{"update": {"autokarma": true, "autotime": true, "stable_karma": 3, "stable_days": 14, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "Security fix for CVE-2022-3602 and CVE-2022-3786", "type": "security", "status": "stable", "request": null, "severity": "high", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": true, "critpath_groups": null, "close_bugs": true, "date_submitted": "2022-11-01 17:10:03", "date_modified": null, "date_approved": null, "date_testing": null, "date_stable": "2022-11-02 01:49:43", "alias": "FEDORA-2022-502f096dce", "test_gating_status": "passed", "from_tag": null, "date_pushed": "2022-11-02 01:49:43", "meets_testing_requirements": true, "url": "https://bodhi.stg.fedoraproject.org/updates/FEDORA-2022-502f096dce", "title": "openssl-3.0.5-2.fc36", "version_hash": "bd973655c83fae689dba169daefbfe652b14144c", "release": {"name": "F36", "long_name": "Fedora 36", "version": "36", "id_prefix": "FEDORA", "branch": "f36", "dist_tag": "f36", "stable_tag": "f36-updates", "testing_tag": "f36-updates-testing", "candidate_tag": "f36-updates-candidate", "pending_signing_tag": "f36-signing-pending", "pending_testing_tag": "f36-updates-testing-pending", "pending_stable_tag": "f36-updates-pending", "override_tag": "f36-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": false, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": "2023-05-16", "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "dbelyavs", "email": "dbelyavs@redhat.com", "id": 6284, "avatar": "https://seccdn.libravatar.org/avatar/bf58c36eec674fb2fe8744438582f820d6a15548097263146b8ffabcab17025a?s=24&d=retro", "openid": "dbelyavs.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "crypto-team"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by dbelyavs. ", "timestamp": "2022-11-01 17:10:03", "update_id": 458215, "user_id": 91, "id": 2770248, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'waiting'.", "timestamp": "2022-11-01 17:10:04", "update_id": 458215, "user_id": 91, "id": 2770249, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:25:18", "update_id": 458215, "user_id": 3703, "id": 2770351, "bug_feedback": [{"karma": 0, "comment_id": 2770351, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770351, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "markec", "email": "marko.bevc@gmail.com", "id": 3703, "avatar": "https://seccdn.libravatar.org/avatar/2a3640b3b2df97a062aff29758dd6a2ce98adba2cdd4da3fceb85df19b25200c?s=24&d=retro", "openid": "markec.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:25:39", "update_id": 458215, "user_id": 6368, "id": 2770357, "bug_feedback": [{"karma": 1, "comment_id": 2770357, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 1, "comment_id": 2770357, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "bittin", "email": "droidbittin@gmail.com", "id": 6368, "avatar": "https://seccdn.libravatar.org/avatar/fd34001f44983edfeb0e400944f5b8db1c292171915754ae8b46b2ebc3a298ea?s=24&d=retro", "openid": "bittin.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:26:35", "update_id": 458215, "user_id": 5300, "id": 2770379, "bug_feedback": [{"karma": 0, "comment_id": 2770379, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770379, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "mikelo2", "email": "mikel@olasagasti.info", "id": 5300, "avatar": "https://seccdn.libravatar.org/avatar/cc3edee2f036633c66dc33c970298c607f2a28d3d3235fbc0bb0e60d131d799c?s=24&d=retro", "openid": "mikelo2.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "go-sig"}]}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:48:49", "update_id": 458215, "user_id": 5392, "id": 2770552, "bug_feedback": [{"karma": 0, "comment_id": 2770552, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770552, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "stklcode", "email": "stefan@stklcode.de", "id": 5392, "avatar": "https://seccdn.libravatar.org/avatar/c478b1fbd4d0b7091bc822fab04fdc7749103ffba8eceb8a4b16d26c97f05cfb?s=24&d=retro", "openid": "stklcode.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:06:03", "update_id": 458215, "user_id": 4120, "id": 2770606, "bug_feedback": [{"karma": 0, "comment_id": 2770606, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770606, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "atim", "email": "ego.cordatus@gmail.com", "id": 4120, "avatar": "https://seccdn.libravatar.org/avatar/8c3a317a13d88ca7421098b94cce0501c97ca2283e7139c4992df34f6218fb3b?s=24&d=retro", "openid": "atim.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "rust-sig"}]}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:06:33", "update_id": 458215, "user_id": 6662, "id": 2770607, "bug_feedback": [{"karma": 0, "comment_id": 2770607, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770607, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "ptudor", "email": "fedora@mx.ptudor.net", "id": 6662, "avatar": "https://seccdn.libravatar.org/avatar/a33d6e155da5a798f41b54fd9bf08f7f2c3a4e8fa9327f1901bdd69a650ddccd?s=24&d=retro", "openid": "ptudor.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}]}}, {"karma": 0, "karma_critpath": 0, "text": "If the build fixes CVE-2022-3786, then BZ#2139151 and BZ#2139104 should also be linked to this update?", "timestamp": "2022-11-01 18:09:46", "update_id": 458215, "user_id": 1677, "id": 2770612, "bug_feedback": [{"karma": 0, "comment_id": 2770612, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770612, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "imsedgar", "email": "edgar.hoch@ims.uni-stuttgart.de", "id": 1677, "avatar": "https://seccdn.libravatar.org/avatar/6e9b05dfa070935c2e346cbab6b2b1c8faf64ce0347014f6be1824911c0d1c33?s=24&d=retro", "openid": "imsedgar.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}, {"karma": 0, "karma_critpath": 0, "text": "As soon as the test gating status changes to \"passed\", another +1 (even from someone who already gave +1) will be necessary to get it submitted for stable.", "timestamp": "2022-11-01 18:15:30", "update_id": 458215, "user_id": 303, "id": 2770624, "bug_feedback": [{"karma": 0, "comment_id": 2770624, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770624, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "robatino", "email": "arobatino@gmail.com", "id": 303, "avatar": "https://seccdn.libravatar.org/avatar/bb8d454eee868b05bbdfef07cbba898ae0ea9c238d3d8001483d8c6593322eb5?s=24&d=retro", "openid": "robatino.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-deltaisos"}]}}, {"karma": 1, "karma_critpath": 0, "text": "Works fine. CVEs not verified.", "timestamp": "2022-11-01 18:23:23", "update_id": 458215, "user_id": 7249, "id": 2770634, "bug_feedback": [{"karma": 0, "comment_id": 2770634, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770634, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "py0xc3", "email": "py0xc3@posteo.net", "id": 7249, "avatar": "https://seccdn.libravatar.org/avatar/cd15fd5361c55bb6ed4675dae968b1cec6e0e7695ea75520fafc58bdb0030a6b?s=24&d=retro", "openid": "py0xc3.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "docs"}, {"name": "ask-fedora"}]}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:32:53", "update_id": 458215, "user_id": 3555, "id": 2770645, "bug_feedback": [{"karma": 1, "comment_id": 2770645, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 1, "comment_id": 2770645, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "jsbillings", "email": "billings@negate.org", "id": 3555, "avatar": "https://seccdn.libravatar.org/avatar/5dd296975772475f570fb427d1903943b2c2fbb4bb3181c99c8f8caf14984d9c?s=24&d=retro", "openid": "jsbillings.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "centosproject-email-aliases"}, {"name": "sig-storage"}, {"name": "gitlab-centos-sig-storage"}]}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:50:14", "update_id": 458215, "user_id": 5881, "id": 2770672, "bug_feedback": [{"karma": 0, "comment_id": 2770672, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770672, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "geraldosimiao", "email": "geraldo.simiao.kutz@gmail.com", "id": 5881, "avatar": "https://seccdn.libravatar.org/avatar/03fa5b58e8ac78544bf41ad8ecf9ee1920f2ebedb86542c2f4cdf7ef15813168?s=24&d=retro", "openid": "geraldosimiao.id.stg.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "fedora-br"}, {"name": "advocates"}, {"name": "respins-sig"}]}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 19:07:57", "update_id": 458215, "user_id": 6139, "id": 2770688, "bug_feedback": [{"karma": 0, "comment_id": 2770688, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770688, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "pssgcsim", "email": "pssgcsim@psb1.org", "id": 6139, "avatar": "https://seccdn.libravatar.org/avatar/f2af84c6f7a77e9b60fdf618263a60a53c59047f28a95ebb19c2d51c8238c26a?s=24&d=retro", "openid": "pssgcsim.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'failed'.", "timestamp": "2022-11-01 19:20:08", "update_id": 458215, "user_id": 91, "id": 2770705, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 19:23:06", "update_id": 458215, "user_id": 4294, "id": 2770714, "bug_feedback": [{"karma": 0, "comment_id": 2770714, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770714, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "marbu", "email": "martin.bukatovic@gmail.com", "id": 4294, "avatar": "https://seccdn.libravatar.org/avatar/a05d3afc06ffff057d37e9aa11f2375b86550584e7c873569a7cfcf3c8d53734?s=24&d=retro", "openid": "marbu.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}, {"karma": 0, "karma_critpath": 0, "text": "note, gating is 'failed' because we are still waiting on a few tests. they are running and will complete within the next hour or so, I hope.", "timestamp": "2022-11-01 20:46:12", "update_id": 458215, "user_id": 302, "id": 2770747, "bug_feedback": [{"karma": 0, "comment_id": 2770747, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770747, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "adamwill", "email": "awilliam@redhat.com", "id": 302, "avatar": "https://seccdn.libravatar.org/avatar/51720fbb2ec5dfd2bc005ac374a3bfd3190cb8f45f3bb8d6bdf35fb6a051d03b?s=24&d=retro", "openid": "adamwill.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "qa-tools-sig"}, {"name": "fedora-contributor"}, {"name": "news"}, {"name": "gittriage"}, {"name": "sysadmin"}, {"name": "gitspin-kickstarts"}, {"name": "signed_fpca"}, {"name": "gitgeneric-release"}, {"name": "yak_farmers"}, {"name": "triagers"}, {"name": "qa"}, {"name": "sysadmin-qa"}, {"name": "fedorabugs"}, {"name": "ipausers"}, {"name": "gitmkinitrd"}, {"name": "qa-admin"}, {"name": "aws-qa"}, {"name": "change-wranglers"}, {"name": "fedora-ci-admins"}, {"name": "common-issues-triage"}, {"name": "sysadmin-main"}, {"name": "program-management"}, {"name": "gitfedora-project-schedule"}]}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 21:30:46", "update_id": 458215, "user_id": 107, "id": 2770783, "bug_feedback": [{"karma": 1, "comment_id": 2770783, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 1, "comment_id": 2770783, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "nb", "email": "nick@bebout.net", "id": 107, "avatar": "https://seccdn.libravatar.org/avatar/2f33ca167b8f6e7ea7105ea1bf90935ca81575d091e57607aa513cbb74420927?s=24&d=retro", "openid": "nb.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "sysadmin-main"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "wikiedit"}, {"name": "l10n"}, {"name": "sysadmin-logs"}, {"name": "gitfedora-web"}, {"name": "fi-apprentice"}, {"name": "admins"}, {"name": "magazine"}, {"name": "sysadmin-badges"}, {"name": "security-team"}, {"name": "sysadmin-noc"}, {"name": "sysadmin"}, {"name": "fedora-hams"}, {"name": "accounts"}, {"name": "sysadmin-web"}, {"name": "ambassadors"}, {"name": "videos"}, {"name": "irc-support-operators"}, {"name": "cvsl10n"}, {"name": "cvsfedora"}, {"name": "ipausers"}, {"name": "ambassadors-emeriti"}, {"name": "sysadmin-veteran"}, {"name": "wikiadmin"}, {"name": "designteam"}, {"name": "famsco"}, {"name": "signed_fpca"}, {"name": "qa"}, {"name": "mindshare"}, {"name": "sysadmin-devel"}, {"name": "respins-sig"}, {"name": "web"}, {"name": "3d-printing-sig"}, {"name": "freemedia"}, {"name": "campusambassadors"}, {"name": "hosted-content"}, {"name": "aws-infra"}, {"name": "certbot-sig"}, {"name": "sysadmin-dns"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-tools"}, {"name": "marketing"}, {"name": "sysadmin-test"}, {"name": "advocates"}, {"name": "letsencrypt"}, {"name": "sysadmin-paste"}, {"name": "commops"}, {"name": "dotnet-sig"}, {"name": "fedora-contributor"}, {"name": "sysadmin-keys"}, {"name": "communishift"}, {"name": "altvideos"}, {"name": "fedorabugs"}, {"name": "aws-master"}, {"name": "fedora-socialmedia"}, {"name": "gitlab-fedora-admin"}, {"name": "clamav"}, {"name": "trust admins"}, {"name": "aws"}]}}, {"karma": 1, "karma_critpath": 0, "text": "No regressions detected on x86_64. Tried to verify vulnerability with poc, but the poc I found showed that both old and new version was ok, so I guess it is unclear if the old version was properly exploitable on fedora x86_64.", "timestamp": "2022-11-01 21:34:40", "update_id": 458215, "user_id": 195, "id": 2770785, "bug_feedback": [{"karma": 0, "comment_id": 2770785, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770785, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "norenh", "email": "henning.noren@gmail.com", "id": 195, "avatar": "https://seccdn.libravatar.org/avatar/e57ad00f606591e7f7c5111fc78a01018ddc51bd5b69317fac31089fd8bda51f?s=24&d=retro", "openid": "norenh.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}, {"karma": 1, "karma_critpath": 0, "text": "Everything working on my end. (except the exploit, hopefully)\nWill run a PoC tomorrow if I find one.", "timestamp": "2022-11-02 00:08:27", "update_id": 458215, "user_id": 6725, "id": 2770930, "bug_feedback": [{"karma": 0, "comment_id": 2770930, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770930, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "vainly", "email": "vainlystrain@gmail.com", "id": 6725, "avatar": "https://seccdn.libravatar.org/avatar/298ccd9ac0975a72c0aa8e0513253d00f08ca72986edd9aa4221f953b7102222?s=24&d=retro", "openid": "vainly.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'passed'.", "timestamp": "2022-11-02 00:52:43", "update_id": 458215, "user_id": 91, "id": 2770959, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-02 00:58:42", "update_id": 458215, "user_id": 137, "id": 2770961, "bug_feedback": [{"karma": 0, "comment_id": 2770961, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2770961, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "kevin", "email": "kevin@scrye.com", "id": 137, "avatar": "https://seccdn.libravatar.org/avatar/05d9feede3ce862bdfd16271134edeba147128c93ae9299fca87f8135ae2b2fd?s=24&d=retro", "openid": "kevin.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "security_respons"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "infra-sig"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-jenkins"}, {"name": "freemedia"}, {"name": "gitspin-kickstarts"}, {"name": "wikiadmin"}, {"name": "aws-iam"}, {"name": "wikiedit"}, {"name": "epel-wranglers"}, {"name": "sysadmin-cloud"}, {"name": "sysadmin-backup"}, {"name": "upstream-test"}, {"name": "irc-support-operators"}, {"name": "sysadmin-osbs"}, {"name": "aws-s3"}, {"name": "bzrpython-fedora"}, {"name": "fedora-contributor"}, {"name": "aws"}, {"name": "fi-apprentice"}, {"name": "sysadmin-accounts"}, {"name": "msftazure"}, {"name": "server-wg"}, {"name": "sysadmin-secondary"}, {"name": "fedora-hams"}, {"name": "signers"}, {"name": "sysadmin-devel"}, {"name": "aws-copr"}, {"name": "fedorabugs"}, {"name": "sysadmin-spin"}, {"name": "sysadmin-logs"}, {"name": "sysadmin-tools"}, {"name": "cvsadmin"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-openshift"}, {"name": "aws-master"}, {"name": "ipausers"}, {"name": "sysadmin-gallery"}, {"name": "accounts"}, {"name": "sysadmin-veteran"}, {"name": "gitfedbot"}, {"name": "fesco"}, {"name": "sysadmin-survey"}, {"name": "web"}, {"name": "sysadmin-coreos"}, {"name": "cvsfedora"}, {"name": "aws-billing"}, {"name": "aws-s3-readonly"}, {"name": "admins"}, {"name": "epel-cabal"}, {"name": "sysadmin-dns"}, {"name": "signed_fpca"}, {"name": "sysadmin-noc"}, {"name": "sysadmin-qa"}, {"name": "hosted-content"}, {"name": "sysadmin-cvs"}, {"name": "torrentadmin"}, {"name": "gitfedora-web"}, {"name": "sysadmin-darkserver"}, {"name": "gitcsi"}, {"name": "gitformulas"}, {"name": "sysadmin-web"}, {"name": "sysadmin-ask"}, {"name": "communishift"}, {"name": "vendor-support"}, {"name": "sysadmin-calendar"}, {"name": "aws-fedoramirror"}, {"name": "aws-infra"}, {"name": "sysadmin-packages"}, {"name": "sysadmin"}, {"name": "epel-packagers-sig"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2022-11-02 00:58:43", "update_id": 458215, "user_id": 91, "id": 2770962, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2022-11-02 01:50:01", "update_id": 458215, "user_id": 91, "id": 2770979, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "Hi @bittin, @nb, @jsbillings, how did you test for the CVEs", "timestamp": "2022-11-02 09:15:10", "update_id": 458215, "user_id": 2706, "id": 2771075, "bug_feedback": [{"karma": 0, "comment_id": 2771075, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2771075, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "augenauf", "email": "florian.heiser@posteo.de", "id": 2706, "avatar": "https://seccdn.libravatar.org/avatar/953c575b4732d13a2546b3693bc427330cbd60049d601ccb1561b1ad46d97482?s=24&d=retro", "openid": "augenauf.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "docs"}, {"name": "ask-fedora"}, {"name": "websites-apps-cms"}]}}, {"karma": 1, "karma_critpath": 0, "text": "\npackage works, cves not verified.\n", "timestamp": "2022-11-02 15:37:07", "update_id": 458215, "user_id": 5458, "id": 2771513, "bug_feedback": [{"karma": 0, "comment_id": 2771513, "bug_id": 2137723, "bug": {"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true}}, {"karma": 0, "comment_id": 2771513, "bug_id": 2139149, "bug": {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "brandfbb", "email": "brandfbb@gmail.com", "id": 5458, "avatar": "https://seccdn.libravatar.org/avatar/75db743834ffde0c0538fbacfa22ab23d54af82fb0a437caf70980bb6f479f0f?s=24&d=retro", "openid": "brandfbb.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}], "builds": [{"nvr": "openssl-3.0.5-2.fc36", "signed": true, "release_id": 56, "type": "rpm", "epoch": 1}], "bugs": [{"bug_id": 2137723, "title": "CVE-2022-3602 OpenSSL: X.509 Email Address Buffer Overflow", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 2770384, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:26:51", "update_id": 458210, "user_id": 5300, "id": 2770384, "testcase_feedback": [], "user": {"name": "mikelo2", "email": "mikel@olasagasti.info", "id": 5300, "avatar": "https://seccdn.libravatar.org/avatar/cc3edee2f036633c66dc33c970298c607f2a28d3d3235fbc0bb0e60d131d799c?s=24&d=retro", "openid": "mikelo2.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "go-sig"}]}}}, {"karma": 1, "comment_id": 2770506, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "Tested on x86_64 and aarch64 across a number of services that use openssl inc openssh, postfix, dovecot, httpd using TLS1.2 and 1.3 and a number of client apps", "timestamp": "2022-11-01 17:42:33", "update_id": 458210, "user_id": 96, "id": 2770506, "testcase_feedback": [], "user": {"name": "pbrobinson", "email": "pbrobinson@gmail.com", "id": 96, "avatar": "https://seccdn.libravatar.org/avatar/3bac3f1833b19f5b5e62e166d64737430603201d1513dcc33a8c147d702a2e7d?s=24&d=retro", "openid": "pbrobinson.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "fedora-s390"}, {"name": "gitfedora-arm-installer"}, {"name": "gitspin-kickstarts"}, {"name": "fedorabugs"}, {"name": "fedora-ppc"}, {"name": "alt-sugar"}, {"name": "torrentadmin"}, {"name": "sysadmin-cvs"}, {"name": "gitfedora-wiki"}, {"name": "sysadmin-releng"}, {"name": "aarch64"}, {"name": "sysadmin"}, {"name": "signed_fpca"}, {"name": "fedora-arm"}, {"name": "sysadmin-secondary"}, {"name": "iot"}, {"name": "ipausers"}, {"name": "arm-qa"}, {"name": "fedora-contributor"}, {"name": "gitpungi"}, {"name": "cvsadmin"}]}}}, {"karma": 0, "comment_id": 2770612, "bug_id": 2137723, "comment": {"karma": 0, "karma_critpath": 0, "text": "If the build fixes CVE-2022-3786, then BZ#2139151 and BZ#2139104 should also be linked to this update?", "timestamp": "2022-11-01 18:09:46", "update_id": 458215, "user_id": 1677, "id": 2770612, "testcase_feedback": [], "user": {"name": "imsedgar", "email": "edgar.hoch@ims.uni-stuttgart.de", "id": 1677, "avatar": "https://seccdn.libravatar.org/avatar/6e9b05dfa070935c2e346cbab6b2b1c8faf64ce0347014f6be1824911c0d1c33?s=24&d=retro", "openid": "imsedgar.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770639, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works fine within F37 x86_64 KVM VM. CVEs not verified/checked.", "timestamp": "2022-11-01 18:30:43", "update_id": 458210, "user_id": 7249, "id": 2770639, "testcase_feedback": [], "user": {"name": "py0xc3", "email": "py0xc3@posteo.net", "id": 7249, "avatar": "https://seccdn.libravatar.org/avatar/cd15fd5361c55bb6ed4675dae968b1cec6e0e7695ea75520fafc58bdb0030a6b?s=24&d=retro", "openid": "py0xc3.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "docs"}, {"name": "ask-fedora"}]}}}, {"karma": 0, "comment_id": 2770785, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "No regressions detected on x86_64. Tried to verify vulnerability with poc, but the poc I found showed that both old and new version was ok, so I guess it is unclear if the old version was properly exploitable on fedora x86_64.", "timestamp": "2022-11-01 21:34:40", "update_id": 458215, "user_id": 195, "id": 2770785, "testcase_feedback": [], "user": {"name": "norenh", "email": "henning.noren@gmail.com", "id": 195, "avatar": "https://seccdn.libravatar.org/avatar/e57ad00f606591e7f7c5111fc78a01018ddc51bd5b69317fac31089fd8bda51f?s=24&d=retro", "openid": "norenh.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770351, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:25:18", "update_id": 458215, "user_id": 3703, "id": 2770351, "testcase_feedback": [], "user": {"name": "markec", "email": "marko.bevc@gmail.com", "id": 3703, "avatar": "https://seccdn.libravatar.org/avatar/2a3640b3b2df97a062aff29758dd6a2ce98adba2cdd4da3fceb85df19b25200c?s=24&d=retro", "openid": "markec.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 1, "comment_id": 2770356, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:25:34", "update_id": 458210, "user_id": 6368, "id": 2770356, "testcase_feedback": [], "user": {"name": "bittin", "email": "droidbittin@gmail.com", "id": 6368, "avatar": "https://seccdn.libravatar.org/avatar/fd34001f44983edfeb0e400944f5b8db1c292171915754ae8b46b2ebc3a298ea?s=24&d=retro", "openid": "bittin.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 1, "comment_id": 2770357, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:25:39", "update_id": 458215, "user_id": 6368, "id": 2770357, "testcase_feedback": [], "user": {"name": "bittin", "email": "droidbittin@gmail.com", "id": 6368, "avatar": "https://seccdn.libravatar.org/avatar/fd34001f44983edfeb0e400944f5b8db1c292171915754ae8b46b2ebc3a298ea?s=24&d=retro", "openid": "bittin.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770445, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:32:42", "update_id": 458210, "user_id": 527, "id": 2770445, "testcase_feedback": [], "user": {"name": "richardfearn", "email": "richardfearn@gmail.com", "id": 527, "avatar": "https://seccdn.libravatar.org/avatar/2e4235153ed3173259ce7ce14e90b235d91241e5da0f37f034017b38600ad7f2?s=24&d=retro", "openid": "richardfearn.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 2770448, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:33:04", "update_id": 458210, "user_id": 5956, "id": 2770448, "testcase_feedback": [], "user": {"name": "copperi", "email": "copper_fin@hotmail.com", "id": 5956, "avatar": "https://seccdn.libravatar.org/avatar/3f3cb934f8290baa9c1b54dc6224e877bcc971489b99a3c223a756612e1cae54?s=24&d=retro", "openid": "copperi.id.stg.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "fi-apprentice"}, {"name": "l10n"}, {"name": "go-sig"}, {"name": "docs"}, {"name": "security-team"}]}}}, {"karma": 0, "comment_id": 2770552, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:48:49", "update_id": 458215, "user_id": 5392, "id": 2770552, "testcase_feedback": [], "user": {"name": "stklcode", "email": "stefan@stklcode.de", "id": 5392, "avatar": "https://seccdn.libravatar.org/avatar/c478b1fbd4d0b7091bc822fab04fdc7749103ffba8eceb8a4b16d26c97f05cfb?s=24&d=retro", "openid": "stklcode.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770606, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:06:03", "update_id": 458215, "user_id": 4120, "id": 2770606, "testcase_feedback": [], "user": {"name": "atim", "email": "ego.cordatus@gmail.com", "id": 4120, "avatar": "https://seccdn.libravatar.org/avatar/8c3a317a13d88ca7421098b94cce0501c97ca2283e7139c4992df34f6218fb3b?s=24&d=retro", "openid": "atim.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "rust-sig"}]}}}, {"karma": 0, "comment_id": 2770607, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:06:33", "update_id": 458215, "user_id": 6662, "id": 2770607, "testcase_feedback": [], "user": {"name": "ptudor", "email": "fedora@mx.ptudor.net", "id": 6662, "avatar": "https://seccdn.libravatar.org/avatar/a33d6e155da5a798f41b54fd9bf08f7f2c3a4e8fa9327f1901bdd69a650ddccd?s=24&d=retro", "openid": "ptudor.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}, {"karma": 0, "comment_id": 2770613, "bug_id": 2137723, "comment": {"karma": 0, "karma_critpath": 0, "text": "If the build fixes CVE-2022-3786, then BZ#2139151 and BZ#2139104 should also be linked to this update?", "timestamp": "2022-11-01 18:10:00", "update_id": 458210, "user_id": 1677, "id": 2770613, "testcase_feedback": [], "user": {"name": "imsedgar", "email": "edgar.hoch@ims.uni-stuttgart.de", "id": 1677, "avatar": "https://seccdn.libravatar.org/avatar/6e9b05dfa070935c2e346cbab6b2b1c8faf64ce0347014f6be1824911c0d1c33?s=24&d=retro", "openid": "imsedgar.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770623, "bug_id": 2137723, "comment": {"karma": 0, "karma_critpath": 0, "text": "As soon as the test gating status changes to \"passed\", another +1 (even from someone who already gave +1) will be necessary to get it submitted for stable.", "timestamp": "2022-11-01 18:15:23", "update_id": 458210, "user_id": 303, "id": 2770623, "testcase_feedback": [], "user": {"name": "robatino", "email": "arobatino@gmail.com", "id": 303, "avatar": "https://seccdn.libravatar.org/avatar/bb8d454eee868b05bbdfef07cbba898ae0ea9c238d3d8001483d8c6593322eb5?s=24&d=retro", "openid": "robatino.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-deltaisos"}]}}}, {"karma": 0, "comment_id": 2770624, "bug_id": 2137723, "comment": {"karma": 0, "karma_critpath": 0, "text": "As soon as the test gating status changes to \"passed\", another +1 (even from someone who already gave +1) will be necessary to get it submitted for stable.", "timestamp": "2022-11-01 18:15:30", "update_id": 458215, "user_id": 303, "id": 2770624, "testcase_feedback": [], "user": {"name": "robatino", "email": "arobatino@gmail.com", "id": 303, "avatar": "https://seccdn.libravatar.org/avatar/bb8d454eee868b05bbdfef07cbba898ae0ea9c238d3d8001483d8c6593322eb5?s=24&d=retro", "openid": "robatino.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-deltaisos"}]}}}, {"karma": 0, "comment_id": 2770634, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works fine. CVEs not verified.", "timestamp": "2022-11-01 18:23:23", "update_id": 458215, "user_id": 7249, "id": 2770634, "testcase_feedback": [], "user": {"name": "py0xc3", "email": "py0xc3@posteo.net", "id": 7249, "avatar": "https://seccdn.libravatar.org/avatar/cd15fd5361c55bb6ed4675dae968b1cec6e0e7695ea75520fafc58bdb0030a6b?s=24&d=retro", "openid": "py0xc3.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "docs"}, {"name": "ask-fedora"}]}}}, {"karma": 1, "comment_id": 2770645, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:32:53", "update_id": 458215, "user_id": 3555, "id": 2770645, "testcase_feedback": [], "user": {"name": "jsbillings", "email": "billings@negate.org", "id": 3555, "avatar": "https://seccdn.libravatar.org/avatar/5dd296975772475f570fb427d1903943b2c2fbb4bb3181c99c8f8caf14984d9c?s=24&d=retro", "openid": "jsbillings.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "centosproject-email-aliases"}, {"name": "sig-storage"}, {"name": "gitlab-centos-sig-storage"}]}}}, {"karma": 0, "comment_id": 2770666, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:48:32", "update_id": 458210, "user_id": 5881, "id": 2770666, "testcase_feedback": [], "user": {"name": "geraldosimiao", "email": "geraldo.simiao.kutz@gmail.com", "id": 5881, "avatar": "https://seccdn.libravatar.org/avatar/03fa5b58e8ac78544bf41ad8ecf9ee1920f2ebedb86542c2f4cdf7ef15813168?s=24&d=retro", "openid": "geraldosimiao.id.stg.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "fedora-br"}, {"name": "advocates"}, {"name": "respins-sig"}]}}}, {"karma": 0, "comment_id": 2770672, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:50:14", "update_id": 458215, "user_id": 5881, "id": 2770672, "testcase_feedback": [], "user": {"name": "geraldosimiao", "email": "geraldo.simiao.kutz@gmail.com", "id": 5881, "avatar": "https://seccdn.libravatar.org/avatar/03fa5b58e8ac78544bf41ad8ecf9ee1920f2ebedb86542c2f4cdf7ef15813168?s=24&d=retro", "openid": "geraldosimiao.id.stg.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "fedora-br"}, {"name": "advocates"}, {"name": "respins-sig"}]}}}, {"karma": 0, "comment_id": 2770688, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 19:07:57", "update_id": 458215, "user_id": 6139, "id": 2770688, "testcase_feedback": [], "user": {"name": "pssgcsim", "email": "pssgcsim@psb1.org", "id": 6139, "avatar": "https://seccdn.libravatar.org/avatar/f2af84c6f7a77e9b60fdf618263a60a53c59047f28a95ebb19c2d51c8238c26a?s=24&d=retro", "openid": "pssgcsim.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770714, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 19:23:06", "update_id": 458215, "user_id": 4294, "id": 2770714, "testcase_feedback": [], "user": {"name": "marbu", "email": "martin.bukatovic@gmail.com", "id": 4294, "avatar": "https://seccdn.libravatar.org/avatar/a05d3afc06ffff057d37e9aa11f2375b86550584e7c873569a7cfcf3c8d53734?s=24&d=retro", "openid": "marbu.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770747, "bug_id": 2137723, "comment": {"karma": 0, "karma_critpath": 0, "text": "note, gating is 'failed' because we are still waiting on a few tests. they are running and will complete within the next hour or so, I hope.", "timestamp": "2022-11-01 20:46:12", "update_id": 458215, "user_id": 302, "id": 2770747, "testcase_feedback": [], "user": {"name": "adamwill", "email": "awilliam@redhat.com", "id": 302, "avatar": "https://seccdn.libravatar.org/avatar/51720fbb2ec5dfd2bc005ac374a3bfd3190cb8f45f3bb8d6bdf35fb6a051d03b?s=24&d=retro", "openid": "adamwill.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "qa-tools-sig"}, {"name": "fedora-contributor"}, {"name": "news"}, {"name": "gittriage"}, {"name": "sysadmin"}, {"name": "gitspin-kickstarts"}, {"name": "signed_fpca"}, {"name": "gitgeneric-release"}, {"name": "yak_farmers"}, {"name": "triagers"}, {"name": "qa"}, {"name": "sysadmin-qa"}, {"name": "fedorabugs"}, {"name": "ipausers"}, {"name": "gitmkinitrd"}, {"name": "qa-admin"}, {"name": "aws-qa"}, {"name": "change-wranglers"}, {"name": "fedora-ci-admins"}, {"name": "common-issues-triage"}, {"name": "sysadmin-main"}, {"name": "program-management"}, {"name": "gitfedora-project-schedule"}]}}}, {"karma": 1, "comment_id": 2770782, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 21:30:35", "update_id": 458210, "user_id": 107, "id": 2770782, "testcase_feedback": [], "user": {"name": "nb", "email": "nick@bebout.net", "id": 107, "avatar": "https://seccdn.libravatar.org/avatar/2f33ca167b8f6e7ea7105ea1bf90935ca81575d091e57607aa513cbb74420927?s=24&d=retro", "openid": "nb.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "sysadmin-main"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "wikiedit"}, {"name": "l10n"}, {"name": "sysadmin-logs"}, {"name": "gitfedora-web"}, {"name": "fi-apprentice"}, {"name": "admins"}, {"name": "magazine"}, {"name": "sysadmin-badges"}, {"name": "security-team"}, {"name": "sysadmin-noc"}, {"name": "sysadmin"}, {"name": "fedora-hams"}, {"name": "accounts"}, {"name": "sysadmin-web"}, {"name": "ambassadors"}, {"name": "videos"}, {"name": "irc-support-operators"}, {"name": "cvsl10n"}, {"name": "cvsfedora"}, {"name": "ipausers"}, {"name": "ambassadors-emeriti"}, {"name": "sysadmin-veteran"}, {"name": "wikiadmin"}, {"name": "designteam"}, {"name": "famsco"}, {"name": "signed_fpca"}, {"name": "qa"}, {"name": "mindshare"}, {"name": "sysadmin-devel"}, {"name": "respins-sig"}, {"name": "web"}, {"name": "3d-printing-sig"}, {"name": "freemedia"}, {"name": "campusambassadors"}, {"name": "hosted-content"}, {"name": "aws-infra"}, {"name": "certbot-sig"}, {"name": "sysadmin-dns"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-tools"}, {"name": "marketing"}, {"name": "sysadmin-test"}, {"name": "advocates"}, {"name": "letsencrypt"}, {"name": "sysadmin-paste"}, {"name": "commops"}, {"name": "dotnet-sig"}, {"name": "fedora-contributor"}, {"name": "sysadmin-keys"}, {"name": "communishift"}, {"name": "altvideos"}, {"name": "fedorabugs"}, {"name": "aws-master"}, {"name": "fedora-socialmedia"}, {"name": "gitlab-fedora-admin"}, {"name": "clamav"}, {"name": "trust admins"}, {"name": "aws"}]}}}, {"karma": 0, "comment_id": 2770930, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "Everything working on my end. (except the exploit, hopefully)\nWill run a PoC tomorrow if I find one.", "timestamp": "2022-11-02 00:08:27", "update_id": 458215, "user_id": 6725, "id": 2770930, "testcase_feedback": [], "user": {"name": "vainly", "email": "vainlystrain@gmail.com", "id": 6725, "avatar": "https://seccdn.libravatar.org/avatar/298ccd9ac0975a72c0aa8e0513253d00f08ca72986edd9aa4221f953b7102222?s=24&d=retro", "openid": "vainly.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}, {"karma": 0, "comment_id": 2770961, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-02 00:58:42", "update_id": 458215, "user_id": 137, "id": 2770961, "testcase_feedback": [], "user": {"name": "kevin", "email": "kevin@scrye.com", "id": 137, "avatar": "https://seccdn.libravatar.org/avatar/05d9feede3ce862bdfd16271134edeba147128c93ae9299fca87f8135ae2b2fd?s=24&d=retro", "openid": "kevin.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "security_respons"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "infra-sig"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-jenkins"}, {"name": "freemedia"}, {"name": "gitspin-kickstarts"}, {"name": "wikiadmin"}, {"name": "aws-iam"}, {"name": "wikiedit"}, {"name": "epel-wranglers"}, {"name": "sysadmin-cloud"}, {"name": "sysadmin-backup"}, {"name": "upstream-test"}, {"name": "irc-support-operators"}, {"name": "sysadmin-osbs"}, {"name": "aws-s3"}, {"name": "bzrpython-fedora"}, {"name": "fedora-contributor"}, {"name": "aws"}, {"name": "fi-apprentice"}, {"name": "sysadmin-accounts"}, {"name": "msftazure"}, {"name": "server-wg"}, {"name": "sysadmin-secondary"}, {"name": "fedora-hams"}, {"name": "signers"}, {"name": "sysadmin-devel"}, {"name": "aws-copr"}, {"name": "fedorabugs"}, {"name": "sysadmin-spin"}, {"name": "sysadmin-logs"}, {"name": "sysadmin-tools"}, {"name": "cvsadmin"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-openshift"}, {"name": "aws-master"}, {"name": "ipausers"}, {"name": "sysadmin-gallery"}, {"name": "accounts"}, {"name": "sysadmin-veteran"}, {"name": "gitfedbot"}, {"name": "fesco"}, {"name": "sysadmin-survey"}, {"name": "web"}, {"name": "sysadmin-coreos"}, {"name": "cvsfedora"}, {"name": "aws-billing"}, {"name": "aws-s3-readonly"}, {"name": "admins"}, {"name": "epel-cabal"}, {"name": "sysadmin-dns"}, {"name": "signed_fpca"}, {"name": "sysadmin-noc"}, {"name": "sysadmin-qa"}, {"name": "hosted-content"}, {"name": "sysadmin-cvs"}, {"name": "torrentadmin"}, {"name": "gitfedora-web"}, {"name": "sysadmin-darkserver"}, {"name": "gitcsi"}, {"name": "gitformulas"}, {"name": "sysadmin-web"}, {"name": "sysadmin-ask"}, {"name": "communishift"}, {"name": "vendor-support"}, {"name": "sysadmin-calendar"}, {"name": "aws-fedoramirror"}, {"name": "aws-infra"}, {"name": "sysadmin-packages"}, {"name": "sysadmin"}, {"name": "epel-packagers-sig"}]}}}, {"karma": 0, "comment_id": 2771072, "bug_id": 2137723, "comment": {"karma": 0, "karma_critpath": 0, "text": "Hi @nb\n\nhow did you test for the CVEs? Thank you.", "timestamp": "2022-11-02 09:10:51", "update_id": 458210, "user_id": 2706, "id": 2771072, "testcase_feedback": [], "user": {"name": "augenauf", "email": "florian.heiser@posteo.de", "id": 2706, "avatar": "https://seccdn.libravatar.org/avatar/953c575b4732d13a2546b3693bc427330cbd60049d601ccb1561b1ad46d97482?s=24&d=retro", "openid": "augenauf.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "docs"}, {"name": "ask-fedora"}, {"name": "websites-apps-cms"}]}}}, {"karma": 0, "comment_id": 2771075, "bug_id": 2137723, "comment": {"karma": 0, "karma_critpath": 0, "text": "Hi @bittin, @nb, @jsbillings, how did you test for the CVEs", "timestamp": "2022-11-02 09:15:10", "update_id": 458215, "user_id": 2706, "id": 2771075, "testcase_feedback": [], "user": {"name": "augenauf", "email": "florian.heiser@posteo.de", "id": 2706, "avatar": "https://seccdn.libravatar.org/avatar/953c575b4732d13a2546b3693bc427330cbd60049d601ccb1561b1ad46d97482?s=24&d=retro", "openid": "augenauf.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "docs"}, {"name": "ask-fedora"}, {"name": "websites-apps-cms"}]}}}, {"karma": 0, "comment_id": 2771513, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "\npackage works, cves not verified.\n", "timestamp": "2022-11-02 15:37:07", "update_id": 458215, "user_id": 5458, "id": 2771513, "testcase_feedback": [], "user": {"name": "brandfbb", "email": "brandfbb@gmail.com", "id": 5458, "avatar": "https://seccdn.libravatar.org/avatar/75db743834ffde0c0538fbacfa22ab23d54af82fb0a437caf70980bb6f479f0f?s=24&d=retro", "openid": "brandfbb.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 2770379, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:26:35", "update_id": 458215, "user_id": 5300, "id": 2770379, "testcase_feedback": [], "user": {"name": "mikelo2", "email": "mikel@olasagasti.info", "id": 5300, "avatar": "https://seccdn.libravatar.org/avatar/cc3edee2f036633c66dc33c970298c607f2a28d3d3235fbc0bb0e60d131d799c?s=24&d=retro", "openid": "mikelo2.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "go-sig"}]}}}, {"karma": 0, "comment_id": 2770674, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:52:21", "update_id": 458210, "user_id": 5956, "id": 2770674, "testcase_feedback": [], "user": {"name": "copperi", "email": "copper_fin@hotmail.com", "id": 5956, "avatar": "https://seccdn.libravatar.org/avatar/3f3cb934f8290baa9c1b54dc6224e877bcc971489b99a3c223a756612e1cae54?s=24&d=retro", "openid": "copperi.id.stg.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "fi-apprentice"}, {"name": "l10n"}, {"name": "go-sig"}, {"name": "docs"}, {"name": "security-team"}]}}}, {"karma": 0, "comment_id": 2770757, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "LGTM", "timestamp": "2022-11-01 21:06:52", "update_id": 458210, "user_id": 257, "id": 2770757, "testcase_feedback": [], "user": {"name": "grahamwhiteuk", "email": "graham_alton@hotmail.com", "id": 257, "avatar": "https://seccdn.libravatar.org/avatar/28def4cc8111723ba02971e53a46f032ecdf903a0eb43d3f9c87168e4c2d233b?s=24&d=retro", "openid": "grahamwhiteuk.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "web"}, {"name": "websites-apps"}]}}}, {"karma": 1, "comment_id": 2770783, "bug_id": 2137723, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 21:30:46", "update_id": 458215, "user_id": 107, "id": 2770783, "testcase_feedback": [], "user": {"name": "nb", "email": "nick@bebout.net", "id": 107, "avatar": "https://seccdn.libravatar.org/avatar/2f33ca167b8f6e7ea7105ea1bf90935ca81575d091e57607aa513cbb74420927?s=24&d=retro", "openid": "nb.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "sysadmin-main"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "wikiedit"}, {"name": "l10n"}, {"name": "sysadmin-logs"}, {"name": "gitfedora-web"}, {"name": "fi-apprentice"}, {"name": "admins"}, {"name": "magazine"}, {"name": "sysadmin-badges"}, {"name": "security-team"}, {"name": "sysadmin-noc"}, {"name": "sysadmin"}, {"name": "fedora-hams"}, {"name": "accounts"}, {"name": "sysadmin-web"}, {"name": "ambassadors"}, {"name": "videos"}, {"name": "irc-support-operators"}, {"name": "cvsl10n"}, {"name": "cvsfedora"}, {"name": "ipausers"}, {"name": "ambassadors-emeriti"}, {"name": "sysadmin-veteran"}, {"name": "wikiadmin"}, {"name": "designteam"}, {"name": "famsco"}, {"name": "signed_fpca"}, {"name": "qa"}, {"name": "mindshare"}, {"name": "sysadmin-devel"}, {"name": "respins-sig"}, {"name": "web"}, {"name": "3d-printing-sig"}, {"name": "freemedia"}, {"name": "campusambassadors"}, {"name": "hosted-content"}, {"name": "aws-infra"}, {"name": "certbot-sig"}, {"name": "sysadmin-dns"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-tools"}, {"name": "marketing"}, {"name": "sysadmin-test"}, {"name": "advocates"}, {"name": "letsencrypt"}, {"name": "sysadmin-paste"}, {"name": "commops"}, {"name": "dotnet-sig"}, {"name": "fedora-contributor"}, {"name": "sysadmin-keys"}, {"name": "communishift"}, {"name": "altvideos"}, {"name": "fedorabugs"}, {"name": "aws-master"}, {"name": "fedora-socialmedia"}, {"name": "gitlab-fedora-admin"}, {"name": "clamav"}, {"name": "trust admins"}, {"name": "aws"}]}}}]}, {"bug_id": 2139149, "title": "[Major Incident] CVE-2022-3602 openssl: X.509 Email Address Buffer Overflow [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 2770384, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:26:51", "update_id": 458210, "user_id": 5300, "id": 2770384, "testcase_feedback": [], "user": {"name": "mikelo2", "email": "mikel@olasagasti.info", "id": 5300, "avatar": "https://seccdn.libravatar.org/avatar/cc3edee2f036633c66dc33c970298c607f2a28d3d3235fbc0bb0e60d131d799c?s=24&d=retro", "openid": "mikelo2.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "go-sig"}]}}}, {"karma": 1, "comment_id": 2770506, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "Tested on x86_64 and aarch64 across a number of services that use openssl inc openssh, postfix, dovecot, httpd using TLS1.2 and 1.3 and a number of client apps", "timestamp": "2022-11-01 17:42:33", "update_id": 458210, "user_id": 96, "id": 2770506, "testcase_feedback": [], "user": {"name": "pbrobinson", "email": "pbrobinson@gmail.com", "id": 96, "avatar": "https://seccdn.libravatar.org/avatar/3bac3f1833b19f5b5e62e166d64737430603201d1513dcc33a8c147d702a2e7d?s=24&d=retro", "openid": "pbrobinson.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "fedora-s390"}, {"name": "gitfedora-arm-installer"}, {"name": "gitspin-kickstarts"}, {"name": "fedorabugs"}, {"name": "fedora-ppc"}, {"name": "alt-sugar"}, {"name": "torrentadmin"}, {"name": "sysadmin-cvs"}, {"name": "gitfedora-wiki"}, {"name": "sysadmin-releng"}, {"name": "aarch64"}, {"name": "sysadmin"}, {"name": "signed_fpca"}, {"name": "fedora-arm"}, {"name": "sysadmin-secondary"}, {"name": "iot"}, {"name": "ipausers"}, {"name": "arm-qa"}, {"name": "fedora-contributor"}, {"name": "gitpungi"}, {"name": "cvsadmin"}]}}}, {"karma": 0, "comment_id": 2770612, "bug_id": 2139149, "comment": {"karma": 0, "karma_critpath": 0, "text": "If the build fixes CVE-2022-3786, then BZ#2139151 and BZ#2139104 should also be linked to this update?", "timestamp": "2022-11-01 18:09:46", "update_id": 458215, "user_id": 1677, "id": 2770612, "testcase_feedback": [], "user": {"name": "imsedgar", "email": "edgar.hoch@ims.uni-stuttgart.de", "id": 1677, "avatar": "https://seccdn.libravatar.org/avatar/6e9b05dfa070935c2e346cbab6b2b1c8faf64ce0347014f6be1824911c0d1c33?s=24&d=retro", "openid": "imsedgar.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770639, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works fine within F37 x86_64 KVM VM. CVEs not verified/checked.", "timestamp": "2022-11-01 18:30:43", "update_id": 458210, "user_id": 7249, "id": 2770639, "testcase_feedback": [], "user": {"name": "py0xc3", "email": "py0xc3@posteo.net", "id": 7249, "avatar": "https://seccdn.libravatar.org/avatar/cd15fd5361c55bb6ed4675dae968b1cec6e0e7695ea75520fafc58bdb0030a6b?s=24&d=retro", "openid": "py0xc3.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "docs"}, {"name": "ask-fedora"}]}}}, {"karma": 0, "comment_id": 2770785, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "No regressions detected on x86_64. Tried to verify vulnerability with poc, but the poc I found showed that both old and new version was ok, so I guess it is unclear if the old version was properly exploitable on fedora x86_64.", "timestamp": "2022-11-01 21:34:40", "update_id": 458215, "user_id": 195, "id": 2770785, "testcase_feedback": [], "user": {"name": "norenh", "email": "henning.noren@gmail.com", "id": 195, "avatar": "https://seccdn.libravatar.org/avatar/e57ad00f606591e7f7c5111fc78a01018ddc51bd5b69317fac31089fd8bda51f?s=24&d=retro", "openid": "norenh.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770351, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:25:18", "update_id": 458215, "user_id": 3703, "id": 2770351, "testcase_feedback": [], "user": {"name": "markec", "email": "marko.bevc@gmail.com", "id": 3703, "avatar": "https://seccdn.libravatar.org/avatar/2a3640b3b2df97a062aff29758dd6a2ce98adba2cdd4da3fceb85df19b25200c?s=24&d=retro", "openid": "markec.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 1, "comment_id": 2770356, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:25:34", "update_id": 458210, "user_id": 6368, "id": 2770356, "testcase_feedback": [], "user": {"name": "bittin", "email": "droidbittin@gmail.com", "id": 6368, "avatar": "https://seccdn.libravatar.org/avatar/fd34001f44983edfeb0e400944f5b8db1c292171915754ae8b46b2ebc3a298ea?s=24&d=retro", "openid": "bittin.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 1, "comment_id": 2770357, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:25:39", "update_id": 458215, "user_id": 6368, "id": 2770357, "testcase_feedback": [], "user": {"name": "bittin", "email": "droidbittin@gmail.com", "id": 6368, "avatar": "https://seccdn.libravatar.org/avatar/fd34001f44983edfeb0e400944f5b8db1c292171915754ae8b46b2ebc3a298ea?s=24&d=retro", "openid": "bittin.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770445, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:32:42", "update_id": 458210, "user_id": 527, "id": 2770445, "testcase_feedback": [], "user": {"name": "richardfearn", "email": "richardfearn@gmail.com", "id": 527, "avatar": "https://seccdn.libravatar.org/avatar/2e4235153ed3173259ce7ce14e90b235d91241e5da0f37f034017b38600ad7f2?s=24&d=retro", "openid": "richardfearn.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 2770448, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:33:04", "update_id": 458210, "user_id": 5956, "id": 2770448, "testcase_feedback": [], "user": {"name": "copperi", "email": "copper_fin@hotmail.com", "id": 5956, "avatar": "https://seccdn.libravatar.org/avatar/3f3cb934f8290baa9c1b54dc6224e877bcc971489b99a3c223a756612e1cae54?s=24&d=retro", "openid": "copperi.id.stg.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "fi-apprentice"}, {"name": "l10n"}, {"name": "go-sig"}, {"name": "docs"}, {"name": "security-team"}]}}}, {"karma": 0, "comment_id": 2770552, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:48:49", "update_id": 458215, "user_id": 5392, "id": 2770552, "testcase_feedback": [], "user": {"name": "stklcode", "email": "stefan@stklcode.de", "id": 5392, "avatar": "https://seccdn.libravatar.org/avatar/c478b1fbd4d0b7091bc822fab04fdc7749103ffba8eceb8a4b16d26c97f05cfb?s=24&d=retro", "openid": "stklcode.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770606, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:06:03", "update_id": 458215, "user_id": 4120, "id": 2770606, "testcase_feedback": [], "user": {"name": "atim", "email": "ego.cordatus@gmail.com", "id": 4120, "avatar": "https://seccdn.libravatar.org/avatar/8c3a317a13d88ca7421098b94cce0501c97ca2283e7139c4992df34f6218fb3b?s=24&d=retro", "openid": "atim.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "rust-sig"}]}}}, {"karma": 0, "comment_id": 2770607, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:06:33", "update_id": 458215, "user_id": 6662, "id": 2770607, "testcase_feedback": [], "user": {"name": "ptudor", "email": "fedora@mx.ptudor.net", "id": 6662, "avatar": "https://seccdn.libravatar.org/avatar/a33d6e155da5a798f41b54fd9bf08f7f2c3a4e8fa9327f1901bdd69a650ddccd?s=24&d=retro", "openid": "ptudor.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}, {"karma": 0, "comment_id": 2770613, "bug_id": 2139149, "comment": {"karma": 0, "karma_critpath": 0, "text": "If the build fixes CVE-2022-3786, then BZ#2139151 and BZ#2139104 should also be linked to this update?", "timestamp": "2022-11-01 18:10:00", "update_id": 458210, "user_id": 1677, "id": 2770613, "testcase_feedback": [], "user": {"name": "imsedgar", "email": "edgar.hoch@ims.uni-stuttgart.de", "id": 1677, "avatar": "https://seccdn.libravatar.org/avatar/6e9b05dfa070935c2e346cbab6b2b1c8faf64ce0347014f6be1824911c0d1c33?s=24&d=retro", "openid": "imsedgar.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770623, "bug_id": 2139149, "comment": {"karma": 0, "karma_critpath": 0, "text": "As soon as the test gating status changes to \"passed\", another +1 (even from someone who already gave +1) will be necessary to get it submitted for stable.", "timestamp": "2022-11-01 18:15:23", "update_id": 458210, "user_id": 303, "id": 2770623, "testcase_feedback": [], "user": {"name": "robatino", "email": "arobatino@gmail.com", "id": 303, "avatar": "https://seccdn.libravatar.org/avatar/bb8d454eee868b05bbdfef07cbba898ae0ea9c238d3d8001483d8c6593322eb5?s=24&d=retro", "openid": "robatino.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-deltaisos"}]}}}, {"karma": 0, "comment_id": 2770624, "bug_id": 2139149, "comment": {"karma": 0, "karma_critpath": 0, "text": "As soon as the test gating status changes to \"passed\", another +1 (even from someone who already gave +1) will be necessary to get it submitted for stable.", "timestamp": "2022-11-01 18:15:30", "update_id": 458215, "user_id": 303, "id": 2770624, "testcase_feedback": [], "user": {"name": "robatino", "email": "arobatino@gmail.com", "id": 303, "avatar": "https://seccdn.libravatar.org/avatar/bb8d454eee868b05bbdfef07cbba898ae0ea9c238d3d8001483d8c6593322eb5?s=24&d=retro", "openid": "robatino.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-deltaisos"}]}}}, {"karma": 0, "comment_id": 2770634, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works fine. CVEs not verified.", "timestamp": "2022-11-01 18:23:23", "update_id": 458215, "user_id": 7249, "id": 2770634, "testcase_feedback": [], "user": {"name": "py0xc3", "email": "py0xc3@posteo.net", "id": 7249, "avatar": "https://seccdn.libravatar.org/avatar/cd15fd5361c55bb6ed4675dae968b1cec6e0e7695ea75520fafc58bdb0030a6b?s=24&d=retro", "openid": "py0xc3.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "docs"}, {"name": "ask-fedora"}]}}}, {"karma": 1, "comment_id": 2770645, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:32:53", "update_id": 458215, "user_id": 3555, "id": 2770645, "testcase_feedback": [], "user": {"name": "jsbillings", "email": "billings@negate.org", "id": 3555, "avatar": "https://seccdn.libravatar.org/avatar/5dd296975772475f570fb427d1903943b2c2fbb4bb3181c99c8f8caf14984d9c?s=24&d=retro", "openid": "jsbillings.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "centosproject-email-aliases"}, {"name": "sig-storage"}, {"name": "gitlab-centos-sig-storage"}]}}}, {"karma": 0, "comment_id": 2770666, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:48:32", "update_id": 458210, "user_id": 5881, "id": 2770666, "testcase_feedback": [], "user": {"name": "geraldosimiao", "email": "geraldo.simiao.kutz@gmail.com", "id": 5881, "avatar": "https://seccdn.libravatar.org/avatar/03fa5b58e8ac78544bf41ad8ecf9ee1920f2ebedb86542c2f4cdf7ef15813168?s=24&d=retro", "openid": "geraldosimiao.id.stg.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "fedora-br"}, {"name": "advocates"}, {"name": "respins-sig"}]}}}, {"karma": 0, "comment_id": 2770672, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:50:14", "update_id": 458215, "user_id": 5881, "id": 2770672, "testcase_feedback": [], "user": {"name": "geraldosimiao", "email": "geraldo.simiao.kutz@gmail.com", "id": 5881, "avatar": "https://seccdn.libravatar.org/avatar/03fa5b58e8ac78544bf41ad8ecf9ee1920f2ebedb86542c2f4cdf7ef15813168?s=24&d=retro", "openid": "geraldosimiao.id.stg.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "fedora-br"}, {"name": "advocates"}, {"name": "respins-sig"}]}}}, {"karma": 0, "comment_id": 2770688, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 19:07:57", "update_id": 458215, "user_id": 6139, "id": 2770688, "testcase_feedback": [], "user": {"name": "pssgcsim", "email": "pssgcsim@psb1.org", "id": 6139, "avatar": "https://seccdn.libravatar.org/avatar/f2af84c6f7a77e9b60fdf618263a60a53c59047f28a95ebb19c2d51c8238c26a?s=24&d=retro", "openid": "pssgcsim.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770714, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 19:23:06", "update_id": 458215, "user_id": 4294, "id": 2770714, "testcase_feedback": [], "user": {"name": "marbu", "email": "martin.bukatovic@gmail.com", "id": 4294, "avatar": "https://seccdn.libravatar.org/avatar/a05d3afc06ffff057d37e9aa11f2375b86550584e7c873569a7cfcf3c8d53734?s=24&d=retro", "openid": "marbu.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 2770747, "bug_id": 2139149, "comment": {"karma": 0, "karma_critpath": 0, "text": "note, gating is 'failed' because we are still waiting on a few tests. they are running and will complete within the next hour or so, I hope.", "timestamp": "2022-11-01 20:46:12", "update_id": 458215, "user_id": 302, "id": 2770747, "testcase_feedback": [], "user": {"name": "adamwill", "email": "awilliam@redhat.com", "id": 302, "avatar": "https://seccdn.libravatar.org/avatar/51720fbb2ec5dfd2bc005ac374a3bfd3190cb8f45f3bb8d6bdf35fb6a051d03b?s=24&d=retro", "openid": "adamwill.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "qa-tools-sig"}, {"name": "fedora-contributor"}, {"name": "news"}, {"name": "gittriage"}, {"name": "sysadmin"}, {"name": "gitspin-kickstarts"}, {"name": "signed_fpca"}, {"name": "gitgeneric-release"}, {"name": "yak_farmers"}, {"name": "triagers"}, {"name": "qa"}, {"name": "sysadmin-qa"}, {"name": "fedorabugs"}, {"name": "ipausers"}, {"name": "gitmkinitrd"}, {"name": "qa-admin"}, {"name": "aws-qa"}, {"name": "change-wranglers"}, {"name": "fedora-ci-admins"}, {"name": "common-issues-triage"}, {"name": "sysadmin-main"}, {"name": "program-management"}, {"name": "gitfedora-project-schedule"}]}}}, {"karma": 1, "comment_id": 2770782, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 21:30:35", "update_id": 458210, "user_id": 107, "id": 2770782, "testcase_feedback": [], "user": {"name": "nb", "email": "nick@bebout.net", "id": 107, "avatar": "https://seccdn.libravatar.org/avatar/2f33ca167b8f6e7ea7105ea1bf90935ca81575d091e57607aa513cbb74420927?s=24&d=retro", "openid": "nb.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "sysadmin-main"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "wikiedit"}, {"name": "l10n"}, {"name": "sysadmin-logs"}, {"name": "gitfedora-web"}, {"name": "fi-apprentice"}, {"name": "admins"}, {"name": "magazine"}, {"name": "sysadmin-badges"}, {"name": "security-team"}, {"name": "sysadmin-noc"}, {"name": "sysadmin"}, {"name": "fedora-hams"}, {"name": "accounts"}, {"name": "sysadmin-web"}, {"name": "ambassadors"}, {"name": "videos"}, {"name": "irc-support-operators"}, {"name": "cvsl10n"}, {"name": "cvsfedora"}, {"name": "ipausers"}, {"name": "ambassadors-emeriti"}, {"name": "sysadmin-veteran"}, {"name": "wikiadmin"}, {"name": "designteam"}, {"name": "famsco"}, {"name": "signed_fpca"}, {"name": "qa"}, {"name": "mindshare"}, {"name": "sysadmin-devel"}, {"name": "respins-sig"}, {"name": "web"}, {"name": "3d-printing-sig"}, {"name": "freemedia"}, {"name": "campusambassadors"}, {"name": "hosted-content"}, {"name": "aws-infra"}, {"name": "certbot-sig"}, {"name": "sysadmin-dns"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-tools"}, {"name": "marketing"}, {"name": "sysadmin-test"}, {"name": "advocates"}, {"name": "letsencrypt"}, {"name": "sysadmin-paste"}, {"name": "commops"}, {"name": "dotnet-sig"}, {"name": "fedora-contributor"}, {"name": "sysadmin-keys"}, {"name": "communishift"}, {"name": "altvideos"}, {"name": "fedorabugs"}, {"name": "aws-master"}, {"name": "fedora-socialmedia"}, {"name": "gitlab-fedora-admin"}, {"name": "clamav"}, {"name": "trust admins"}, {"name": "aws"}]}}}, {"karma": 0, "comment_id": 2770930, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "Everything working on my end. (except the exploit, hopefully)\nWill run a PoC tomorrow if I find one.", "timestamp": "2022-11-02 00:08:27", "update_id": 458215, "user_id": 6725, "id": 2770930, "testcase_feedback": [], "user": {"name": "vainly", "email": "vainlystrain@gmail.com", "id": 6725, "avatar": "https://seccdn.libravatar.org/avatar/298ccd9ac0975a72c0aa8e0513253d00f08ca72986edd9aa4221f953b7102222?s=24&d=retro", "openid": "vainly.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}, {"karma": 0, "comment_id": 2770961, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-02 00:58:42", "update_id": 458215, "user_id": 137, "id": 2770961, "testcase_feedback": [], "user": {"name": "kevin", "email": "kevin@scrye.com", "id": 137, "avatar": "https://seccdn.libravatar.org/avatar/05d9feede3ce862bdfd16271134edeba147128c93ae9299fca87f8135ae2b2fd?s=24&d=retro", "openid": "kevin.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "security_respons"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "bodhiadmin"}, {"name": "infra-sig"}, {"name": "sysadmin-main"}, {"name": "releng-team"}, {"name": "sysadmin-dba"}, {"name": "sysadmin-jenkins"}, {"name": "freemedia"}, {"name": "gitspin-kickstarts"}, {"name": "wikiadmin"}, {"name": "aws-iam"}, {"name": "wikiedit"}, {"name": "epel-wranglers"}, {"name": "sysadmin-cloud"}, {"name": "sysadmin-backup"}, {"name": "upstream-test"}, {"name": "irc-support-operators"}, {"name": "sysadmin-osbs"}, {"name": "aws-s3"}, {"name": "bzrpython-fedora"}, {"name": "fedora-contributor"}, {"name": "aws"}, {"name": "fi-apprentice"}, {"name": "sysadmin-accounts"}, {"name": "msftazure"}, {"name": "server-wg"}, {"name": "sysadmin-secondary"}, {"name": "fedora-hams"}, {"name": "signers"}, {"name": "sysadmin-devel"}, {"name": "aws-copr"}, {"name": "fedorabugs"}, {"name": "sysadmin-spin"}, {"name": "sysadmin-logs"}, {"name": "sysadmin-tools"}, {"name": "cvsadmin"}, {"name": "sysadmin-releng"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-openshift"}, {"name": "aws-master"}, {"name": "ipausers"}, {"name": "sysadmin-gallery"}, {"name": "accounts"}, {"name": "sysadmin-veteran"}, {"name": "gitfedbot"}, {"name": "fesco"}, {"name": "sysadmin-survey"}, {"name": "web"}, {"name": "sysadmin-coreos"}, {"name": "cvsfedora"}, {"name": "aws-billing"}, {"name": "aws-s3-readonly"}, {"name": "admins"}, {"name": "epel-cabal"}, {"name": "sysadmin-dns"}, {"name": "signed_fpca"}, {"name": "sysadmin-noc"}, {"name": "sysadmin-qa"}, {"name": "hosted-content"}, {"name": "sysadmin-cvs"}, {"name": "torrentadmin"}, {"name": "gitfedora-web"}, {"name": "sysadmin-darkserver"}, {"name": "gitcsi"}, {"name": "gitformulas"}, {"name": "sysadmin-web"}, {"name": "sysadmin-ask"}, {"name": "communishift"}, {"name": "vendor-support"}, {"name": "sysadmin-calendar"}, {"name": "aws-fedoramirror"}, {"name": "aws-infra"}, {"name": "sysadmin-packages"}, {"name": "sysadmin"}, {"name": "epel-packagers-sig"}]}}}, {"karma": 0, "comment_id": 2771072, "bug_id": 2139149, "comment": {"karma": 0, "karma_critpath": 0, "text": "Hi @nb\n\nhow did you test for the CVEs? Thank you.", "timestamp": "2022-11-02 09:10:51", "update_id": 458210, "user_id": 2706, "id": 2771072, "testcase_feedback": [], "user": {"name": "augenauf", "email": "florian.heiser@posteo.de", "id": 2706, "avatar": "https://seccdn.libravatar.org/avatar/953c575b4732d13a2546b3693bc427330cbd60049d601ccb1561b1ad46d97482?s=24&d=retro", "openid": "augenauf.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "docs"}, {"name": "ask-fedora"}, {"name": "websites-apps-cms"}]}}}, {"karma": 0, "comment_id": 2771075, "bug_id": 2139149, "comment": {"karma": 0, "karma_critpath": 0, "text": "Hi @bittin, @nb, @jsbillings, how did you test for the CVEs", "timestamp": "2022-11-02 09:15:10", "update_id": 458215, "user_id": 2706, "id": 2771075, "testcase_feedback": [], "user": {"name": "augenauf", "email": "florian.heiser@posteo.de", "id": 2706, "avatar": "https://seccdn.libravatar.org/avatar/953c575b4732d13a2546b3693bc427330cbd60049d601ccb1561b1ad46d97482?s=24&d=retro", "openid": "augenauf.id.stg.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "docs"}, {"name": "ask-fedora"}, {"name": "websites-apps-cms"}]}}}, {"karma": 0, "comment_id": 2771513, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "\npackage works, cves not verified.\n", "timestamp": "2022-11-02 15:37:07", "update_id": 458215, "user_id": 5458, "id": 2771513, "testcase_feedback": [], "user": {"name": "brandfbb", "email": "brandfbb@gmail.com", "id": 5458, "avatar": "https://seccdn.libravatar.org/avatar/75db743834ffde0c0538fbacfa22ab23d54af82fb0a437caf70980bb6f479f0f?s=24&d=retro", "openid": "brandfbb.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 2770379, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 17:26:35", "update_id": 458215, "user_id": 5300, "id": 2770379, "testcase_feedback": [], "user": {"name": "mikelo2", "email": "mikel@olasagasti.info", "id": 5300, "avatar": "https://seccdn.libravatar.org/avatar/cc3edee2f036633c66dc33c970298c607f2a28d3d3235fbc0bb0e60d131d799c?s=24&d=retro", "openid": "mikelo2.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "go-sig"}]}}}, {"karma": 0, "comment_id": 2770674, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 18:52:21", "update_id": 458210, "user_id": 5956, "id": 2770674, "testcase_feedback": [], "user": {"name": "copperi", "email": "copper_fin@hotmail.com", "id": 5956, "avatar": "https://seccdn.libravatar.org/avatar/3f3cb934f8290baa9c1b54dc6224e877bcc971489b99a3c223a756612e1cae54?s=24&d=retro", "openid": "copperi.id.stg.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "fi-apprentice"}, {"name": "l10n"}, {"name": "go-sig"}, {"name": "docs"}, {"name": "security-team"}]}}}, {"karma": 0, "comment_id": 2770757, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "LGTM", "timestamp": "2022-11-01 21:06:52", "update_id": 458210, "user_id": 257, "id": 2770757, "testcase_feedback": [], "user": {"name": "grahamwhiteuk", "email": "graham_alton@hotmail.com", "id": 257, "avatar": "https://seccdn.libravatar.org/avatar/28def4cc8111723ba02971e53a46f032ecdf903a0eb43d3f9c87168e4c2d233b?s=24&d=retro", "openid": "grahamwhiteuk.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "web"}, {"name": "websites-apps"}]}}}, {"karma": 1, "comment_id": 2770783, "bug_id": 2139149, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-11-01 21:30:46", "update_id": 458215, "user_id": 107, "id": 2770783, "testcase_feedback": [], "user": {"name": "nb", "email": "nick@bebout.net", "id": 107, "avatar": "https://seccdn.libravatar.org/avatar/2f33ca167b8f6e7ea7105ea1bf90935ca81575d091e57607aa513cbb74420927?s=24&d=retro", "openid": "nb.id.stg.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "sysadmin-main"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "wikiedit"}, {"name": "l10n"}, {"name": "sysadmin-logs"}, {"name": "gitfedora-web"}, {"name": "fi-apprentice"}, {"name": "admins"}, {"name": "magazine"}, {"name": "sysadmin-badges"}, {"name": "security-team"}, {"name": "sysadmin-noc"}, {"name": "sysadmin"}, {"name": "fedora-hams"}, {"name": "accounts"}, {"name": "sysadmin-web"}, {"name": "ambassadors"}, {"name": "videos"}, {"name": "irc-support-operators"}, {"name": "cvsl10n"}, {"name": "cvsfedora"}, {"name": "ipausers"}, {"name": "ambassadors-emeriti"}, {"name": "sysadmin-veteran"}, {"name": "wikiadmin"}, {"name": "designteam"}, {"name": "famsco"}, {"name": "signed_fpca"}, {"name": "qa"}, {"name": "mindshare"}, {"name": "sysadmin-devel"}, {"name": "respins-sig"}, {"name": "web"}, {"name": "3d-printing-sig"}, {"name": "freemedia"}, {"name": "campusambassadors"}, {"name": "hosted-content"}, {"name": "aws-infra"}, {"name": "certbot-sig"}, {"name": "sysadmin-dns"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-tools"}, {"name": "marketing"}, {"name": "sysadmin-test"}, {"name": "advocates"}, {"name": "letsencrypt"}, {"name": "sysadmin-paste"}, {"name": "commops"}, {"name": "dotnet-sig"}, {"name": "fedora-contributor"}, {"name": "sysadmin-keys"}, {"name": "communishift"}, {"name": "altvideos"}, {"name": "fedorabugs"}, {"name": "aws-master"}, {"name": "fedora-socialmedia"}, {"name": "gitlab-fedora-admin"}, {"name": "clamav"}, {"name": "trust admins"}, {"name": "aws"}]}}}]}], "updateid": "FEDORA-2022-502f096dce", "karma": 16, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}