{"update": {"autokarma": false, "autotime": false, "stable_karma": 3, "stable_days": 0, "unstable_karma": -3, "require_bugs": false, "require_testcases": false, "display_name": "", "notes": "- Added patch from Debian to avoid free on invalid pointer due to a buffer overflow (#1196751, #1207180)\r\n- Added patch from Debian for symlink directory traversal (#1178824)\r\n- Added patch from Debian to fix the directory traversal via //multiple/leading/slash (#1178824)", "type": "security", "status": "stable", "request": null, "severity": "unspecified", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": null, "close_bugs": true, "date_submitted": "2015-04-03 16:06:48", "date_modified": "2015-04-09 00:11:17", "date_approved": null, "date_testing": "2015-04-05 14:35:17", "date_stable": "2015-04-10 07:27:44", "alias": "FEDORA-2015-5603", "test_gating_status": null, "from_tag": null, "date_pushed": "2015-04-10 07:27:44", "meets_testing_requirements": false, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2015-5603", "title": "arj-3.10.22-22.fc21", "version_hash": "3f4099460d84c1883a781a980f4be716b9f43a68", "release": {"name": "F21", "long_name": "Fedora 21", "version": "21", "id_prefix": "FEDORA", "branch": "f21", "dist_tag": "f21", "stable_tag": "f21-updates", "testing_tag": "f21-updates-testing", "candidate_tag": "f21-updates-candidate", "pending_signing_tag": "", "pending_testing_tag": "f21-updates-testing-pending", "pending_stable_tag": "f21-updates-pending", "override_tag": "f21-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": null, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "robert", "email": "redhat@linuxnetz.de", "id": 172, "avatar": "https://seccdn.libravatar.org/avatar/5ce2f7b6de1c95bdf5b1d0f117f568f9955a164c0916ea7552b5db21bf3e689a?s=24&d=retro", "openid": "robert.id.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "ambassadors"}, {"name": "campusambassadors"}, {"name": "gitfedora-web"}, {"name": "fedora-contributor"}, {"name": "advocates"}, {"name": "fedorabugs"}, {"name": "gitsecurity-spin"}, {"name": "signed_fpca"}, {"name": "gitfama"}, {"name": "epel-packagers-sig"}, {"name": "web"}, {"name": "clamav"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by robert. ", "timestamp": "2015-04-03 16:07:59", "update_id": 34408, "user_id": 91, "id": 286467, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "Taskotron: depcheck test PASSED on i386. Result log:\nhttps://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/54855/steps/runtask/logs/stdio\n(results are informative only)", "timestamp": "2015-04-03 16:22:23", "update_id": 34408, "user_id": 100, "id": 286468, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "taskotron", "email": "taskotron@fedoraproject.org", "id": 100, "avatar": "https://seccdn.libravatar.org/avatar/8cba34b3793397cca75782c70d6a4c3af6fc4c8e7d502fad36609e3b4b4670f9?s=24&d=retro", "openid": "taskotron.id.fedoraproject.org", "groups": [{"name": ""}]}}, {"karma": 0, "karma_critpath": 0, "text": "Taskotron: depcheck test PASSED on x86_64. Result log:\nhttps://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/54855/steps/runtask/logs/stdio\n(results are informative only)", "timestamp": "2015-04-03 16:24:04", "update_id": 34408, "user_id": 100, "id": 286469, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "taskotron", "email": "taskotron@fedoraproject.org", "id": 100, "avatar": "https://seccdn.libravatar.org/avatar/8cba34b3793397cca75782c70d6a4c3af6fc4c8e7d502fad36609e3b4b4670f9?s=24&d=retro", "openid": "taskotron.id.fedoraproject.org", "groups": [{"name": ""}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update is currently being pushed to the Fedora 21 testing updates repository.", "timestamp": "2015-04-05 02:21:35", "update_id": 34408, "user_id": 91, "id": 286470, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing", "timestamp": "2015-04-05 14:35:17", "update_id": 34408, "user_id": 91, "id": 286471, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "No regressions that I can see.", "timestamp": "2015-04-09 00:09:05", "update_id": 34408, "user_id": 1300, "id": 286472, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "jamesnz", "email": "jwrigley7@gmail.com", "id": 1300, "avatar": "https://seccdn.libravatar.org/avatar/94211fda38d59e04084a53e30c6cf85e76f3e042742be7a1d0a0a31334e178f8?s=24&d=retro", "openid": "jamesnz.id.fedoraproject.org", "groups": [{"name": "packager"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by robert. ", "timestamp": "2015-04-09 00:11:46", "update_id": 34408, "user_id": 91, "id": 286473, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "Taskotron: depcheck test PASSED on i386. Result log:\nhttps://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/56508/steps/runtask/logs/stdio\n(results are informative only)", "timestamp": "2015-04-09 00:36:27", "update_id": 34408, "user_id": 100, "id": 286474, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "taskotron", "email": "taskotron@fedoraproject.org", "id": 100, "avatar": "https://seccdn.libravatar.org/avatar/8cba34b3793397cca75782c70d6a4c3af6fc4c8e7d502fad36609e3b4b4670f9?s=24&d=retro", "openid": "taskotron.id.fedoraproject.org", "groups": [{"name": ""}]}}, {"karma": 0, "karma_critpath": 0, "text": "Taskotron: depcheck test PASSED on x86_64. Result log:\nhttps://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/56508/steps/runtask/logs/stdio\n(results are informative only)", "timestamp": "2015-04-09 00:36:46", "update_id": 34408, "user_id": 100, "id": 286475, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "taskotron", "email": "taskotron@fedoraproject.org", "id": 100, "avatar": "https://seccdn.libravatar.org/avatar/8cba34b3793397cca75782c70d6a4c3af6fc4c8e7d502fad36609e3b4b4670f9?s=24&d=retro", "openid": "taskotron.id.fedoraproject.org", "groups": [{"name": ""}]}}, {"karma": 0, "karma_critpath": 0, "text": "Taskotron: upgradepath test PASSED on noarch. Result log:\nhttps://taskotron.fedoraproject.org/taskmaster//builders/x86_64/builds/56509/steps/runtask/logs/stdio\n(results are informative only)", "timestamp": "2015-04-09 00:37:54", "update_id": 34408, "user_id": 100, "id": 286476, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "taskotron", "email": "taskotron@fedoraproject.org", "id": 100, "avatar": "https://seccdn.libravatar.org/avatar/8cba34b3793397cca75782c70d6a4c3af6fc4c8e7d502fad36609e3b4b4670f9?s=24&d=retro", "openid": "taskotron.id.fedoraproject.org", "groups": [{"name": ""}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update is currently being pushed to the Fedora 21 stable updates repository.", "timestamp": "2015-04-09 17:27:26", "update_id": 34408, "user_id": 91, "id": 286477, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable", "timestamp": "2015-04-10 07:27:44", "update_id": 34408, "user_id": 91, "id": 286478, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "arj-3.10.22-22.fc21", "signed": true, "release_id": null, "type": "rpm", "epoch": null}], "bugs": [{"bug_id": 1178824, "title": "CVE-2015-0556 CVE-2015-0557 arj: two directory traversal flaws", "security": true, "parent": true, "feedback": []}, {"bug_id": 1178825, "title": "arj: two directory traversal flaws [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1196751, "title": "arj: buffer overflow write access initiated by a size read from a crafted archive", "security": true, "parent": true, "feedback": []}, {"bug_id": 1196753, "title": "arj: buffer overflow write access initiated by a size read from a crafted archive [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1207180, "title": "CVE-2015-2782 arj: free on invalid pointer due to to buffer overflow", "security": true, "parent": true, "feedback": []}, {"bug_id": 1207181, "title": "CVE-2015-2782 arj: free on invalid pointer due to to buffer overflow [fedora-all]", "security": true, "parent": false, "feedback": []}], "updateid": "FEDORA-2015-5603", "karma": 1, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}