{"update": {"autokarma": false, "autotime": false, "stable_karma": 3, "stable_days": 7, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "Update to 2.9.12 upstream bugfix and security update", "type": "security", "status": "obsolete", "request": null, "severity": "medium", "suggest": "unspecified", "locked": false, "pushed": false, "critpath": false, "critpath_groups": null, "close_bugs": true, "date_submitted": "2020-08-12 00:01:36", "date_modified": null, "date_approved": null, "date_testing": "2020-08-12 01:25:48", "date_stable": null, "alias": "FEDORA-2020-1208eaa3e9", "test_gating_status": "ignored", "from_tag": null, "date_pushed": "2020-08-12 01:25:48", "meets_testing_requirements": true, "url": "https://bodhi.stg.fedoraproject.org/updates/FEDORA-2020-1208eaa3e9", "title": "ansible-2.9.12-1.fc32", "version_hash": "83cf4d9c138005c8aa3e3dc745320ae901cc0879", "release": {"name": "F32", "long_name": "Fedora 32", "version": "32", "id_prefix": "FEDORA", "branch": "f32", "dist_tag": "f32", "stable_tag": "f32-updates", "testing_tag": "f32-updates-testing", "candidate_tag": "f32-updates-candidate", "pending_signing_tag": "f32-signing-pending", "pending_testing_tag": "f32-updates-testing-pending", "pending_stable_tag": "f32-updates-pending", "override_tag": "f32-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": false, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "kevin", "email": "kevin@scrye.com", "id": 137, "avatar": "https://seccdn.libravatar.org/avatar/05d9feede3ce862bdfd16271134edeba147128c93ae9299fca87f8135ae2b2fd?s=24&d=retro", "openid": "kevin.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "security_respons"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "infra-sig"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-jenkins"}, {"name": "freemedia"}, {"name": "gitspin-kickstarts"}, {"name": "wikiadmin"}, {"name": "aws-iam"}, {"name": "wikiedit"}, {"name": "epel-wranglers"}, {"name": "sysadmin-cloud"}, {"name": "sysadmin-backup"}, {"name": "upstream-test"}, {"name": "irc-support-operators"}, {"name": "sysadmin-osbs"}, {"name": "aws-s3"}, {"name": "bzrpython-fedora"}, {"name": "fedora-contributor"}, {"name": "aws"}, {"name": "fi-apprentice"}, {"name": "sysadmin-accounts"}, {"name": "msftazure"}, {"name": "server-wg"}, {"name": "sysadmin-secondary"}, {"name": "fedora-hams"}, {"name": "signers"}, {"name": "sysadmin-devel"}, {"name": "aws-copr"}, {"name": "fedorabugs"}, {"name": "sysadmin-spin"}, {"name": "sysadmin-logs"}, {"name": "sysadmin-tools"}, {"name": "cvsadmin"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-openshift"}, {"name": "aws-master"}, {"name": "ipausers"}, {"name": "sysadmin-gallery"}, {"name": "accounts"}, {"name": "sysadmin-veteran"}, {"name": "gitfedbot"}, {"name": "fesco"}, {"name": "sysadmin-survey"}, {"name": "web"}, {"name": "sysadmin-coreos"}, {"name": "cvsfedora"}, {"name": "aws-billing"}, {"name": "aws-s3-readonly"}, {"name": "admins"}, {"name": "epel-cabal"}, {"name": "sysadmin-dns"}, {"name": "signed_fpca"}, {"name": "sysadmin-noc"}, {"name": "sysadmin-qa"}, {"name": "hosted-content"}, {"name": "sysadmin-cvs"}, {"name": "torrentadmin"}, {"name": "gitfedora-web"}, {"name": "sysadmin-darkserver"}, {"name": "gitcsi"}, {"name": "gitformulas"}, {"name": "sysadmin-web"}, {"name": "sysadmin-ask"}, {"name": "communishift"}, {"name": "vendor-support"}, {"name": "sysadmin-calendar"}, {"name": "aws-fedoramirror"}, {"name": "aws-infra"}, {"name": "sysadmin-packages"}, {"name": "sysadmin"}, {"name": "communishift-admins"}, {"name": "mobility-sig"}, {"name": "ibmcloud"}, {"name": "sysadmin-updates"}, {"name": "gitlab-fedora-admin"}, {"name": "docs"}, {"name": "sysadmin-badges"}, {"name": "hetznercloud"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by kevin. ", "timestamp": "2020-08-12 00:01:36", "update_id": 231993, "user_id": 91, "id": 1564700, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'ignored'.", "timestamp": "2020-08-12 00:01:36", "update_id": 231993, "user_id": 91, "id": 1564701, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'waiting'.", "timestamp": "2020-08-12 00:01:36", "update_id": 231993, "user_id": 91, "id": 1564702, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'ignored'.", "timestamp": "2020-08-12 00:59:13", "update_id": 231993, "user_id": 91, "id": 1564720, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2020-08-12 01:27:01", "update_id": 231993, "user_id": 91, "id": 1564855, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2020-08-13 14:38:02", "update_id": 231993, "user_id": 2122, "id": 1567089, "bug_feedback": [{"karma": 0, "comment_id": 1567089, "bug_id": 1805331, "bug": {"bug_id": 1805331, "title": "CVE-2020-1736 ansible: atomic_move primitive sets permissive permissions [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 1567089, "bug_id": 1857186, "bug": {"bug_id": 1857186, "title": "CVE-2020-14330 ansible: masked keys for uri module are exposed into content and json output [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 1567089, "bug_id": 1857818, "bug": {"bug_id": 1857818, "title": "CVE-2020-14332 ansible: module_args does not censor properly in --check mode [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "bcotton", "email": "bcotton@funnelfiasco.com", "id": 2122, "avatar": "https://seccdn.libravatar.org/avatar/37e35e1343fe4a1eeaaedaca8917e05c6dfbfff08cfa8e906c2b21a1a280f274?s=24&d=retro", "openid": "bcotton.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "wikiedit"}, {"name": "gitfedora-web"}, {"name": "advocates"}, {"name": "program-management"}]}}, {"karma": 1, "karma_critpath": 0, "text": "Seems to work fine", "timestamp": "2020-08-14 16:33:35", "update_id": 231993, "user_id": 2240, "id": 1569527, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "frantisekz", "email": "fzatlouk@redhat.com", "id": 2240, "avatar": "https://seccdn.libravatar.org/avatar/665c5bc41bed444bc5fc8ea32da393449791968f9398dbe8ca045576e0ec52d3?s=24&d=retro", "openid": "frantisekz.id.stg.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "qa"}, {"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "sysadmin"}, {"name": "ambassadors"}, {"name": "sysadmin-qa"}, {"name": "advocates"}, {"name": "qa-admin"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update can be pushed to stable now if the maintainer wishes", "timestamp": "2020-08-14 16:36:30", "update_id": 231993, "user_id": 91, "id": 1569546, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": -1, "karma_critpath": 0, "text": "This release contain breaking change which affects permissions for newly created files (if no mode is specifically set in the task). This can cause serous unintended side effects. In fact, the change in question is already reversed by authors due to feedback received after ansible-2.9.12 release.\nSee https://github.com/ansible/ansible/issues/67794#issuecomment-672921617\n\nI've verified that this package contains the breaking change. Any new files created by copy/template/other core modules will be created with mode=0600 if mode is not specified explicitly in the task.\n", "timestamp": "2020-08-16 10:39:32", "update_id": 231993, "user_id": 2758, "id": 1571087, "bug_feedback": [{"karma": 0, "comment_id": 1571087, "bug_id": 1805331, "bug": {"bug_id": 1805331, "title": "CVE-2020-1736 ansible: atomic_move primitive sets permissive permissions [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 1571087, "bug_id": 1857186, "bug": {"bug_id": 1857186, "title": "CVE-2020-14330 ansible: masked keys for uri module are exposed into content and json output [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 1571087, "bug_id": 1857818, "bug": {"bug_id": 1857818, "title": "CVE-2020-14332 ansible: module_args does not censor properly in --check mode [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "mhael", "email": "m.koshelev@gmail.com", "id": 2758, "avatar": "https://seccdn.libravatar.org/avatar/d0cd801d7da54422d4a86d56fcd25e892403c38297f16a52d5152da657245522?s=24&d=retro", "openid": "mhael.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.", "timestamp": "2020-08-16 10:39:32", "update_id": 231993, "user_id": 91, "id": 1571088, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "no regressions noted", "timestamp": "2020-08-17 02:15:52", "update_id": 231993, "user_id": 124, "id": 1572236, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "filiperosset", "email": "rosset.filipe@gmail.com", "id": 124, "avatar": "https://seccdn.libravatar.org/avatar/f4394b8fb4c9a99c4b534dc724912fe75a5b87fe15048985ece8388c2441d0ca?s=24&d=retro", "openid": "filiperosset.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "trust admins"}, {"name": "signed_fpca"}, {"name": "fedora-contributor"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "ipausers"}, {"name": "fedora-br"}, {"name": "fedorabugs"}, {"name": "ambassadors"}]}}, {"karma": 1, "karma_critpath": 0, "text": "No issues in my personal small playbook, but please see @mhael's comment", "timestamp": "2020-08-19 08:49:28", "update_id": 231993, "user_id": 411, "id": 1577859, "bug_feedback": [{"karma": 0, "comment_id": 1577859, "bug_id": 1805331, "bug": {"bug_id": 1805331, "title": "CVE-2020-1736 ansible: atomic_move primitive sets permissive permissions [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 1577859, "bug_id": 1857186, "bug": {"bug_id": 1857186, "title": "CVE-2020-14330 ansible: masked keys for uri module are exposed into content and json output [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 1577859, "bug_id": 1857818, "bug": {"bug_id": 1857818, "title": "CVE-2020-14332 ansible: module_args does not censor properly in --check mode [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.stg.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}, {"karma": 0, "karma_critpath": 0, "text": "Ugh. Yeah, nasty... ok. I will look at reverting this although it's a big chunk to revert... \n", "timestamp": "2020-08-20 20:41:55", "update_id": 231993, "user_id": 137, "id": 1581183, "bug_feedback": [{"karma": 0, "comment_id": 1581183, "bug_id": 1805331, "bug": {"bug_id": 1805331, "title": "CVE-2020-1736 ansible: atomic_move primitive sets permissive permissions [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 1581183, "bug_id": 1857186, "bug": {"bug_id": 1857186, "title": "CVE-2020-14330 ansible: masked keys for uri module are exposed into content and json output [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 1581183, "bug_id": 1857818, "bug": {"bug_id": 1857818, "title": "CVE-2020-14332 ansible: module_args does not censor properly in --check mode [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "kevin", "email": "kevin@scrye.com", "id": 137, "avatar": "https://seccdn.libravatar.org/avatar/05d9feede3ce862bdfd16271134edeba147128c93ae9299fca87f8135ae2b2fd?s=24&d=retro", "openid": "kevin.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "security_respons"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "infra-sig"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-jenkins"}, {"name": "freemedia"}, {"name": "gitspin-kickstarts"}, {"name": "wikiadmin"}, {"name": "aws-iam"}, {"name": "wikiedit"}, {"name": "epel-wranglers"}, {"name": "sysadmin-cloud"}, {"name": "sysadmin-backup"}, {"name": "upstream-test"}, {"name": "irc-support-operators"}, {"name": "sysadmin-osbs"}, {"name": "aws-s3"}, {"name": "bzrpython-fedora"}, {"name": "fedora-contributor"}, {"name": "aws"}, {"name": "fi-apprentice"}, {"name": "sysadmin-accounts"}, {"name": "msftazure"}, {"name": "server-wg"}, {"name": "sysadmin-secondary"}, {"name": "fedora-hams"}, {"name": "signers"}, {"name": "sysadmin-devel"}, {"name": "aws-copr"}, {"name": "fedorabugs"}, {"name": "sysadmin-spin"}, {"name": "sysadmin-logs"}, {"name": "sysadmin-tools"}, {"name": "cvsadmin"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-openshift"}, {"name": "aws-master"}, {"name": "ipausers"}, {"name": "sysadmin-gallery"}, {"name": "accounts"}, {"name": "sysadmin-veteran"}, {"name": "gitfedbot"}, {"name": "fesco"}, {"name": "sysadmin-survey"}, {"name": "web"}, {"name": "sysadmin-coreos"}, {"name": "cvsfedora"}, {"name": "aws-billing"}, {"name": "aws-s3-readonly"}, {"name": "admins"}, {"name": "epel-cabal"}, {"name": "sysadmin-dns"}, {"name": "signed_fpca"}, {"name": "sysadmin-noc"}, {"name": "sysadmin-qa"}, {"name": "hosted-content"}, {"name": "sysadmin-cvs"}, {"name": "torrentadmin"}, {"name": "gitfedora-web"}, {"name": "sysadmin-darkserver"}, {"name": "gitcsi"}, {"name": "gitformulas"}, {"name": "sysadmin-web"}, {"name": "sysadmin-ask"}, {"name": "communishift"}, {"name": "vendor-support"}, {"name": "sysadmin-calendar"}, {"name": "aws-fedoramirror"}, {"name": "aws-infra"}, {"name": "sysadmin-packages"}, {"name": "sysadmin"}, {"name": "communishift-admins"}, {"name": "mobility-sig"}, {"name": "ibmcloud"}, {"name": "sysadmin-updates"}, {"name": "gitlab-fedora-admin"}, {"name": "docs"}, {"name": "sysadmin-badges"}, {"name": "hetznercloud"}]}}, {"karma": 1, "karma_critpath": 0, "text": "Works as expected on my playbooks", "timestamp": "2020-08-29 06:12:27", "update_id": 231993, "user_id": 2708, "id": 1595555, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "lhirlimann", "email": "ludovic@hirlimann.net", "id": 2708, "avatar": "https://seccdn.libravatar.org/avatar/b509be0470245534ebca40794256851025db9ffc21518e8a2f68b93b48819849?s=24&d=retro", "openid": "lhirlimann.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been obsoleted by [ansible-2.9.13-1.fc32](https://bodhi.fedoraproject.org/updates/FEDORA-2020-d5e74bf9a0).", "timestamp": "2020-09-03 22:23:32", "update_id": 231993, "user_id": 91, "id": 1605001, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "ansible-2.9.12-1.fc32", "signed": true, "release_id": 35, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 1805331, "title": "CVE-2020-1736 ansible: atomic_move primitive sets permissive permissions [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 1567089, "bug_id": 1805331, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2020-08-13 14:38:02", "update_id": 231993, "user_id": 2122, "id": 1567089, "testcase_feedback": [], "user": {"name": "bcotton", "email": "bcotton@funnelfiasco.com", "id": 2122, "avatar": "https://seccdn.libravatar.org/avatar/37e35e1343fe4a1eeaaedaca8917e05c6dfbfff08cfa8e906c2b21a1a280f274?s=24&d=retro", "openid": "bcotton.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "wikiedit"}, {"name": "gitfedora-web"}, {"name": "advocates"}, {"name": "program-management"}]}}}, {"karma": 0, "comment_id": 1571087, "bug_id": 1805331, "comment": {"karma": -1, "karma_critpath": 0, "text": "This release contain breaking change which affects permissions for newly created files (if no mode is specifically set in the task). This can cause serous unintended side effects. In fact, the change in question is already reversed by authors due to feedback received after ansible-2.9.12 release.\nSee https://github.com/ansible/ansible/issues/67794#issuecomment-672921617\n\nI've verified that this package contains the breaking change. Any new files created by copy/template/other core modules will be created with mode=0600 if mode is not specified explicitly in the task.\n", "timestamp": "2020-08-16 10:39:32", "update_id": 231993, "user_id": 2758, "id": 1571087, "testcase_feedback": [], "user": {"name": "mhael", "email": "m.koshelev@gmail.com", "id": 2758, "avatar": "https://seccdn.libravatar.org/avatar/d0cd801d7da54422d4a86d56fcd25e892403c38297f16a52d5152da657245522?s=24&d=retro", "openid": "mhael.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 1577859, "bug_id": 1805331, "comment": {"karma": 1, "karma_critpath": 0, "text": "No issues in my personal small playbook, but please see @mhael's comment", "timestamp": "2020-08-19 08:49:28", "update_id": 231993, "user_id": 411, "id": 1577859, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.stg.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 1581183, "bug_id": 1805331, "comment": {"karma": 0, "karma_critpath": 0, "text": "Ugh. Yeah, nasty... ok. I will look at reverting this although it's a big chunk to revert... \n", "timestamp": "2020-08-20 20:41:55", "update_id": 231993, "user_id": 137, "id": 1581183, "testcase_feedback": [], "user": {"name": "kevin", "email": "kevin@scrye.com", "id": 137, "avatar": "https://seccdn.libravatar.org/avatar/05d9feede3ce862bdfd16271134edeba147128c93ae9299fca87f8135ae2b2fd?s=24&d=retro", "openid": "kevin.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "security_respons"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "infra-sig"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-jenkins"}, {"name": "freemedia"}, {"name": "gitspin-kickstarts"}, {"name": "wikiadmin"}, {"name": "aws-iam"}, {"name": "wikiedit"}, {"name": "epel-wranglers"}, {"name": "sysadmin-cloud"}, {"name": "sysadmin-backup"}, {"name": "upstream-test"}, {"name": "irc-support-operators"}, {"name": "sysadmin-osbs"}, {"name": "aws-s3"}, {"name": "bzrpython-fedora"}, {"name": "fedora-contributor"}, {"name": "aws"}, {"name": "fi-apprentice"}, {"name": "sysadmin-accounts"}, {"name": "msftazure"}, {"name": "server-wg"}, {"name": "sysadmin-secondary"}, {"name": "fedora-hams"}, {"name": "signers"}, {"name": "sysadmin-devel"}, {"name": "aws-copr"}, {"name": "fedorabugs"}, {"name": "sysadmin-spin"}, {"name": "sysadmin-logs"}, {"name": "sysadmin-tools"}, {"name": "cvsadmin"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-openshift"}, {"name": "aws-master"}, {"name": "ipausers"}, {"name": "sysadmin-gallery"}, {"name": "accounts"}, {"name": "sysadmin-veteran"}, {"name": "gitfedbot"}, {"name": "fesco"}, {"name": "sysadmin-survey"}, {"name": "web"}, {"name": "sysadmin-coreos"}, {"name": "cvsfedora"}, {"name": "aws-billing"}, {"name": "aws-s3-readonly"}, {"name": "admins"}, {"name": "epel-cabal"}, {"name": "sysadmin-dns"}, {"name": "signed_fpca"}, {"name": "sysadmin-noc"}, {"name": "sysadmin-qa"}, {"name": "hosted-content"}, {"name": "sysadmin-cvs"}, {"name": "torrentadmin"}, {"name": "gitfedora-web"}, {"name": "sysadmin-darkserver"}, {"name": "gitcsi"}, {"name": "gitformulas"}, {"name": "sysadmin-web"}, {"name": "sysadmin-ask"}, {"name": "communishift"}, {"name": "vendor-support"}, {"name": "sysadmin-calendar"}, {"name": "aws-fedoramirror"}, {"name": "aws-infra"}, {"name": "sysadmin-packages"}, {"name": "sysadmin"}, {"name": "communishift-admins"}, {"name": "mobility-sig"}, {"name": "ibmcloud"}, {"name": "sysadmin-updates"}, {"name": "gitlab-fedora-admin"}, {"name": "docs"}, {"name": "sysadmin-badges"}, {"name": "hetznercloud"}]}}}, {"karma": 0, "comment_id": 1609379, "bug_id": 1805331, "comment": {"karma": 1, "karma_critpath": 0, "text": "works as expected, no issues", "timestamp": "2020-09-06 21:46:30", "update_id": 238573, "user_id": 2758, "id": 1609379, "testcase_feedback": [], "user": {"name": "mhael", "email": "m.koshelev@gmail.com", "id": 2758, "avatar": "https://seccdn.libravatar.org/avatar/d0cd801d7da54422d4a86d56fcd25e892403c38297f16a52d5152da657245522?s=24&d=retro", "openid": "mhael.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 1609174, "bug_id": 1805331, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2020-09-06 18:19:09", "update_id": 238573, "user_id": 892, "id": 1609174, "testcase_feedback": [], "user": {"name": "vtrefny", "email": "vtrefny@redhat.com", "id": 892, "avatar": "https://seccdn.libravatar.org/avatar/95ac5aea9a3286a9c62547143dc353f378557eed37f6ea8ebe9b5eacb57d32fe?s=24&d=retro", "openid": "vtrefny.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "gitanaconda"}, {"name": "storage_apis"}]}}}]}, {"bug_id": 1857186, "title": "CVE-2020-14330 ansible: masked keys for uri module are exposed into content and json output [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 1567089, "bug_id": 1857186, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2020-08-13 14:38:02", "update_id": 231993, "user_id": 2122, "id": 1567089, "testcase_feedback": [], "user": {"name": "bcotton", "email": "bcotton@funnelfiasco.com", "id": 2122, "avatar": "https://seccdn.libravatar.org/avatar/37e35e1343fe4a1eeaaedaca8917e05c6dfbfff08cfa8e906c2b21a1a280f274?s=24&d=retro", "openid": "bcotton.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "wikiedit"}, {"name": "gitfedora-web"}, {"name": "advocates"}, {"name": "program-management"}]}}}, {"karma": 0, "comment_id": 1571087, "bug_id": 1857186, "comment": {"karma": -1, "karma_critpath": 0, "text": "This release contain breaking change which affects permissions for newly created files (if no mode is specifically set in the task). This can cause serous unintended side effects. In fact, the change in question is already reversed by authors due to feedback received after ansible-2.9.12 release.\nSee https://github.com/ansible/ansible/issues/67794#issuecomment-672921617\n\nI've verified that this package contains the breaking change. Any new files created by copy/template/other core modules will be created with mode=0600 if mode is not specified explicitly in the task.\n", "timestamp": "2020-08-16 10:39:32", "update_id": 231993, "user_id": 2758, "id": 1571087, "testcase_feedback": [], "user": {"name": "mhael", "email": "m.koshelev@gmail.com", "id": 2758, "avatar": "https://seccdn.libravatar.org/avatar/d0cd801d7da54422d4a86d56fcd25e892403c38297f16a52d5152da657245522?s=24&d=retro", "openid": "mhael.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 1577859, "bug_id": 1857186, "comment": {"karma": 1, "karma_critpath": 0, "text": "No issues in my personal small playbook, but please see @mhael's comment", "timestamp": "2020-08-19 08:49:28", "update_id": 231993, "user_id": 411, "id": 1577859, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.stg.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 1581183, "bug_id": 1857186, "comment": {"karma": 0, "karma_critpath": 0, "text": "Ugh. Yeah, nasty... ok. I will look at reverting this although it's a big chunk to revert... \n", "timestamp": "2020-08-20 20:41:55", "update_id": 231993, "user_id": 137, "id": 1581183, "testcase_feedback": [], "user": {"name": "kevin", "email": "kevin@scrye.com", "id": 137, "avatar": "https://seccdn.libravatar.org/avatar/05d9feede3ce862bdfd16271134edeba147128c93ae9299fca87f8135ae2b2fd?s=24&d=retro", "openid": "kevin.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "security_respons"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "infra-sig"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-jenkins"}, {"name": "freemedia"}, {"name": "gitspin-kickstarts"}, {"name": "wikiadmin"}, {"name": "aws-iam"}, {"name": "wikiedit"}, {"name": "epel-wranglers"}, {"name": "sysadmin-cloud"}, {"name": "sysadmin-backup"}, {"name": "upstream-test"}, {"name": "irc-support-operators"}, {"name": "sysadmin-osbs"}, {"name": "aws-s3"}, {"name": "bzrpython-fedora"}, {"name": "fedora-contributor"}, {"name": "aws"}, {"name": "fi-apprentice"}, {"name": "sysadmin-accounts"}, {"name": "msftazure"}, {"name": "server-wg"}, {"name": "sysadmin-secondary"}, {"name": "fedora-hams"}, {"name": "signers"}, {"name": "sysadmin-devel"}, {"name": "aws-copr"}, {"name": "fedorabugs"}, {"name": "sysadmin-spin"}, {"name": "sysadmin-logs"}, {"name": "sysadmin-tools"}, {"name": "cvsadmin"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-openshift"}, {"name": "aws-master"}, {"name": "ipausers"}, {"name": "sysadmin-gallery"}, {"name": "accounts"}, {"name": "sysadmin-veteran"}, {"name": "gitfedbot"}, {"name": "fesco"}, {"name": "sysadmin-survey"}, {"name": "web"}, {"name": "sysadmin-coreos"}, {"name": "cvsfedora"}, {"name": "aws-billing"}, {"name": "aws-s3-readonly"}, {"name": "admins"}, {"name": "epel-cabal"}, {"name": "sysadmin-dns"}, {"name": "signed_fpca"}, {"name": "sysadmin-noc"}, {"name": "sysadmin-qa"}, {"name": "hosted-content"}, {"name": "sysadmin-cvs"}, {"name": "torrentadmin"}, {"name": "gitfedora-web"}, {"name": "sysadmin-darkserver"}, {"name": "gitcsi"}, {"name": "gitformulas"}, {"name": "sysadmin-web"}, {"name": "sysadmin-ask"}, {"name": "communishift"}, {"name": "vendor-support"}, {"name": "sysadmin-calendar"}, {"name": "aws-fedoramirror"}, {"name": "aws-infra"}, {"name": "sysadmin-packages"}, {"name": "sysadmin"}, {"name": "communishift-admins"}, {"name": "mobility-sig"}, {"name": "ibmcloud"}, {"name": "sysadmin-updates"}, {"name": "gitlab-fedora-admin"}, {"name": "docs"}, {"name": "sysadmin-badges"}, {"name": "hetznercloud"}]}}}, {"karma": 0, "comment_id": 1609379, "bug_id": 1857186, "comment": {"karma": 1, "karma_critpath": 0, "text": "works as expected, no issues", "timestamp": "2020-09-06 21:46:30", "update_id": 238573, "user_id": 2758, "id": 1609379, "testcase_feedback": [], "user": {"name": "mhael", "email": "m.koshelev@gmail.com", "id": 2758, "avatar": "https://seccdn.libravatar.org/avatar/d0cd801d7da54422d4a86d56fcd25e892403c38297f16a52d5152da657245522?s=24&d=retro", "openid": "mhael.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 1609174, "bug_id": 1857186, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2020-09-06 18:19:09", "update_id": 238573, "user_id": 892, "id": 1609174, "testcase_feedback": [], "user": {"name": "vtrefny", "email": "vtrefny@redhat.com", "id": 892, "avatar": "https://seccdn.libravatar.org/avatar/95ac5aea9a3286a9c62547143dc353f378557eed37f6ea8ebe9b5eacb57d32fe?s=24&d=retro", "openid": "vtrefny.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "gitanaconda"}, {"name": "storage_apis"}]}}}]}, {"bug_id": 1857818, "title": "CVE-2020-14332 ansible: module_args does not censor properly in --check mode [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 1567089, "bug_id": 1857818, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2020-08-13 14:38:02", "update_id": 231993, "user_id": 2122, "id": 1567089, "testcase_feedback": [], "user": {"name": "bcotton", "email": "bcotton@funnelfiasco.com", "id": 2122, "avatar": "https://seccdn.libravatar.org/avatar/37e35e1343fe4a1eeaaedaca8917e05c6dfbfff08cfa8e906c2b21a1a280f274?s=24&d=retro", "openid": "bcotton.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "wikiedit"}, {"name": "gitfedora-web"}, {"name": "advocates"}, {"name": "program-management"}]}}}, {"karma": 0, "comment_id": 1571087, "bug_id": 1857818, "comment": {"karma": -1, "karma_critpath": 0, "text": "This release contain breaking change which affects permissions for newly created files (if no mode is specifically set in the task). This can cause serous unintended side effects. In fact, the change in question is already reversed by authors due to feedback received after ansible-2.9.12 release.\nSee https://github.com/ansible/ansible/issues/67794#issuecomment-672921617\n\nI've verified that this package contains the breaking change. Any new files created by copy/template/other core modules will be created with mode=0600 if mode is not specified explicitly in the task.\n", "timestamp": "2020-08-16 10:39:32", "update_id": 231993, "user_id": 2758, "id": 1571087, "testcase_feedback": [], "user": {"name": "mhael", "email": "m.koshelev@gmail.com", "id": 2758, "avatar": "https://seccdn.libravatar.org/avatar/d0cd801d7da54422d4a86d56fcd25e892403c38297f16a52d5152da657245522?s=24&d=retro", "openid": "mhael.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 1577859, "bug_id": 1857818, "comment": {"karma": 1, "karma_critpath": 0, "text": "No issues in my personal small playbook, but please see @mhael's comment", "timestamp": "2020-08-19 08:49:28", "update_id": 231993, "user_id": 411, "id": 1577859, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.stg.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 1581183, "bug_id": 1857818, "comment": {"karma": 0, "karma_critpath": 0, "text": "Ugh. Yeah, nasty... ok. I will look at reverting this although it's a big chunk to revert... \n", "timestamp": "2020-08-20 20:41:55", "update_id": 231993, "user_id": 137, "id": 1581183, "testcase_feedback": [], "user": {"name": "kevin", "email": "kevin@scrye.com", "id": 137, "avatar": "https://seccdn.libravatar.org/avatar/05d9feede3ce862bdfd16271134edeba147128c93ae9299fca87f8135ae2b2fd?s=24&d=retro", "openid": "kevin.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "security_respons"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "infra-sig"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-jenkins"}, {"name": "freemedia"}, {"name": "gitspin-kickstarts"}, {"name": "wikiadmin"}, {"name": "aws-iam"}, {"name": "wikiedit"}, {"name": "epel-wranglers"}, {"name": "sysadmin-cloud"}, {"name": "sysadmin-backup"}, {"name": "upstream-test"}, {"name": "irc-support-operators"}, {"name": "sysadmin-osbs"}, {"name": "aws-s3"}, {"name": "bzrpython-fedora"}, {"name": "fedora-contributor"}, {"name": "aws"}, {"name": "fi-apprentice"}, {"name": "sysadmin-accounts"}, {"name": "msftazure"}, {"name": "server-wg"}, {"name": "sysadmin-secondary"}, {"name": "fedora-hams"}, {"name": "signers"}, {"name": "sysadmin-devel"}, {"name": "aws-copr"}, {"name": "fedorabugs"}, {"name": "sysadmin-spin"}, {"name": "sysadmin-logs"}, {"name": "sysadmin-tools"}, {"name": "cvsadmin"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-openshift"}, {"name": "aws-master"}, {"name": "ipausers"}, {"name": "sysadmin-gallery"}, {"name": "accounts"}, {"name": "sysadmin-veteran"}, {"name": "gitfedbot"}, {"name": "fesco"}, {"name": "sysadmin-survey"}, {"name": "web"}, {"name": "sysadmin-coreos"}, {"name": "cvsfedora"}, {"name": "aws-billing"}, {"name": "aws-s3-readonly"}, {"name": "admins"}, {"name": "epel-cabal"}, {"name": "sysadmin-dns"}, {"name": "signed_fpca"}, {"name": "sysadmin-noc"}, {"name": "sysadmin-qa"}, {"name": "hosted-content"}, {"name": "sysadmin-cvs"}, {"name": "torrentadmin"}, {"name": "gitfedora-web"}, {"name": "sysadmin-darkserver"}, {"name": "gitcsi"}, {"name": "gitformulas"}, {"name": "sysadmin-web"}, {"name": "sysadmin-ask"}, {"name": "communishift"}, {"name": "vendor-support"}, {"name": "sysadmin-calendar"}, {"name": "aws-fedoramirror"}, {"name": "aws-infra"}, {"name": "sysadmin-packages"}, {"name": "sysadmin"}, {"name": "communishift-admins"}, {"name": "mobility-sig"}, {"name": "ibmcloud"}, {"name": "sysadmin-updates"}, {"name": "gitlab-fedora-admin"}, {"name": "docs"}, {"name": "sysadmin-badges"}, {"name": "hetznercloud"}]}}}, {"karma": 0, "comment_id": 1609379, "bug_id": 1857818, "comment": {"karma": 1, "karma_critpath": 0, "text": "works as expected, no issues", "timestamp": "2020-09-06 21:46:30", "update_id": 238573, "user_id": 2758, "id": 1609379, "testcase_feedback": [], "user": {"name": "mhael", "email": "m.koshelev@gmail.com", "id": 2758, "avatar": "https://seccdn.libravatar.org/avatar/d0cd801d7da54422d4a86d56fcd25e892403c38297f16a52d5152da657245522?s=24&d=retro", "openid": "mhael.id.stg.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 1609174, "bug_id": 1857818, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2020-09-06 18:19:09", "update_id": 238573, "user_id": 892, "id": 1609174, "testcase_feedback": [], "user": {"name": "vtrefny", "email": "vtrefny@redhat.com", "id": 892, "avatar": "https://seccdn.libravatar.org/avatar/95ac5aea9a3286a9c62547143dc353f378557eed37f6ea8ebe9b5eacb57d32fe?s=24&d=retro", "openid": "vtrefny.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "gitanaconda"}, {"name": "storage_apis"}]}}}]}], "updateid": "FEDORA-2020-1208eaa3e9", "karma": 4, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}