{"update": {"autokarma": true, "autotime": false, "stable_karma": 3, "stable_days": 0, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "This release fixes these vulnerabilies: CVE-2015-8383, CVE-2015-8386, CVE-2015-8387, CVE-2015-8389, CVE-2015-8390, CVE-2015-8391, CVE-2015-8393, CVE-2015-8394. It also fixes compiling comments with auto-callouts, compiling expressions with negated classes in UCP mode, compiling expressions with an isolated \\E between an item and its qualifier with auto-callouts, a crash in regexec() if REG_STARTEND option is set and pmatch argument is NULL, a stack overflow when formatting a 32-bit integer in pcregrep tool, compiling expressions with an empty \\Q\\E sequence between an item and its qualifier with auto-callouts, compiling expressions with global extended modifier that is disabled by local no-extended option at the start of the expression just after a whitespace, a possible crash in pcre_copy_named_substring() if a named substring has number greater than the space in the ovector, a buffer overflow when compiling an expression with named groups with a group that reset capture numbers, and a crash in pcre_get_substring_list() if the use of \\K caused the start of the match to be earlier than the end.", "type": "security", "status": "stable", "request": null, "severity": "unspecified", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": true, "critpath_groups": null, "close_bugs": true, "date_submitted": "2015-12-14 10:32:21", "date_modified": null, "date_approved": null, "date_testing": "2015-12-22 15:18:03", "date_stable": "2016-01-04 16:02:44", "alias": "FEDORA-2015-eb896290d3", "test_gating_status": null, "from_tag": null, "date_pushed": "2016-01-04 16:02:44", "meets_testing_requirements": false, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2015-eb896290d3", "title": "pcre-8.38-1.fc22", "version_hash": "02fa222e4479483247aaa297783b51f73e13d18d", "release": {"name": "F22", "long_name": "Fedora 22", "version": "22", "id_prefix": "FEDORA", "branch": "f22", "dist_tag": "f22", "stable_tag": "f22-updates", "testing_tag": "f22-updates-testing", "candidate_tag": "f22-updates-candidate", "pending_signing_tag": "", "pending_testing_tag": "f22-updates-testing-pending", "pending_stable_tag": "f22-updates-pending", "override_tag": "f22-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": null, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "ppisar", "email": "ppisar@redhat.com", "id": 227, "avatar": "https://seccdn.libravatar.org/avatar/4f25d013cd1c1679b32539ec8afe738557625a2c2e8fa77224307b8579ef29be?s=24&d=retro", "openid": "ppisar.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "perl-maint-sig"}, {"name": "rpm-software-management-sig"}, {"name": "trust admins"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by ppisar. ", "timestamp": "2015-12-14 10:32:21", "update_id": 46807, "user_id": 91, "id": 365688, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "pcre-8.38-1.fc22 ejected from the push because u\"Cannot find relevant tag for pcre-8.38-1.fc22.  None of ['f22-updates-testing', 'f22-updates-testing-pending'] are in [u'epel7-testing-candidate', u'dist-6E-epel-testing-candidate', u'dist-5E-epel-testing-candidate', u'f22-updates-candidate', u'f23-updates-candidate', u'f21-updates-candidate'].\"", "timestamp": "2015-12-16 01:30:36", "update_id": 46807, "user_id": 91, "id": 366546, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by ppisar. ", "timestamp": "2015-12-18 11:44:27", "update_id": 46807, "user_id": 91, "id": 367936, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "works for me", "timestamp": "2015-12-19 23:26:13", "update_id": 46807, "user_id": 182, "id": 368429, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "pcre-8.38-1.fc22 ejected from the push because u\"Cannot find relevant tag for pcre-8.38-1.fc22.  None of ['f22-updates-testing', 'f22-updates-testing-pending'] are in [u'epel7-testing-candidate', u'dist-6E-epel-testing-candidate', u'dist-5E-epel-testing-candidate', u'f22-updates-candidate', u'f23-updates-candidate', u'f21-updates-candidate'].\"", "timestamp": "2015-12-20 02:33:17", "update_id": 46807, "user_id": 91, "id": 368574, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "no regressions noted", "timestamp": "2015-12-21 23:54:43", "update_id": 46807, "user_id": 124, "id": 369014, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "filiperosset", "email": "rosset.filipe@gmail.com", "id": 124, "avatar": "https://seccdn.libravatar.org/avatar/f4394b8fb4c9a99c4b534dc724912fe75a5b87fe15048985ece8388c2441d0ca?s=24&d=retro", "openid": "filiperosset.id.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "trust admins"}, {"name": "signed_fpca"}, {"name": "fedora-contributor"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "ipausers"}, {"name": "fedora-br"}, {"name": "fedorabugs"}, {"name": "ambassadors"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2015-12-22 15:38:43", "update_id": 46807, "user_id": 91, "id": 369263, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2016-01-04 09:27:29", "update_id": 46807, "user_id": 91, "id": 372801, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "works for me", "timestamp": "2016-01-04 09:27:29", "update_id": 46807, "user_id": 125, "id": 372802, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "yuwata", "email": "yuwatana@redhat.com", "id": 125, "avatar": "https://seccdn.libravatar.org/avatar/09d97054a1ae694346000a642b10639ee485b8a9254bca065f3c82df522cc811?s=24&d=retro", "openid": "yuwata.id.fedoraproject.org", "groups": [{"name": "packager"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2016-01-04 19:57:42", "update_id": 46807, "user_id": 91, "id": 373021, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "pcre-8.38-1.fc22", "signed": true, "release_id": 12, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 1287614, "title": "CVE-2015-8383 pcre: Buffer overflow caused by repeated conditional group", "security": true, "parent": true, "feedback": []}, {"bug_id": 1287615, "title": "CVE-2015-8383 pcre: Buffer overflow caused by repeated conditional group [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1287636, "title": "CVE-2015-8386 pcre: Buffer overflow caused by lookbehind assertion", "security": true, "parent": true, "feedback": []}, {"bug_id": 1287639, "title": "CVE-2015-8386 pcre: Buffer overflow caused by lookbehind assertion [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1287646, "title": "CVE-2015-8387 pcre: Integer overflow in subroutine calls", "security": true, "parent": true, "feedback": []}, {"bug_id": 1287647, "title": "CVE-2015-8387 pcre: Integer overflow in subroutine calls [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1287659, "title": "CVE-2015-8389 pcre: Infinite recursion in JIT compiler when processing certain patterns", "security": true, "parent": true, "feedback": []}, {"bug_id": 1287660, "title": "CVE-2015-8389 pcre: Infinite recursion in JIT compiler when processing certain patterns [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1287666, "title": "CVE-2015-8390 pcre: Reading from uninitialized memory when processing certain patterns", "security": true, "parent": true, "feedback": []}, {"bug_id": 1287667, "title": "CVE-2015-8390 pcre: Reading from uninitialized memory when processing certain patterns [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1287671, "title": "CVE-2015-8391 pcre: Some pathological patterns causes pcre_compile() to run for a very long time", "security": true, "parent": true, "feedback": []}, {"bug_id": 1287672, "title": "CVE-2015-8391 pcre: Some pathological patterns causes pcre_compile() to run for a very long time [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1287695, "title": "CVE-2015-8393 pcre: Information leak when running pcgrep -q on crafted binary", "security": true, "parent": true, "feedback": []}, {"bug_id": 1287697, "title": "CVE-2015-8393 pcre: Information leak when running pcgrep -q on crafted binary [fedora-all]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1287702, "title": "CVE-2015-8394 pcre: Integer overflow caused by missing check for certain conditions", "security": true, "parent": true, "feedback": []}, {"bug_id": 1287703, "title": "CVE-2015-8394 pcre: Integer overflow caused by missing check for certain conditions [fedora-all]", "security": true, "parent": false, "feedback": []}], "updateid": "FEDORA-2015-eb896290d3", "karma": 3, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}