{"update": {"autokarma": true, "autotime": true, "stable_karma": 3, "stable_days": 7, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "https://blog.clamav.net/2022/05/clamav-01050-01043-01036-released.html", "type": "security", "status": "stable", "request": null, "severity": "medium", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": null, "close_bugs": true, "date_submitted": "2022-05-06 13:35:54", "date_modified": null, "date_approved": null, "date_testing": "2022-05-08 03:43:27", "date_stable": "2022-05-16 00:34:12", "alias": "FEDORA-EPEL-2022-cf82fb137a", "test_gating_status": "ignored", "from_tag": null, "date_pushed": "2022-05-16 00:34:12", "meets_testing_requirements": true, "url": "https://bodhi.stg.fedoraproject.org/updates/FEDORA-EPEL-2022-cf82fb137a", "title": "clamav-0.103.6-1.el7", "version_hash": "db83f68c2b7b709931fc895d6b0f5ef9ecb6c760", "release": {"name": "EPEL-7", "long_name": "Fedora EPEL 7", "version": "7", "id_prefix": "FEDORA-EPEL", "branch": "epel7", "dist_tag": "epel7", "stable_tag": "epel7", "testing_tag": "epel7-testing", "candidate_tag": "epel7-testing-candidate", "pending_signing_tag": "epel7-signing-pending", "pending_testing_tag": "epel7-testing-pending", "pending_stable_tag": "epel7-pending", "override_tag": "epel7-override", "mail_template": "fedora_epel_legacy_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": false, "package_manager": "unspecified", "testing_repository": null, "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "sergiomb", "email": "sergio@serjux.com", "id": 271, "avatar": "https://seccdn.libravatar.org/avatar/cb1e1c02b91fca7534374ad3e77409014e4c30c6de47356f36099793f08cc1de?s=24&d=retro", "openid": "sergiomb.id.stg.fedoraproject.org", "groups": [{"name": "nodejs-sig"}, {"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "clamav"}, {"name": "multimedia-sig"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by sergiomb. ", "timestamp": "2022-05-06 13:35:54", "update_id": 403412, "user_id": 91, "id": 2518130, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'ignored'.", "timestamp": "2022-05-06 13:35:54", "update_id": 403412, "user_id": 91, "id": 2518131, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2022-05-08 03:43:53", "update_id": 403412, "user_id": 91, "id": 2520536, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-05-12 03:28:21", "update_id": 403412, "user_id": 186, "id": 2524993, "bug_feedback": [{"karma": 0, "comment_id": 2524993, "bug_id": 2082199, "bug": {"bug_id": 2082199, "title": "CVE-2022-20796 clamav:  NULL-pointer dereference crash in the scan verdict cache check [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2524993, "bug_id": 2082207, "bug": {"bug_id": 2082207, "title": "CVE-2022-20785 clamav: : clamav: Memory leak in HTML file parser [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2524993, "bug_id": 2082213, "bug": {"bug_id": 2082213, "title": "CVE-2022-20770 clamav: Unauthenticated, remote attacker to cause a denial of service during CHM file parse [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2524993, "bug_id": 2082218, "bug": {"bug_id": 2082218, "title": "CVE-2022-20771 clamav: Infinite loop in tiff parser can cause denial of service [epel-all]", "security": true, "parent": false}}], "testcase_feedback": [{"karma": 1, "comment_id": 2524993, "testcase_id": 245, "testcase": {"name": "QA:Testcase ClamAV", "id": 245}}], "user": {"name": "wolfy", "email": "manuel.wolfshant@gmail.com", "id": 186, "avatar": "https://seccdn.libravatar.org/avatar/492065be841df6f5b5f371d89c011e006ed4abbe99440bbc67d1d4f74b439081?s=24&d=retro", "openid": "wolfy.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2022-05-15 03:45:51", "update_id": 403412, "user_id": 91, "id": 2529520, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2022-05-16 00:34:49", "update_id": 403412, "user_id": 91, "id": 2529896, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.stg.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "clamav-0.103.6-1.el7", "signed": true, "release_id": 8, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 2082199, "title": "CVE-2022-20796 clamav:  NULL-pointer dereference crash in the scan verdict cache check [epel-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 2524993, "bug_id": 2082199, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-05-12 03:28:21", "update_id": 403412, "user_id": 186, "id": 2524993, "testcase_feedback": [{"karma": 1, "comment_id": 2524993, "testcase_id": 245, "testcase": {"name": "QA:Testcase ClamAV", "id": 245}}], "user": {"name": "wolfy", "email": "manuel.wolfshant@gmail.com", "id": 186, "avatar": "https://seccdn.libravatar.org/avatar/492065be841df6f5b5f371d89c011e006ed4abbe99440bbc67d1d4f74b439081?s=24&d=retro", "openid": "wolfy.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}]}}}]}, {"bug_id": 2082207, "title": "CVE-2022-20785 clamav: : clamav: Memory leak in HTML file parser [epel-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 2524993, "bug_id": 2082207, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-05-12 03:28:21", "update_id": 403412, "user_id": 186, "id": 2524993, "testcase_feedback": [{"karma": 1, "comment_id": 2524993, "testcase_id": 245, "testcase": {"name": "QA:Testcase ClamAV", "id": 245}}], "user": {"name": "wolfy", "email": "manuel.wolfshant@gmail.com", "id": 186, "avatar": "https://seccdn.libravatar.org/avatar/492065be841df6f5b5f371d89c011e006ed4abbe99440bbc67d1d4f74b439081?s=24&d=retro", "openid": "wolfy.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}]}}}]}, {"bug_id": 2082213, "title": "CVE-2022-20770 clamav: Unauthenticated, remote attacker to cause a denial of service during CHM file parse [epel-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 2524993, "bug_id": 2082213, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-05-12 03:28:21", "update_id": 403412, "user_id": 186, "id": 2524993, "testcase_feedback": [{"karma": 1, "comment_id": 2524993, "testcase_id": 245, "testcase": {"name": "QA:Testcase ClamAV", "id": 245}}], "user": {"name": "wolfy", "email": "manuel.wolfshant@gmail.com", "id": 186, "avatar": "https://seccdn.libravatar.org/avatar/492065be841df6f5b5f371d89c011e006ed4abbe99440bbc67d1d4f74b439081?s=24&d=retro", "openid": "wolfy.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}]}}}]}, {"bug_id": 2082218, "title": "CVE-2022-20771 clamav: Infinite loop in tiff parser can cause denial of service [epel-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 2524993, "bug_id": 2082218, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-05-12 03:28:21", "update_id": 403412, "user_id": 186, "id": 2524993, "testcase_feedback": [{"karma": 1, "comment_id": 2524993, "testcase_id": 245, "testcase": {"name": "QA:Testcase ClamAV", "id": 245}}], "user": {"name": "wolfy", "email": "manuel.wolfshant@gmail.com", "id": 186, "avatar": "https://seccdn.libravatar.org/avatar/492065be841df6f5b5f371d89c011e006ed4abbe99440bbc67d1d4f74b439081?s=24&d=retro", "openid": "wolfy.id.stg.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}]}}}]}], "updateid": "FEDORA-EPEL-2022-cf82fb137a", "karma": 1, "content_type": "rpm", "test_cases": [{"name": "QA:Testcase ClamAV", "id": 245}]}, "can_edit": false, "ci_allowed": false}