{"update": {"autokarma": true, "autotime": false, "stable_karma": 3, "stable_days": 0, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "Security fix for CVE-2016-7951, CVE-2016-7952", "type": "security", "status": "stable", "request": null, "severity": "unspecified", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": true, "critpath_groups": null, "close_bugs": true, "date_submitted": "2016-10-05 12:05:11", "date_modified": null, "date_approved": null, "date_testing": "2016-10-06 00:55:44", "date_stable": "2016-10-09 02:26:44", "alias": "FEDORA-2016-c1d4b1df79", "test_gating_status": null, "from_tag": null, "date_pushed": "2016-10-09 02:26:44", "meets_testing_requirements": false, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2016-c1d4b1df79", "title": "libXtst-1.2.3-1.fc24", "version_hash": "e32a6b5036e8d35ccd93b48bfc6f7986d55ca5ac", "release": {"name": "F24", "long_name": "Fedora 24", "version": "24", "id_prefix": "FEDORA", "branch": "f24", "dist_tag": "f24", "stable_tag": "f24-updates", "testing_tag": "f24-updates-testing", "candidate_tag": "f24-updates-candidate", "pending_signing_tag": "f24-signing-pending", "pending_testing_tag": "f24-updates-testing-pending", "pending_stable_tag": "f24-updates-pending", "override_tag": "f24-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": null, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "bentiss", "email": "btissoir@redhat.com", "id": 1436, "avatar": "https://seccdn.libravatar.org/avatar/41f57dbed58e06cbbbb38601df950e63271fd39342052d6b1f44152481ae0352?s=24&d=retro", "openid": "bentiss.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "graphics-sig"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by bentiss. ", "timestamp": "2016-10-05 12:05:11", "update_id": 69665, "user_id": 91, "id": 501225, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2016-10-06 01:52:06", "update_id": 69665, "user_id": 91, "id": 501693, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 1, "text": "No regressions noted. (Or, at least, I use a Java component with AWT dependencies that in turn depend on this library, and it still works fine...)", "timestamp": "2016-10-06 18:31:35", "update_id": 69665, "user_id": 194, "id": 502212, "bug_feedback": [{"karma": 0, "comment_id": 502212, "bug_id": 1381919, "bug": {"bug_id": 1381919, "title": "CVE-2016-7951 libXtst: Insufficient validation of server responses result in Integer overflows", "security": true, "parent": true}}, {"karma": 0, "comment_id": 502212, "bug_id": 1381922, "bug": {"bug_id": 1381922, "title": "CVE-2016-7952 libXtst: Insufficient validation of server responses result in various data mishandlings", "security": true, "parent": true}}, {"karma": 0, "comment_id": 502212, "bug_id": 1381923, "bug": {"bug_id": 1381923, "title": "CVE-2016-7951 CVE-2016-7952 libXtst: various flaws [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}, {"karma": 1, "karma_critpath": 0, "text": "works for me", "timestamp": "2016-10-06 18:57:03", "update_id": 69665, "user_id": 739, "id": 502222, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "cserpentis", "email": "cserpentis@gmail.com", "id": 739, "avatar": "https://seccdn.libravatar.org/avatar/a3febfef42f58ed535f3c3a3cf9743653cd774dbb6e4554e2ce7c847d9802b6c?s=24&d=retro", "openid": "cserpentis.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2016-10-07 15:21:33", "update_id": 69665, "user_id": 91, "id": 502766, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "wfm", "timestamp": "2016-10-07 15:21:35", "update_id": 69665, "user_id": 107, "id": 502767, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "nb", "email": "nick@bebout.net", "id": 107, "avatar": "https://seccdn.libravatar.org/avatar/2f33ca167b8f6e7ea7105ea1bf90935ca81575d091e57607aa513cbb74420927?s=24&d=retro", "openid": "nb.id.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "sysadmin-main"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "wikiedit"}, {"name": "l10n"}, {"name": "sysadmin-logs"}, {"name": "gitfedora-web"}, {"name": "fi-apprentice"}, {"name": "admins"}, {"name": "magazine"}, {"name": "sysadmin-badges"}, {"name": "security-team"}, {"name": "sysadmin-noc"}, {"name": "sysadmin"}, {"name": "fedora-hams"}, {"name": "accounts"}, {"name": "sysadmin-web"}, {"name": "ambassadors"}, {"name": "videos"}, {"name": "irc-support-operators"}, {"name": "cvsl10n"}, {"name": "cvsfedora"}, {"name": "ipausers"}, {"name": "ambassadors-emeriti"}, {"name": "sysadmin-veteran"}, {"name": "wikiadmin"}, {"name": "designteam"}, {"name": "famsco"}, {"name": "signed_fpca"}, {"name": "qa"}, {"name": "mindshare"}, {"name": "sysadmin-devel"}, {"name": "respins-sig"}, {"name": "web"}, {"name": "3d-printing-sig"}, {"name": "freemedia"}, {"name": "campusambassadors"}, {"name": "hosted-content"}, {"name": "aws-infra"}, {"name": "certbot-sig"}, {"name": "sysadmin-dns"}, {"name": "sysadmin-hosted"}, {"name": "sysadmin-tools"}, {"name": "marketing"}, {"name": "sysadmin-test"}, {"name": "advocates"}, {"name": "letsencrypt"}, {"name": "sysadmin-paste"}, {"name": "commops"}, {"name": "dotnet-sig"}, {"name": "fedora-contributor"}, {"name": "sysadmin-keys"}, {"name": "communishift"}, {"name": "altvideos"}, {"name": "fedorabugs"}, {"name": "aws-master"}, {"name": "fedora-socialmedia"}, {"name": "gitlab-fedora-admin"}, {"name": "clamav"}, {"name": "trust admins"}, {"name": "aws"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2016-10-09 06:22:13", "update_id": 69665, "user_id": 91, "id": 504029, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "libXtst-1.2.3-1.fc24", "signed": true, "release_id": 14, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 1381919, "title": "CVE-2016-7951 libXtst: Insufficient validation of server responses result in Integer overflows", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 502212, "bug_id": 1381919, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions noted. (Or, at least, I use a Java component with AWT dependencies that in turn depend on this library, and it still works fine...)", "timestamp": "2016-10-06 18:31:35", "update_id": 69665, "user_id": 194, "id": 502212, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}]}, {"bug_id": 1381922, "title": "CVE-2016-7952 libXtst: Insufficient validation of server responses result in various data mishandlings", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 502212, "bug_id": 1381922, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions noted. (Or, at least, I use a Java component with AWT dependencies that in turn depend on this library, and it still works fine...)", "timestamp": "2016-10-06 18:31:35", "update_id": 69665, "user_id": 194, "id": 502212, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}]}, {"bug_id": 1381923, "title": "CVE-2016-7951 CVE-2016-7952 libXtst: various flaws [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 502212, "bug_id": 1381923, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions noted. (Or, at least, I use a Java component with AWT dependencies that in turn depend on this library, and it still works fine...)", "timestamp": "2016-10-06 18:31:35", "update_id": 69665, "user_id": 194, "id": 502212, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}]}], "updateid": "FEDORA-2016-c1d4b1df79", "karma": 3, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}