{"update": {"autokarma": true, "autotime": false, "stable_karma": 1, "stable_days": 0, "unstable_karma": -1, "require_bugs": false, "require_testcases": false, "display_name": "", "notes": "Security update to Python 3.5.7. Security fix for CVE-2019-5010, CVE-2018-20406, CVE-2018-1060, CVE-2018-1061, CVE-2019-9636.", "type": "security", "status": "stable", "request": null, "severity": "high", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": null, "close_bugs": true, "date_submitted": "2019-03-19 19:55:00", "date_modified": null, "date_approved": null, "date_testing": "2019-03-20 22:01:25", "date_stable": "2019-03-27 14:59:38", "alias": "FEDORA-2019-6e1938a3c5", "test_gating_status": "ignored", "from_tag": null, "date_pushed": "2019-03-27 14:59:38", "meets_testing_requirements": true, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2019-6e1938a3c5", "title": "python35-3.5.7-1.fc29", "version_hash": "4ebc92fc3fa2eb14b5fc2815e693f8af5e2070c6", "release": {"name": "F29", "long_name": "Fedora 29", "version": "29", "id_prefix": "FEDORA", "branch": "f29", "dist_tag": "f29", "stable_tag": "f29-updates", "testing_tag": "f29-updates-testing", "candidate_tag": "f29-updates-candidate", "pending_signing_tag": "f29-signing-pending", "pending_testing_tag": "f29-updates-testing-pending", "pending_stable_tag": "f29-updates-pending", "override_tag": "f29-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": false, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "churchyard", "email": "mhroncok@redhat.com", "id": 533, "avatar": "https://seccdn.libravatar.org/avatar/e221b70024cf971d8b43de0260d2babde9179cdf72605bf3168420e3efe07423?s=24&d=retro", "openid": "churchyard.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "python-sig"}, {"name": "signed_fpca"}, {"name": "3d-printing-sig"}, {"name": "python-packagers-sig"}, {"name": "fedora-contributor"}, {"name": "sysadmin-badges"}, {"name": "ipausers"}, {"name": "sysadmin"}, {"name": "lua-packagers-sig"}, {"name": "fedorabugs"}, {"name": "cvsadmin"}, {"name": "ambassadors"}, {"name": "packaging-committee"}, {"name": "advocates"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by churchyard. ", "timestamp": "2019-03-19 19:55:00", "update_id": 134265, "user_id": 91, "id": 911201, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2019-03-20 22:03:18", "update_id": 134265, "user_id": 91, "id": 911749, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:13", "update_id": 134265, "user_id": 1667, "id": 915440, "bug_feedback": [{"karma": 1, "comment_id": 915440, "bug_id": 1549192, "bug": {"bug_id": 1549192, "title": "CVE-2018-1061 python: DOS via regular expression backtracking in difflib.IS_LINE_JUNK method in difflib", "security": true, "parent": true}}, {"karma": 1, "comment_id": 915440, "bug_id": 1563461, "bug": {"bug_id": 1563461, "title": "CVE-2018-1060 CVE-2018-1061 python35: various flaws [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 915440, "bug_id": 1664509, "bug": {"bug_id": 1664509, "title": "CVE-2018-20406 python: Integer overflow in Modules/_pickle.c allows for memory exhaustion if serializing gigabytes of data", "security": true, "parent": true}}, {"karma": 0, "comment_id": 915440, "bug_id": 1664512, "bug": {"bug_id": 1664512, "title": "CVE-2018-20406 python35: python: Integer overflow in Modules/_pickle.c allows for memory exhaustion if serializing gigabytes of data [fedora-all]", "security": true, "parent": false}}, {"karma": 1, "comment_id": 915440, "bug_id": 1666519, "bug": {"bug_id": 1666519, "title": "CVE-2019-5010 python: NULL pointer dereference using a specially crafted X509 certificate", "security": true, "parent": true}}, {"karma": 1, "comment_id": 915440, "bug_id": 1666527, "bug": {"bug_id": 1666527, "title": "CVE-2019-5010 python35: python: NULL pointer dereference using a specially crafted X509 certificate [fedora-all]", "security": true, "parent": false}}, {"karma": 1, "comment_id": 915440, "bug_id": 1688543, "bug": {"bug_id": 1688543, "title": "CVE-2019-9636 python: Information Disclosure due to urlsplit improper NFKC normalization", "security": true, "parent": true}}, {"karma": 1, "comment_id": 915440, "bug_id": 1688550, "bug": {"bug_id": 1688550, "title": "CVE-2019-9636 python35: python: Information Disclosure due to urlsplit improper NFKC normalization [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for batched by bodhi. ", "timestamp": "2019-03-26 10:21:14", "update_id": 134265, "user_id": 91, "id": 915441, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:51", "update_id": 134265, "user_id": 1667, "id": 915442, "bug_feedback": [{"karma": 1, "comment_id": 915442, "bug_id": 1549192, "bug": {"bug_id": 1549192, "title": "CVE-2018-1061 python: DOS via regular expression backtracking in difflib.IS_LINE_JUNK method in difflib", "security": true, "parent": true}}, {"karma": 1, "comment_id": 915442, "bug_id": 1563461, "bug": {"bug_id": 1563461, "title": "CVE-2018-1060 CVE-2018-1061 python35: various flaws [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 915442, "bug_id": 1664509, "bug": {"bug_id": 1664509, "title": "CVE-2018-20406 python: Integer overflow in Modules/_pickle.c allows for memory exhaustion if serializing gigabytes of data", "security": true, "parent": true}}, {"karma": 0, "comment_id": 915442, "bug_id": 1664512, "bug": {"bug_id": 1664512, "title": "CVE-2018-20406 python35: python: Integer overflow in Modules/_pickle.c allows for memory exhaustion if serializing gigabytes of data [fedora-all]", "security": true, "parent": false}}, {"karma": 1, "comment_id": 915442, "bug_id": 1666519, "bug": {"bug_id": 1666519, "title": "CVE-2019-5010 python: NULL pointer dereference using a specially crafted X509 certificate", "security": true, "parent": true}}, {"karma": 1, "comment_id": 915442, "bug_id": 1666527, "bug": {"bug_id": 1666527, "title": "CVE-2019-5010 python35: python: NULL pointer dereference using a specially crafted X509 certificate [fedora-all]", "security": true, "parent": false}}, {"karma": 1, "comment_id": 915442, "bug_id": 1688543, "bug": {"bug_id": 1688543, "title": "CVE-2019-9636 python: Information Disclosure due to urlsplit improper NFKC normalization", "security": true, "parent": true}}, {"karma": 1, "comment_id": 915442, "bug_id": 1688550, "bug": {"bug_id": 1688550, "title": "CVE-2019-9636 python35: python: Information Disclosure due to urlsplit improper NFKC normalization [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2019-03-26 23:46:06", "update_id": 134265, "user_id": 91, "id": 915729, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2019-03-27 15:01:18", "update_id": 134265, "user_id": 91, "id": 916290, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "python35-3.5.7-1.fc29", "signed": true, "release_id": 23, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 1549192, "title": "CVE-2018-1061 python: DOS via regular expression backtracking in difflib.IS_LINE_JUNK method in difflib", "security": true, "parent": true, "feedback": [{"karma": 1, "comment_id": 915440, "bug_id": 1549192, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:13", "update_id": 134265, "user_id": 1667, "id": 915440, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}, {"karma": 1, "comment_id": 915442, "bug_id": 1549192, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:51", "update_id": 134265, "user_id": 1667, "id": 915442, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}]}, {"bug_id": 1563461, "title": "CVE-2018-1060 CVE-2018-1061 python35: various flaws [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 1, "comment_id": 915440, "bug_id": 1563461, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:13", "update_id": 134265, "user_id": 1667, "id": 915440, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}, {"karma": 1, "comment_id": 915442, "bug_id": 1563461, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:51", "update_id": 134265, "user_id": 1667, "id": 915442, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}]}, {"bug_id": 1664509, "title": "CVE-2018-20406 python: Integer overflow in Modules/_pickle.c allows for memory exhaustion if serializing gigabytes of data", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 915440, "bug_id": 1664509, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:13", "update_id": 134265, "user_id": 1667, "id": 915440, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}, {"karma": 0, "comment_id": 915442, "bug_id": 1664509, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:51", "update_id": 134265, "user_id": 1667, "id": 915442, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}]}, {"bug_id": 1664512, "title": "CVE-2018-20406 python35: python: Integer overflow in Modules/_pickle.c allows for memory exhaustion if serializing gigabytes of data [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 915440, "bug_id": 1664512, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:13", "update_id": 134265, "user_id": 1667, "id": 915440, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}, {"karma": 0, "comment_id": 915442, "bug_id": 1664512, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:51", "update_id": 134265, "user_id": 1667, "id": 915442, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}]}, {"bug_id": 1666519, "title": "CVE-2019-5010 python: NULL pointer dereference using a specially crafted X509 certificate", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 887516, "bug_id": 1666519, "comment": {"karma": 1, "karma_critpath": 1, "text": "I haven't found any issues in programs using python3", "timestamp": "2019-01-23 07:54:37", "update_id": 130044, "user_id": 411, "id": 887516, "testcase_feedback": [{"karma": 0, "comment_id": 887516, "testcase_id": 419, "testcase": {"name": "QA:Testcase Anaconda Install Deps", "id": 419}}, {"karma": 0, "comment_id": 887516, "testcase_id": 4, "testcase": {"name": "QA:Testcase Anaconda User Interface Graphical", "id": 4}}, {"karma": 0, "comment_id": 887516, "testcase_id": 3, "testcase": {"name": "QA:Testcase Anaconda custom partitioning", "id": 3}}, {"karma": 0, "comment_id": 887516, "testcase_id": 354, "testcase": {"name": "QA:Testcase Anaconda help", "id": 354}}, {"karma": 0, "comment_id": 887516, "testcase_id": 6, "testcase": {"name": "QA:Testcase Boot Methods Pxeboot", "id": 6}}, {"karma": 0, "comment_id": 887516, "testcase_id": 5, "testcase": {"name": "QA:Testcase Boot default install", "id": 5}}, {"karma": 0, "comment_id": 887516, "testcase_id": 7, "testcase": {"name": "QA:Testcase install repository Live Image", "id": 7}}, {"karma": 0, "comment_id": 887516, "testcase_id": 2, "testcase": {"name": "User:Pschindl/Draft/Testcase Anaconda custom partitioning", "id": 2}}], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 887773, "bug_id": 1666519, "comment": {"karma": 0, "karma_critpath": 0, "text": "Thank You all.", "timestamp": "2019-01-24 04:17:06", "update_id": 130044, "user_id": 533, "id": 887773, "testcase_feedback": [{"karma": 0, "comment_id": 887773, "testcase_id": 419, "testcase": {"name": "QA:Testcase Anaconda Install Deps", "id": 419}}, {"karma": 0, "comment_id": 887773, "testcase_id": 4, "testcase": {"name": "QA:Testcase Anaconda User Interface Graphical", "id": 4}}, {"karma": 0, "comment_id": 887773, "testcase_id": 3, "testcase": {"name": "QA:Testcase Anaconda custom partitioning", "id": 3}}, {"karma": 0, "comment_id": 887773, "testcase_id": 354, "testcase": {"name": "QA:Testcase Anaconda help", "id": 354}}, {"karma": 0, "comment_id": 887773, "testcase_id": 6, "testcase": {"name": "QA:Testcase Boot Methods Pxeboot", "id": 6}}, {"karma": 0, "comment_id": 887773, "testcase_id": 5, "testcase": {"name": "QA:Testcase Boot default install", "id": 5}}, {"karma": 0, "comment_id": 887773, "testcase_id": 7, "testcase": {"name": "QA:Testcase install repository Live Image", "id": 7}}, {"karma": 0, "comment_id": 887773, "testcase_id": 2, "testcase": {"name": "User:Pschindl/Draft/Testcase Anaconda custom partitioning", "id": 2}}], "user": {"name": "churchyard", "email": "mhroncok@redhat.com", "id": 533, "avatar": "https://seccdn.libravatar.org/avatar/e221b70024cf971d8b43de0260d2babde9179cdf72605bf3168420e3efe07423?s=24&d=retro", "openid": "churchyard.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "python-sig"}, {"name": "signed_fpca"}, {"name": "3d-printing-sig"}, {"name": "python-packagers-sig"}, {"name": "fedora-contributor"}, {"name": "sysadmin-badges"}, {"name": "ipausers"}, {"name": "sysadmin"}, {"name": "lua-packagers-sig"}, {"name": "fedorabugs"}, {"name": "cvsadmin"}, {"name": "ambassadors"}, {"name": "packaging-committee"}, {"name": "advocates"}]}}}, {"karma": 0, "comment_id": 890859, "bug_id": 1666519, "comment": {"karma": 1, "karma_critpath": 0, "text": "works for me", "timestamp": "2019-02-03 08:34:00", "update_id": 130794, "user_id": 2998, "id": 890859, "testcase_feedback": [], "user": {"name": "samoht0", "email": "samoht0-bugzilla@yahoo.com", "id": 2998, "avatar": "https://seccdn.libravatar.org/avatar/4a429e081c6c9f7b9d9cd4a3f4037fc93517c13e17258f8549f2d2f85f0912e7?s=24&d=retro", "openid": "samoht0.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 891027, "bug_id": 1666519, "comment": {"karma": 1, "karma_critpath": 1, "text": "LGTM", "timestamp": "2019-02-04 11:44:24", "update_id": 130794, "user_id": 4687, "id": 891027, "testcase_feedback": [], "user": {"name": "szydell", "email": "marcin@szydelscy.pl", "id": 4687, "avatar": "https://seccdn.libravatar.org/avatar/9550aee307be42e5a65758bfdc35dd57bfbd48b82cdc65eb028e69e487f6e3aa?s=24&d=retro", "openid": "szydell.id.fedoraproject.org", "groups": []}}}, {"karma": 1, "comment_id": 915440, "bug_id": 1666519, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:13", "update_id": 134265, "user_id": 1667, "id": 915440, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}, {"karma": 1, "comment_id": 915442, "bug_id": 1666519, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:51", "update_id": 134265, "user_id": 1667, "id": 915442, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}]}, {"bug_id": 1666527, "title": "CVE-2019-5010 python35: python: NULL pointer dereference using a specially crafted X509 certificate [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 1, "comment_id": 915440, "bug_id": 1666527, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:13", "update_id": 134265, "user_id": 1667, "id": 915440, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}, {"karma": 1, "comment_id": 915442, "bug_id": 1666527, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:51", "update_id": 134265, "user_id": 1667, "id": 915442, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}]}, {"bug_id": 1688543, "title": "CVE-2019-9636 python: Information Disclosure due to urlsplit improper NFKC normalization", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 912220, "bug_id": 1688543, "comment": {"karma": 1, "karma_critpath": 1, "text": "", "timestamp": "2019-03-21 15:33:45", "update_id": 134461, "user_id": 2935, "id": 912220, "testcase_feedback": [], "user": {"name": "imabug", "email": "eugenemah@gmail.com", "id": 2935, "avatar": "https://seccdn.libravatar.org/avatar/ea8ba927783ee0ef10e6f05f14791abf925972bac4f31aba458058d3e7907a6d?s=24&d=retro", "openid": "imabug.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedora-hams"}]}}}, {"karma": 0, "comment_id": 912732, "bug_id": 1688543, "comment": {"karma": 1, "karma_critpath": 1, "text": "Works here.", "timestamp": "2019-03-22 06:00:25", "update_id": 134461, "user_id": 198, "id": 912732, "testcase_feedback": [], "user": {"name": "bojan", "email": "bojan@rexursive.com", "id": 198, "avatar": "https://seccdn.libravatar.org/avatar/adb4c3f28bd6969871988f992b1bf71e404f03e3570fbfa0fc9bd7d0bf0003f8?s=24&d=retro", "openid": "bojan.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 913633, "bug_id": 1688543, "comment": {"karma": 1, "karma_critpath": 0, "text": "no regressions noted", "timestamp": "2019-03-24 10:50:01", "update_id": 134462, "user_id": 2998, "id": 913633, "testcase_feedback": [], "user": {"name": "samoht0", "email": "samoht0-bugzilla@yahoo.com", "id": 2998, "avatar": "https://seccdn.libravatar.org/avatar/4a429e081c6c9f7b9d9cd4a3f4037fc93517c13e17258f8549f2d2f85f0912e7?s=24&d=retro", "openid": "samoht0.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 913863, "bug_id": 1688543, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions noted.", "timestamp": "2019-03-24 18:16:31", "update_id": 134461, "user_id": 194, "id": 913863, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}, {"karma": 1, "comment_id": 915440, "bug_id": 1688543, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:13", "update_id": 134265, "user_id": 1667, "id": 915440, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}, {"karma": 1, "comment_id": 915442, "bug_id": 1688543, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:51", "update_id": 134265, "user_id": 1667, "id": 915442, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}, {"karma": 0, "comment_id": 968879, "bug_id": 1688543, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2019-07-04 23:39:54", "update_id": 142273, "user_id": 124, "id": 968879, "testcase_feedback": [], "user": {"name": "filiperosset", "email": "rosset.filipe@gmail.com", "id": 124, "avatar": "https://seccdn.libravatar.org/avatar/f4394b8fb4c9a99c4b534dc724912fe75a5b87fe15048985ece8388c2441d0ca?s=24&d=retro", "openid": "filiperosset.id.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "l10n"}, {"name": "cvsl10n"}, {"name": "fedora-br"}, {"name": "trust admins"}]}}}]}, {"bug_id": 1688550, "title": "CVE-2019-9636 python35: python: Information Disclosure due to urlsplit improper NFKC normalization [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 1, "comment_id": 915440, "bug_id": 1688550, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:13", "update_id": 134265, "user_id": 1667, "id": 915440, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}, {"karma": 1, "comment_id": 915442, "bug_id": 1688550, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me!\nCVE-2018-1060, -1061, -2019-5010 aren't easy to reproduce. I checked that the patches are in, not necessarily that the issues are solved.", "timestamp": "2019-03-26 10:21:51", "update_id": 134265, "user_id": 1667, "id": 915442, "testcase_feedback": [], "user": {"name": "pviktori", "email": "pviktori@redhat.com", "id": 1667, "avatar": "https://seccdn.libravatar.org/avatar/46b4c9bf5302597e3a24dd27829c2ae9315b1f1ecdacf761f6b9ff14777f7b91?s=24&d=retro", "openid": "pviktori.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "python-sig"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "modularity-wg"}, {"name": "gitfreeipa-docs"}, {"name": "python-packagers-sig"}, {"name": "gitpython-pytest-beakerlib"}, {"name": "gitpython-pytest-sourceorder"}, {"name": "pypi-builds"}, {"name": "gitpython-pytest-multihost"}]}}}]}], "updateid": "FEDORA-2019-6e1938a3c5", "karma": 1, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}