{"update": {"autokarma": true, "autotime": false, "stable_karma": 6, "stable_days": 0, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "Fix for **CVE-2018-17100** and **CVE-2018-17101**.\n\n----\n\nFix for **CVE-2018-10779**.", "type": "security", "status": "stable", "request": null, "severity": "low", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": true, "critpath_groups": null, "close_bugs": true, "date_submitted": "2018-10-11 14:22:01", "date_modified": null, "date_approved": null, "date_testing": "2018-10-12 00:23:39", "date_stable": "2018-10-19 16:05:40", "alias": "FEDORA-2018-48f74c8eb2", "test_gating_status": "ignored", "from_tag": null, "date_pushed": "2018-10-19 16:05:40", "meets_testing_requirements": true, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2018-48f74c8eb2", "title": "libtiff-4.0.9-13.fc28", "version_hash": "f5bbd5f5c9e304960b22771c1e9baea1deafc95e", "release": {"name": "F28", "long_name": "Fedora 28", "version": "28", "id_prefix": "FEDORA", "branch": "f28", "dist_tag": "f28", "stable_tag": "f28-updates", "testing_tag": "f28-updates-testing", "candidate_tag": "f28-updates-candidate", "pending_signing_tag": "f28-signing-pending", "pending_testing_tag": "f28-updates-testing-pending", "pending_stable_tag": "f28-updates-pending", "override_tag": "f28-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": null, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "nforro", "email": "nforro@redhat.com", "id": 970, "avatar": "https://seccdn.libravatar.org/avatar/c0a1b276101723475a0d713e0f2a26a75b86db21d698fd3be9aa83b0eab37e45?s=24&d=retro", "openid": "nforro.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by nforro. ", "timestamp": "2018-10-11 14:22:01", "update_id": 124533, "user_id": 91, "id": 847348, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has obsoleted [libtiff-4.0.9-12.fc28](https://bodhi.fedoraproject.org/updates/FEDORA-2018-f7533ef852), and has inherited its bugs and notes.", "timestamp": "2018-10-11 14:22:04", "update_id": 124533, "user_id": 91, "id": 847352, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2018-10-12 00:24:45", "update_id": 124533, "user_id": 91, "id": 847566, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "works for me in a VM", "timestamp": "2018-10-12 09:27:18", "update_id": 124533, "user_id": 739, "id": 847708, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "cserpentis", "email": "cserpentis@gmail.com", "id": 739, "avatar": "https://seccdn.libravatar.org/avatar/a3febfef42f58ed535f3c3a3cf9743653cd774dbb6e4554e2ce7c847d9802b6c?s=24&d=retro", "openid": "cserpentis.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}, {"karma": 1, "karma_critpath": 0, "text": "Works", "timestamp": "2018-10-12 14:40:50", "update_id": 124533, "user_id": 491, "id": 847847, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "pwalter", "email": "walter.pete@yandex.com", "id": 491, "avatar": "https://seccdn.libravatar.org/avatar/20f7756718e08ef810fe23344dfdcafe17dfb277e2c27d5cbf81e35b66247795?s=24&d=retro", "openid": "pwalter.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}, {"karma": 1, "karma_critpath": 1, "text": "No regressions.", "timestamp": "2018-10-14 10:40:49", "update_id": 124533, "user_id": 198, "id": 848401, "bug_feedback": [{"karma": 0, "comment_id": 848401, "bug_id": 1577316, "bug": {"bug_id": 1577316, "title": "CVE-2018-10779 CVE-2018-10801 libtiff: various flaws [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 848401, "bug_id": 1631070, "bug": {"bug_id": 1631070, "title": "CVE-2018-17100 libtiff: Integer overflow in multiply_ms in tools/ppm2tiff.c [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 848401, "bug_id": 1631079, "bug": {"bug_id": 1631079, "title": "CVE-2018-17101 libtiff: Two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "bojan", "email": "bojan@rexursive.com", "id": 198, "avatar": "https://seccdn.libravatar.org/avatar/adb4c3f28bd6969871988f992b1bf71e404f03e3570fbfa0fc9bd7d0bf0003f8?s=24&d=retro", "openid": "bojan.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}, {"karma": 1, "karma_critpath": 0, "text": "works for me", "timestamp": "2018-10-14 20:08:24", "update_id": 124533, "user_id": 182, "id": 848464, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "no regressions noted", "timestamp": "2018-10-16 01:07:04", "update_id": 124533, "user_id": 124, "id": 849090, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "filiperosset", "email": "rosset.filipe@gmail.com", "id": 124, "avatar": "https://seccdn.libravatar.org/avatar/f4394b8fb4c9a99c4b534dc724912fe75a5b87fe15048985ece8388c2441d0ca?s=24&d=retro", "openid": "filiperosset.id.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "fedora-br"}, {"name": "trust admins"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for batched by nforro. ", "timestamp": "2018-10-17 10:01:16", "update_id": 124533, "user_id": 91, "id": 849717, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2018-10-18 03:01:04", "update_id": 124533, "user_id": 91, "id": 850064, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2018-10-19 16:08:12", "update_id": 124533, "user_id": 91, "id": 850902, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "libtiff-4.0.9-13.fc28", "signed": true, "release_id": 21, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 1577316, "title": "CVE-2018-10779 CVE-2018-10801 libtiff: various flaws [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 848401, "bug_id": 1577316, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions.", "timestamp": "2018-10-14 10:40:49", "update_id": 124533, "user_id": 198, "id": 848401, "testcase_feedback": [], "user": {"name": "bojan", "email": "bojan@rexursive.com", "id": 198, "avatar": "https://seccdn.libravatar.org/avatar/adb4c3f28bd6969871988f992b1bf71e404f03e3570fbfa0fc9bd7d0bf0003f8?s=24&d=retro", "openid": "bojan.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}]}, {"bug_id": 1631070, "title": "CVE-2018-17100 libtiff: Integer overflow in multiply_ms in tools/ppm2tiff.c [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 848401, "bug_id": 1631070, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions.", "timestamp": "2018-10-14 10:40:49", "update_id": 124533, "user_id": 198, "id": 848401, "testcase_feedback": [], "user": {"name": "bojan", "email": "bojan@rexursive.com", "id": 198, "avatar": "https://seccdn.libravatar.org/avatar/adb4c3f28bd6969871988f992b1bf71e404f03e3570fbfa0fc9bd7d0bf0003f8?s=24&d=retro", "openid": "bojan.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}]}, {"bug_id": 1631079, "title": "CVE-2018-17101 libtiff: Two out-of-bounds writes in cpTags in tools/tiff2bw.c and tools/pal2rgb.c [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 848401, "bug_id": 1631079, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions.", "timestamp": "2018-10-14 10:40:49", "update_id": 124533, "user_id": 198, "id": 848401, "testcase_feedback": [], "user": {"name": "bojan", "email": "bojan@rexursive.com", "id": 198, "avatar": "https://seccdn.libravatar.org/avatar/adb4c3f28bd6969871988f992b1bf71e404f03e3570fbfa0fc9bd7d0bf0003f8?s=24&d=retro", "openid": "bojan.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}]}], "updateid": "FEDORA-2018-48f74c8eb2", "karma": 5, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}