl DENIED for rider: project `curl' is not listed in the acl file for repository `p11', and the policy for such projects in `p11' is to deny
check-subtask-perms: #100: curl: needs approvals from members of @maint and @tester groups
2026-Jan-09 13:40:22 :: acl check FAILED
2026-Jan-09 13:40:35 :: created contents_index files
2026-Jan-09 13:40:43 :: created hash files: aarch64 i586 src x86_64-i586 x86_64
2026-Jan-09 13:40:46 :: task #404638 for p11 EPERM
next reply other threads:[~2026-01-09 13:40 UTC|newest]
Thread overview: 2+ messages / expand[flat|nested] mbox.gz Atom feed top
2026-01-09 13:40 Girar awaiter (rider) [this message]
2026-01-23 10:16 ` [#404638] p11 DONE (try 2) curl.git=8.18.0-alt1 Girar pender (amakeenk)
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=girar.task.404638.1.1@gyle.mskdc.altlinux.org \
--to=girar-builder@altlinux.org \
--cc=devel@lists.altlinux.org \
--cc=girar-builder-p11@altlinux.org \
--cc=girar-builder-p11@lists.altlinux.org \
--cc=rider@altlinux.org \
--cc=sisyphus-incominger@lists.altlinux.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
ALT Linux Girar Builder robot reports
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/sisyphus-incominger/0 sisyphus-incominger/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 sisyphus-incominger sisyphus-incominger/ http://lore.altlinux.org/sisyphus-incominger \
sisyphus-incominger@lists.altlinux.org sisyphus-incominger@lists.altlinux.ru sisyphus-incominger@lists.altlinux.com
public-inbox-index sisyphus-incominger
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.sisyphus-incominger
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git