{"update": {"autokarma": false, "autotime": false, "stable_karma": 3, "stable_days": 3, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "Security fix for CVE-2021-20291", "type": "security", "status": "stable", "request": null, "severity": "medium", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": null, "close_bugs": false, "date_submitted": "2021-04-15 19:46:56", "date_modified": "2021-04-15 19:48:45", "date_approved": null, "date_testing": "2021-04-16 16:24:44", "date_stable": "2021-05-04 01:00:35", "alias": "FEDORA-2021-a3703b9dc8", "test_gating_status": "passed", "from_tag": null, "date_pushed": "2021-05-04 01:00:35", "meets_testing_requirements": true, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2021-a3703b9dc8", "title": "skopeo-1.2.3-1.fc34", "version_hash": "32dadfad28db41082c191d68c2e950270d562098", "release": {"name": "F34", "long_name": "Fedora 34", "version": "34", "id_prefix": "FEDORA", "branch": "f34", "dist_tag": "f34", "stable_tag": "f34-updates", "testing_tag": "f34-updates-testing", "candidate_tag": "f34-updates-candidate", "pending_signing_tag": "f34-signing-pending", "pending_testing_tag": "f34-updates-testing-pending", "pending_stable_tag": "f34-updates-pending", "override_tag": "f34-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": false, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "lsm5", "email": "lsm5@redhat.com", "id": 228, "avatar": "https://seccdn.libravatar.org/avatar/05bd0d0810e225c716eba3290a5596c557d1ea3e4e2b0cf0de8e62a925927b5c?s=24&d=retro", "openid": "lsm5.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "container-sig"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by lsm5. ", "timestamp": "2021-04-15 19:46:56", "update_id": 299424, "user_id": 91, "id": 1987291, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'failed'.", "timestamp": "2021-04-15 19:46:57", "update_id": 299424, "user_id": 91, "id": 1987292, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'waiting'.", "timestamp": "2021-04-15 19:46:57", "update_id": 299424, "user_id": 91, "id": 1987293, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "lsm5 edited this update.", "timestamp": "2021-04-15 19:48:44", "update_id": 299424, "user_id": 91, "id": 1987297, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'failed'.", "timestamp": "2021-04-15 19:48:45", "update_id": 299424, "user_id": 91, "id": 1987298, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2021-04-16 16:25:30", "update_id": 299424, "user_id": 91, "id": 1988503, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'passed'.", "timestamp": "2021-04-16 16:30:33", "update_id": 299424, "user_id": 91, "id": 1988538, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update can be pushed to stable now if the maintainer wishes", "timestamp": "2021-04-19 16:27:04", "update_id": 299424, "user_id": 91, "id": 1991745, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'ignored'.", "timestamp": "2021-04-30 15:02:58", "update_id": 299424, "user_id": 91, "id": 2007981, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'passed'.", "timestamp": "2021-04-30 16:02:54", "update_id": 299424, "user_id": 91, "id": 2008148, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by rhcontainerbot. ", "timestamp": "2021-05-03 14:53:47", "update_id": 299424, "user_id": 91, "id": 2011715, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2021-05-04 01:01:22", "update_id": 299424, "user_id": 91, "id": 2012622, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "skopeo-1.2.3-1.fc34", "signed": true, "release_id": 47, "type": "rpm", "epoch": 1}], "bugs": [{"bug_id": 1939485, "title": "CVE-2021-20291 containers/storage: DoS via malicious image", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 1987533, "bug_id": 1939485, "comment": {"karma": 1, "karma_critpath": 0, "text": "LGTM. Passes all system tests once `nmap-ncat` is installed.", "timestamp": "2021-04-15 21:20:42", "update_id": 299134, "user_id": 3407, "id": 1987533, "testcase_feedback": [], "user": {"name": "santiago", "email": "santiago@redhat.com", "id": 3407, "avatar": "https://seccdn.libravatar.org/avatar/ea76e06d92bea441997ae5b01983859fcee775de243c13c2efb1731b6f444328?s=24&d=retro", "openid": "santiago.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "container-sig"}, {"name": "gitrpmgrill"}, {"name": "trust admins"}]}}}, {"karma": 1, "comment_id": 1987586, "bug_id": 1939485, "comment": {"karma": 1, "karma_critpath": 0, "text": "LGTM passes gating tests", "timestamp": "2021-04-15 21:38:10", "update_id": 299134, "user_id": 3753, "id": 1987586, "testcase_feedback": [], "user": {"name": "tomsweeneyredhat", "email": "tsweeney@redhat.com", "id": 3753, "avatar": "https://seccdn.libravatar.org/avatar/81515e3e34f17b21a781f8126bcb7fc6cf427102bab5b12e7ffe30ee1eef5a86?s=24&d=retro", "openid": "tomsweeneyredhat.id.fedoraproject.org", "groups": [{"name": "packager"}]}}}, {"karma": 1, "comment_id": 1988605, "bug_id": 1939485, "comment": {"karma": 1, "karma_critpath": 0, "text": "LGTM, passed baseline tests", "timestamp": "2021-04-16 18:18:39", "update_id": 299131, "user_id": 3753, "id": 1988605, "testcase_feedback": [], "user": {"name": "tomsweeneyredhat", "email": "tsweeney@redhat.com", "id": 3753, "avatar": "https://seccdn.libravatar.org/avatar/81515e3e34f17b21a781f8126bcb7fc6cf427102bab5b12e7ffe30ee1eef5a86?s=24&d=retro", "openid": "tomsweeneyredhat.id.fedoraproject.org", "groups": [{"name": "packager"}]}}}, {"karma": 0, "comment_id": 1996819, "bug_id": 1939485, "comment": {"karma": 1, "karma_critpath": 0, "text": "LGTM. A few test flakes, all of them related to `apk`. Probably a server outage somewhere.", "timestamp": "2021-04-22 20:03:34", "update_id": 300046, "user_id": 3407, "id": 1996819, "testcase_feedback": [], "user": {"name": "santiago", "email": "santiago@redhat.com", "id": 3407, "avatar": "https://seccdn.libravatar.org/avatar/ea76e06d92bea441997ae5b01983859fcee775de243c13c2efb1731b6f444328?s=24&d=retro", "openid": "santiago.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "container-sig"}, {"name": "gitrpmgrill"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 1987734, "bug_id": 1939485, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2021-04-16 01:38:24", "update_id": 299131, "user_id": 5881, "id": 1987734, "testcase_feedback": [], "user": {"name": "geraldosimiao", "email": "geraldo.simiao.kutz@gmail.com", "id": 5881, "avatar": "https://seccdn.libravatar.org/avatar/03fa5b58e8ac78544bf41ad8ecf9ee1920f2ebedb86542c2f4cdf7ef15813168?s=24&d=retro", "openid": "geraldosimiao.id.fedoraproject.org", "groups": [{"name": "qa"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "fedora-br"}, {"name": "advocates"}, {"name": "respins-sig"}]}}}, {"karma": 0, "comment_id": 1997246, "bug_id": 1939485, "comment": {"karma": 1, "karma_critpath": 0, "text": "They are all working for me.", "timestamp": "2021-04-23 10:03:55", "update_id": 299589, "user_id": 1643, "id": 1997246, "testcase_feedback": [], "user": {"name": "dwalsh", "email": "dwalsh@redhat.com", "id": 1643, "avatar": "https://seccdn.libravatar.org/avatar/1c5e583ab8b950eb480915ed4b094dd68fe4e57e7f46a031473ae383bf4d5495?s=24&d=retro", "openid": "dwalsh.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "summer-coding"}, {"name": "container-sig"}, {"name": "cla_redhat"}, {"name": "hgsetroubleshoot"}, {"name": "gitsetroubleshoot"}, {"name": "cvspolicycoreutils"}, {"name": "gitsystem-config-selinux"}, {"name": "gitselinux-policy"}]}}}, {"karma": 0, "comment_id": 1997247, "bug_id": 1939485, "comment": {"karma": 1, "karma_critpath": 0, "text": "They are all working for me.", "timestamp": "2021-04-23 10:04:40", "update_id": 300046, "user_id": 1643, "id": 1997247, "testcase_feedback": [], "user": {"name": "dwalsh", "email": "dwalsh@redhat.com", "id": 1643, "avatar": "https://seccdn.libravatar.org/avatar/1c5e583ab8b950eb480915ed4b094dd68fe4e57e7f46a031473ae383bf4d5495?s=24&d=retro", "openid": "dwalsh.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "summer-coding"}, {"name": "container-sig"}, {"name": "cla_redhat"}, {"name": "hgsetroubleshoot"}, {"name": "gitsetroubleshoot"}, {"name": "cvspolicycoreutils"}, {"name": "gitsystem-config-selinux"}, {"name": "gitselinux-policy"}]}}}, {"karma": 0, "comment_id": 1997201, "bug_id": 1939485, "comment": {"karma": -1, "karma_critpath": 0, "text": "I'm having the same issue with this podman version like I have with every  3.1.* version: Rootless podman doesn't work at all anymore:\n\nA simple command, like `podman ps` doesn't work - it uses plenty of CPU resources indefinitely and doesn't return a result :(\n\n`sudo podman ps` works fine. There's no container running on the system.\n\nAfter downgrading `podman` and `podman-plugins` back to 3.0.1 it works fine again.", "timestamp": "2021-04-23 09:32:18", "update_id": 300046, "user_id": 6356, "id": 1997201, "testcase_feedback": [], "user": {"name": "faultline", "email": "christian.t.solomon@protonmail.com", "id": 6356, "avatar": "https://seccdn.libravatar.org/avatar/4e5ff62a0b1f11da67fb22e6be3afe723e52820afe57b0547d917c64c2e348e6?s=24&d=retro", "openid": "faultline.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 1997366, "bug_id": 1939485, "comment": {"karma": 1, "karma_critpath": 0, "text": "Ran the podman integration tests after installing these.  Working fine.", "timestamp": "2021-04-23 13:25:29", "update_id": 299589, "user_id": 4727, "id": 1997366, "testcase_feedback": [], "user": {"name": "cevich", "email": "cevich@redhat.com", "id": 4727, "avatar": "https://seccdn.libravatar.org/avatar/8fb075bfec22aee1e2ae03437b2eec711d82de524bc1fb225303f9646150c9c1?s=24&d=retro", "openid": "cevich.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "cla_redhat"}]}}}, {"karma": 0, "comment_id": 1997368, "bug_id": 1939485, "comment": {"karma": 0, "karma_critpath": 0, "text": "Hit some podman integration test failures with these.  Mostly networking-related tests.  Running against, and investigating.", "timestamp": "2021-04-23 13:26:35", "update_id": 300046, "user_id": 4727, "id": 1997368, "testcase_feedback": [], "user": {"name": "cevich", "email": "cevich@redhat.com", "id": 4727, "avatar": "https://seccdn.libravatar.org/avatar/8fb075bfec22aee1e2ae03437b2eec711d82de524bc1fb225303f9646150c9c1?s=24&d=retro", "openid": "cevich.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "cla_redhat"}]}}}, {"karma": 0, "comment_id": 1997643, "bug_id": 1939485, "comment": {"karma": 1, "karma_critpath": 0, "text": "I was able to reproduce the same dnsname plugin failures on master w/o these package updates, therefore they must not be involved.", "timestamp": "2021-04-23 15:11:34", "update_id": 300046, "user_id": 4727, "id": 1997643, "testcase_feedback": [], "user": {"name": "cevich", "email": "cevich@redhat.com", "id": 4727, "avatar": "https://seccdn.libravatar.org/avatar/8fb075bfec22aee1e2ae03437b2eec711d82de524bc1fb225303f9646150c9c1?s=24&d=retro", "openid": "cevich.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "cla_redhat"}]}}}]}, {"bug_id": 1947289, "title": "CVE-2021-20291 skopeo: containers/storage: DoS via malicious image [fedora-all]", "security": true, "parent": false, "feedback": []}], "updateid": "FEDORA-2021-a3703b9dc8", "karma": 0, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}