{"update": {"autokarma": true, "autotime": true, "stable_karma": 1, "stable_days": 7, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "This is an update fixing CVE-2019-15846.\n", "type": "security", "status": "stable", "request": null, "severity": "urgent", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": null, "close_bugs": true, "date_submitted": "2019-09-06 15:58:12", "date_modified": "2019-09-06 15:59:25", "date_approved": null, "date_testing": null, "date_stable": "2019-09-08 03:08:52", "alias": "FEDORA-2019-ae361e20c2", "test_gating_status": "ignored", "from_tag": null, "date_pushed": "2019-09-08 03:08:52", "meets_testing_requirements": true, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2019-ae361e20c2", "title": "exim-4.92.2-1.fc29", "version_hash": "56c1f39988ae9e382336d8052cb8f76295f94682", "release": {"name": "F29", "long_name": "Fedora 29", "version": "29", "id_prefix": "FEDORA", "branch": "f29", "dist_tag": "f29", "stable_tag": "f29-updates", "testing_tag": "f29-updates-testing", "candidate_tag": "f29-updates-candidate", "pending_signing_tag": "f29-signing-pending", "pending_testing_tag": "f29-updates-testing-pending", "pending_stable_tag": "f29-updates-pending", "override_tag": "f29-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": false, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "jskarvad", "email": "jskarvad@redhat.com", "id": 591, "avatar": "https://seccdn.libravatar.org/avatar/7c9d6d293609804443f5cef6a60500445597c5cb67e0e02aef22552648ed4d20?s=24&d=retro", "openid": "jskarvad.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "3d-printing-sig"}, {"name": "gittuned"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by jskarvad. ", "timestamp": "2019-09-06 15:58:12", "update_id": 152190, "user_id": 91, "id": 1029777, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'waiting'.", "timestamp": "2019-09-06 15:58:12", "update_id": 152190, "user_id": 91, "id": 1029778, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'ignored'.", "timestamp": "2019-09-06 15:58:14", "update_id": 152190, "user_id": 91, "id": 1029779, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "jskarvad edited this update.", "timestamp": "2019-09-06 15:59:25", "update_id": 152190, "user_id": 91, "id": 1029780, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "tested on Fc29 .. works in principle. As no exploit is available yet, mitigations can't be verified.", "timestamp": "2019-09-06 16:22:34", "update_id": 152190, "user_id": 1579, "id": 1029828, "bug_feedback": [{"karma": 0, "comment_id": 1029828, "bug_id": 1748397, "bug": {"bug_id": 1748397, "title": "CVE-2019-15846 exim: out-of-bounds access in string_interpret_escape() leading to buffer overflow in the SMTP delivery process", "security": true, "parent": true}}, {"karma": 0, "comment_id": 1029828, "bug_id": 1749761, "bug": {"bug_id": 1749761, "title": "CVE-2019-15846 exim: out-of-bounds access in string_interpret_escape() leading to buffer overflow in the SMTP delivery process [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "rdtcustomercare", "email": "customercare@resellerdesktop.de", "id": 1579, "avatar": "https://seccdn.libravatar.org/avatar/b08adddfca04d990bbbe10aafb31bfe1ecdc600736da65574e208991c9090e35?s=24&d=retro", "openid": "rdtcustomercare.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2019-09-06 16:22:34", "update_id": 152190, "user_id": 91, "id": 1029829, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2019-09-08 03:09:19", "update_id": 152190, "user_id": 91, "id": 1030943, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "exim-4.92.2-1.fc29", "signed": true, "release_id": 23, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 1748397, "title": "CVE-2019-15846 exim: out-of-bounds access in string_interpret_escape() leading to buffer overflow in the SMTP delivery process", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 1029828, "bug_id": 1748397, "comment": {"karma": 1, "karma_critpath": 0, "text": "tested on Fc29 .. works in principle. As no exploit is available yet, mitigations can't be verified.", "timestamp": "2019-09-06 16:22:34", "update_id": 152190, "user_id": 1579, "id": 1029828, "testcase_feedback": [], "user": {"name": "rdtcustomercare", "email": "customercare@resellerdesktop.de", "id": 1579, "avatar": "https://seccdn.libravatar.org/avatar/b08adddfca04d990bbbe10aafb31bfe1ecdc600736da65574e208991c9090e35?s=24&d=retro", "openid": "rdtcustomercare.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}, {"karma": 0, "comment_id": 1029840, "bug_id": 1748397, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2019-09-06 16:35:17", "update_id": 152192, "user_id": 3703, "id": 1029840, "testcase_feedback": [], "user": {"name": "markec", "email": "marko.bevc@gmail.com", "id": 3703, "avatar": "https://seccdn.libravatar.org/avatar/2a3640b3b2df97a062aff29758dd6a2ce98adba2cdd4da3fceb85df19b25200c?s=24&d=retro", "openid": "markec.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 1029858, "bug_id": 1748397, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2019-09-06 16:41:57", "update_id": 152191, "user_id": 3703, "id": 1029858, "testcase_feedback": [], "user": {"name": "markec", "email": "marko.bevc@gmail.com", "id": 3703, "avatar": "https://seccdn.libravatar.org/avatar/2a3640b3b2df97a062aff29758dd6a2ce98adba2cdd4da3fceb85df19b25200c?s=24&d=retro", "openid": "markec.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 1029860, "bug_id": 1748397, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2019-09-06 16:43:01", "update_id": 152186, "user_id": 3703, "id": 1029860, "testcase_feedback": [], "user": {"name": "markec", "email": "marko.bevc@gmail.com", "id": 3703, "avatar": "https://seccdn.libravatar.org/avatar/2a3640b3b2df97a062aff29758dd6a2ce98adba2cdd4da3fceb85df19b25200c?s=24&d=retro", "openid": "markec.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 1029862, "bug_id": 1748397, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2019-09-06 16:43:19", "update_id": 152188, "user_id": 3703, "id": 1029862, "testcase_feedback": [], "user": {"name": "markec", "email": "marko.bevc@gmail.com", "id": 3703, "avatar": "https://seccdn.libravatar.org/avatar/2a3640b3b2df97a062aff29758dd6a2ce98adba2cdd4da3fceb85df19b25200c?s=24&d=retro", "openid": "markec.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 1030222, "bug_id": 1748397, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2019-09-06 20:36:33", "update_id": 152188, "user_id": 5107, "id": 1030222, "testcase_feedback": [], "user": {"name": "mrc0mmand", "email": "frantisek@sumsal.cz", "id": 5107, "avatar": "https://seccdn.libravatar.org/avatar/271c405d14acf3218f1dfad1cb3b2b3fcbb433399a58a91b11d565d62c1e63c4?s=24&d=retro", "openid": "mrc0mmand.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "wikiedit"}, {"name": "ocp-cico-systemd"}]}}}, {"karma": 0, "comment_id": 1030679, "bug_id": 1748397, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2019-09-07 16:23:54", "update_id": 152192, "user_id": 5143, "id": 1030679, "testcase_feedback": [], "user": {"name": "peteroverethernet", "email": "ps@pos-ecommerce.net", "id": 5143, "avatar": "https://seccdn.libravatar.org/avatar/8aee9a25635cd980f573cf295c144d6625d991fbe2b5ab6f29dc8001fe97e326?s=24&d=retro", "openid": "peteroverethernet.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}, {"karma": 0, "comment_id": 1030680, "bug_id": 1748397, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2019-09-07 16:24:52", "update_id": 152191, "user_id": 5143, "id": 1030680, "testcase_feedback": [], "user": {"name": "peteroverethernet", "email": "ps@pos-ecommerce.net", "id": 5143, "avatar": "https://seccdn.libravatar.org/avatar/8aee9a25635cd980f573cf295c144d6625d991fbe2b5ab6f29dc8001fe97e326?s=24&d=retro", "openid": "peteroverethernet.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}, {"karma": 0, "comment_id": 1030884, "bug_id": 1748397, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works as expected. Security vulnerability fix could not be verified because of missing exploit sample.9", "timestamp": "2019-09-08 00:49:14", "update_id": 152192, "user_id": 5144, "id": 1030884, "testcase_feedback": [], "user": {"name": "mglobal", "email": "mmuellerpos@t-online.de", "id": 5144, "avatar": "https://seccdn.libravatar.org/avatar/9c9726835f465fad3bb899b4e8e3178ff1790d495550cf663382925ab3f68ea0?s=24&d=retro", "openid": "mglobal.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 1030885, "bug_id": 1748397, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works as expected. Security vulnerability fix could not be verified because of missing exploit sample.9\n\n", "timestamp": "2019-09-08 00:50:45", "update_id": 152191, "user_id": 5144, "id": 1030885, "testcase_feedback": [], "user": {"name": "mglobal", "email": "mmuellerpos@t-online.de", "id": 5144, "avatar": "https://seccdn.libravatar.org/avatar/9c9726835f465fad3bb899b4e8e3178ff1790d495550cf663382925ab3f68ea0?s=24&d=retro", "openid": "mglobal.id.fedoraproject.org", "groups": []}}}]}, {"bug_id": 1749761, "title": "CVE-2019-15846 exim: out-of-bounds access in string_interpret_escape() leading to buffer overflow in the SMTP delivery process [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 1029828, "bug_id": 1749761, "comment": {"karma": 1, "karma_critpath": 0, "text": "tested on Fc29 .. works in principle. As no exploit is available yet, mitigations can't be verified.", "timestamp": "2019-09-06 16:22:34", "update_id": 152190, "user_id": 1579, "id": 1029828, "testcase_feedback": [], "user": {"name": "rdtcustomercare", "email": "customercare@resellerdesktop.de", "id": 1579, "avatar": "https://seccdn.libravatar.org/avatar/b08adddfca04d990bbbe10aafb31bfe1ecdc600736da65574e208991c9090e35?s=24&d=retro", "openid": "rdtcustomercare.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}, {"karma": 0, "comment_id": 1029860, "bug_id": 1749761, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2019-09-06 16:43:01", "update_id": 152186, "user_id": 3703, "id": 1029860, "testcase_feedback": [], "user": {"name": "markec", "email": "marko.bevc@gmail.com", "id": 3703, "avatar": "https://seccdn.libravatar.org/avatar/2a3640b3b2df97a062aff29758dd6a2ce98adba2cdd4da3fceb85df19b25200c?s=24&d=retro", "openid": "markec.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 1029862, "bug_id": 1749761, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2019-09-06 16:43:19", "update_id": 152188, "user_id": 3703, "id": 1029862, "testcase_feedback": [], "user": {"name": "markec", "email": "marko.bevc@gmail.com", "id": 3703, "avatar": "https://seccdn.libravatar.org/avatar/2a3640b3b2df97a062aff29758dd6a2ce98adba2cdd4da3fceb85df19b25200c?s=24&d=retro", "openid": "markec.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 1030222, "bug_id": 1749761, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2019-09-06 20:36:33", "update_id": 152188, "user_id": 5107, "id": 1030222, "testcase_feedback": [], "user": {"name": "mrc0mmand", "email": "frantisek@sumsal.cz", "id": 5107, "avatar": "https://seccdn.libravatar.org/avatar/271c405d14acf3218f1dfad1cb3b2b3fcbb433399a58a91b11d565d62c1e63c4?s=24&d=retro", "openid": "mrc0mmand.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "wikiedit"}, {"name": "ocp-cico-systemd"}]}}}]}], "updateid": "FEDORA-2019-ae361e20c2", "karma": 1, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}