{"update": {"autokarma": true, "autotime": true, "stable_karma": 1, "stable_days": 14, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "Rebuild for ntfs-3g CVE\n", "type": "security", "status": "stable", "request": null, "severity": "medium", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": true, "critpath_groups": null, "close_bugs": true, "date_submitted": "2022-06-08 09:42:20", "date_modified": "2022-06-17 06:36:14", "date_approved": null, "date_testing": "2022-06-09 16:16:25", "date_stable": "2022-06-18 00:37:15", "alias": "FEDORA-2022-13bc8c91b0", "test_gating_status": "passed", "from_tag": null, "date_pushed": "2022-06-18 00:37:15", "meets_testing_requirements": true, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2022-13bc8c91b0", "title": "ntfs-3g-system-compression-1.0-9.fc36", "version_hash": "b7dadd575c0f1a99f9975ca37568f8c9d1c55e95", "release": {"name": "F36", "long_name": "Fedora 36", "version": "36", "id_prefix": "FEDORA", "branch": "f36", "dist_tag": "f36", "stable_tag": "f36-updates", "testing_tag": "f36-updates-testing", "candidate_tag": "f36-updates-candidate", "pending_signing_tag": "f36-signing-pending", "pending_testing_tag": "f36-updates-testing-pending", "pending_stable_tag": "f36-updates-pending", "override_tag": "f36-override", "mail_template": "fedora_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": false, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": "2023-05-16", "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "rjones", "email": "rjones@redhat.com", "id": 141, "avatar": "https://seccdn.libravatar.org/avatar/6bc2ebbc861c9a4776b76939247a95d742d150e3feb2878a3b1ffd4d950329db?s=24&d=retro", "openid": "rjones.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "virtmaint-sig"}, {"name": "giterlang"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "gitvirt-v2v"}, {"name": "gitvirt-tools"}, {"name": "signed_fpca"}, {"name": "ipausers"}, {"name": "gitcdupgrader"}, {"name": "gitfedora-ocaml"}, {"name": "fedora-contributor"}, {"name": "hosted-content"}, {"name": "gitautobuildrequires"}, {"name": "risc-v"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by rjones. ", "timestamp": "2022-06-08 09:42:21", "update_id": 413947, "user_id": 91, "id": 2558630, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'waiting'.", "timestamp": "2022-06-08 09:42:23", "update_id": 413947, "user_id": 91, "id": 2558633, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'passed'.", "timestamp": "2022-06-08 12:26:59", "update_id": 413947, "user_id": 91, "id": 2558730, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8f775872c9 so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:08:17", "update_id": 413947, "user_id": 411, "id": 2568807, "bug_feedback": [{"karma": 0, "comment_id": 2568807, "bug_id": 2093310, "bug": {"bug_id": 2093310, "title": "CVE-2022-30783 ntfs-3g-system-compression: ntfs-3g: invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093319, "bug": {"bug_id": 2093319, "title": "CVE-2022-30784 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093325, "bug": {"bug_id": 2093325, "title": "CVE-2022-30785 ntfs-3g-system-compression: ntfs-3g: a file handle created in fuse_lib_opendir, and later used in fuse_lib_readdir, enables arbitrary memory read and write operations [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093331, "bug": {"bug_id": 2093331, "title": "CVE-2022-30786 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093338, "bug": {"bug_id": 2093338, "title": "CVE-2022-30787 ntfs-3g-system-compression: ntfs-3g: integer underflow in fuse_lib_readdir enables arbitrary memory read operations [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093345, "bug": {"bug_id": 2093345, "title": "CVE-2022-30788 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_mft_rec_alloc [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093352, "bug": {"bug_id": 2093352, "title": "CVE-2022-30789 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_check_log_client_array [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093361, "bug": {"bug_id": 2093361, "title": "CVE-2021-46790 ntfs-3g-system-compression: ntfs-3g: heap-based buffer overflow in ntfsck [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}, {"karma": 0, "karma_critpath": 0, "text": "Possibly, but I've no idea how.", "timestamp": "2022-06-09 09:11:47", "update_id": 413947, "user_id": 141, "id": 2568813, "bug_feedback": [{"karma": 0, "comment_id": 2568813, "bug_id": 2093310, "bug": {"bug_id": 2093310, "title": "CVE-2022-30783 ntfs-3g-system-compression: ntfs-3g: invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093319, "bug": {"bug_id": 2093319, "title": "CVE-2022-30784 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093325, "bug": {"bug_id": 2093325, "title": "CVE-2022-30785 ntfs-3g-system-compression: ntfs-3g: a file handle created in fuse_lib_opendir, and later used in fuse_lib_readdir, enables arbitrary memory read and write operations [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093331, "bug": {"bug_id": 2093331, "title": "CVE-2022-30786 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093338, "bug": {"bug_id": 2093338, "title": "CVE-2022-30787 ntfs-3g-system-compression: ntfs-3g: integer underflow in fuse_lib_readdir enables arbitrary memory read operations [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093345, "bug": {"bug_id": 2093345, "title": "CVE-2022-30788 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_mft_rec_alloc [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093352, "bug": {"bug_id": 2093352, "title": "CVE-2022-30789 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_check_log_client_array [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093361, "bug": {"bug_id": 2093361, "title": "CVE-2021-46790 ntfs-3g-system-compression: ntfs-3g: heap-based buffer overflow in ntfsck [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "rjones", "email": "rjones@redhat.com", "id": 141, "avatar": "https://seccdn.libravatar.org/avatar/6bc2ebbc861c9a4776b76939247a95d742d150e3feb2878a3b1ffd4d950329db?s=24&d=retro", "openid": "rjones.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "virtmaint-sig"}, {"name": "giterlang"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "gitvirt-v2v"}, {"name": "gitvirt-tools"}, {"name": "signed_fpca"}, {"name": "ipausers"}, {"name": "gitcdupgrader"}, {"name": "gitfedora-ocaml"}, {"name": "fedora-contributor"}, {"name": "hosted-content"}, {"name": "gitautobuildrequires"}, {"name": "risc-v"}]}}, {"karma": 0, "karma_critpath": 0, "text": "Just obsolete this update and then edit the other one and add `ntfs-3g-system-compression-1.0-9.fc36` into it.", "timestamp": "2022-06-09 09:23:08", "update_id": 413947, "user_id": 411, "id": 2568831, "bug_feedback": [{"karma": 0, "comment_id": 2568831, "bug_id": 2093310, "bug": {"bug_id": 2093310, "title": "CVE-2022-30783 ntfs-3g-system-compression: ntfs-3g: invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093319, "bug": {"bug_id": 2093319, "title": "CVE-2022-30784 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093325, "bug": {"bug_id": 2093325, "title": "CVE-2022-30785 ntfs-3g-system-compression: ntfs-3g: a file handle created in fuse_lib_opendir, and later used in fuse_lib_readdir, enables arbitrary memory read and write operations [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093331, "bug": {"bug_id": 2093331, "title": "CVE-2022-30786 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093338, "bug": {"bug_id": 2093338, "title": "CVE-2022-30787 ntfs-3g-system-compression: ntfs-3g: integer underflow in fuse_lib_readdir enables arbitrary memory read operations [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093345, "bug": {"bug_id": 2093345, "title": "CVE-2022-30788 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_mft_rec_alloc [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093352, "bug": {"bug_id": 2093352, "title": "CVE-2022-30789 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_check_log_client_array [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093361, "bug": {"bug_id": 2093361, "title": "CVE-2021-46790 ntfs-3g-system-compression: ntfs-3g: heap-based buffer overflow in ntfsck [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}, {"karma": 0, "karma_critpath": 0, "text": "FEDORA-2022-13bc8c91b0 ejected from the push because \"Cannot find relevant tag for ntfs-3g-system-compression-1.0-9.fc36.  None of ['f36-updates-testing', 'f36-updates-testing-pending'] are in ['epel9-next-testing-candidate', 'epel7-testing-candidate', 'dist-5E-epel-testing-candidate', 'f27-modular-updates-candidate', 'eln-updates-candidate', 'f30-modular-updates-candidate', 'f28-modular-updates-candidate', 'f28-container-updates-candidate', 'f30-container-updates-candidate', 'epel8-testing-candidate', 'f30-flatpak-updates-candidate', 'f36-updates-candidate', 'f32-modular-updates-candidate', 'f29-modular-updates-candidate', 'f29-container-updates-candidate', 'f29-flatpak-updates-candidate', 'f22-updates-candidate', 'f21-updates-candidate', 'f25-updates-candidate', 'f24-updates-candidate', 'f23-updates-candidate', 'f26-updates-candidate', 'f31-modular-updates-candidate', 'dist-6E-epel-testing-candidate', 'f32-flatpak-updates-candidate', 'f36-container-updates-candidate', 'f37-updates-candidate', 'f27-updates-candidate', 'f28-updates-candidate', 'f30-updates-candidate', 'f29-updates-candidate', 'el8-modular-updates-candidate', 'f32-updates-candidate', 'epel9-testing-candidate', 'f37-container-updates-candidate', 'f34-updates-candidate', 'f31-updates-candidate', 'f31-container-updates-candidate', 'f31-flatpak-updates-candidate', 'f34-modular-updates-candidate', 'f32-container-updates-candidate', 'epel8-next-testing-candidate', 'f35-updates-candidate', 'f35-modular-updates-candidate', 'f33-updates-candidate', 'f34-container-updates-candidate', 'f33-modular-updates-candidate', 'f33-container-updates-candidate', 'f33-flatpak-updates-candidate', 'f35-container-updates-candidate', 'f36-modular-updates-candidate', 'f35-flatpak-updates-candidate', 'f36-flatpak-updates-candidate', 'f34-flatpak-updates-candidate'].\"", "timestamp": "2022-06-09 11:26:04", "update_id": 413947, "user_id": 91, "id": 2568933, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by humaton. ", "timestamp": "2022-06-09 14:08:56", "update_id": 413947, "user_id": 91, "id": 2569229, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "FEDORA-2022-13bc8c91b0 ejected from the push because \"Cannot find relevant tag for ntfs-3g-system-compression-1.0-9.fc36.  None of ['f36-updates-testing', 'f36-updates-testing-pending'] are in ['epel9-next-testing-candidate', 'epel7-testing-candidate', 'dist-5E-epel-testing-candidate', 'f27-modular-updates-candidate', 'eln-updates-candidate', 'f30-modular-updates-candidate', 'f28-modular-updates-candidate', 'f28-container-updates-candidate', 'f30-container-updates-candidate', 'epel8-testing-candidate', 'f30-flatpak-updates-candidate', 'f36-updates-candidate', 'f32-modular-updates-candidate', 'f29-modular-updates-candidate', 'f29-container-updates-candidate', 'f29-flatpak-updates-candidate', 'f22-updates-candidate', 'f21-updates-candidate', 'f25-updates-candidate', 'f24-updates-candidate', 'f23-updates-candidate', 'f26-updates-candidate', 'f31-modular-updates-candidate', 'dist-6E-epel-testing-candidate', 'f32-flatpak-updates-candidate', 'f36-container-updates-candidate', 'f37-updates-candidate', 'f27-updates-candidate', 'f28-updates-candidate', 'f30-updates-candidate', 'f29-updates-candidate', 'el8-modular-updates-candidate', 'f32-updates-candidate', 'epel9-testing-candidate', 'f37-container-updates-candidate', 'f34-updates-candidate', 'f31-updates-candidate', 'f31-container-updates-candidate', 'f31-flatpak-updates-candidate', 'f34-modular-updates-candidate', 'f32-container-updates-candidate', 'epel8-next-testing-candidate', 'f35-updates-candidate', 'f35-modular-updates-candidate', 'f33-updates-candidate', 'f34-container-updates-candidate', 'f33-modular-updates-candidate', 'f33-container-updates-candidate', 'f33-flatpak-updates-candidate', 'f35-container-updates-candidate', 'f36-modular-updates-candidate', 'f35-flatpak-updates-candidate', 'f36-flatpak-updates-candidate', 'f34-flatpak-updates-candidate'].\"", "timestamp": "2022-06-09 14:57:43", "update_id": 413947, "user_id": 91, "id": 2569359, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by humaton. ", "timestamp": "2022-06-09 15:18:24", "update_id": 413947, "user_id": 91, "id": 2569409, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "FEDORA-2022-13bc8c91b0 ejected from the push because \"Cannot find relevant tag for ntfs-3g-system-compression-1.0-9.fc36.  None of ['f36-updates-testing', 'f36-updates-testing-pending'] are in ['epel9-next-testing-candidate', 'epel7-testing-candidate', 'dist-5E-epel-testing-candidate', 'f27-modular-updates-candidate', 'eln-updates-candidate', 'f30-modular-updates-candidate', 'f28-modular-updates-candidate', 'f28-container-updates-candidate', 'f30-container-updates-candidate', 'epel8-testing-candidate', 'f30-flatpak-updates-candidate', 'f36-updates-candidate', 'f32-modular-updates-candidate', 'f29-modular-updates-candidate', 'f29-container-updates-candidate', 'f29-flatpak-updates-candidate', 'f22-updates-candidate', 'f21-updates-candidate', 'f25-updates-candidate', 'f24-updates-candidate', 'f23-updates-candidate', 'f26-updates-candidate', 'f31-modular-updates-candidate', 'dist-6E-epel-testing-candidate', 'f32-flatpak-updates-candidate', 'f36-container-updates-candidate', 'f37-updates-candidate', 'f27-updates-candidate', 'f28-updates-candidate', 'f30-updates-candidate', 'f29-updates-candidate', 'el8-modular-updates-candidate', 'f32-updates-candidate', 'epel9-testing-candidate', 'f37-container-updates-candidate', 'f34-updates-candidate', 'f31-updates-candidate', 'f31-container-updates-candidate', 'f31-flatpak-updates-candidate', 'f34-modular-updates-candidate', 'f32-container-updates-candidate', 'epel8-next-testing-candidate', 'f35-updates-candidate', 'f35-modular-updates-candidate', 'f33-updates-candidate', 'f34-container-updates-candidate', 'f33-modular-updates-candidate', 'f33-container-updates-candidate', 'f33-flatpak-updates-candidate', 'f35-container-updates-candidate', 'f36-modular-updates-candidate', 'f35-flatpak-updates-candidate', 'f36-flatpak-updates-candidate', 'f34-flatpak-updates-candidate'].\"", "timestamp": "2022-06-09 15:21:42", "update_id": 413947, "user_id": 91, "id": 2569417, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by humaton. ", "timestamp": "2022-06-09 15:49:56", "update_id": 413947, "user_id": 91, "id": 2569461, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2022-06-09 16:17:23", "update_id": 413947, "user_id": 91, "id": 2569492, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 06:34:25", "update_id": 413947, "user_id": 411, "id": 2575650, "bug_feedback": [{"karma": 0, "comment_id": 2575650, "bug_id": 2093310, "bug": {"bug_id": 2093310, "title": "CVE-2022-30783 ntfs-3g-system-compression: ntfs-3g: invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093319, "bug": {"bug_id": 2093319, "title": "CVE-2022-30784 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093325, "bug": {"bug_id": 2093325, "title": "CVE-2022-30785 ntfs-3g-system-compression: ntfs-3g: a file handle created in fuse_lib_opendir, and later used in fuse_lib_readdir, enables arbitrary memory read and write operations [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093331, "bug": {"bug_id": 2093331, "title": "CVE-2022-30786 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093338, "bug": {"bug_id": 2093338, "title": "CVE-2022-30787 ntfs-3g-system-compression: ntfs-3g: integer underflow in fuse_lib_readdir enables arbitrary memory read operations [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093345, "bug": {"bug_id": 2093345, "title": "CVE-2022-30788 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_mft_rec_alloc [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093352, "bug": {"bug_id": 2093352, "title": "CVE-2022-30789 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_check_log_client_array [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093361, "bug": {"bug_id": 2093361, "title": "CVE-2021-46790 ntfs-3g-system-compression: ntfs-3g: heap-based buffer overflow in ntfsck [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}, {"karma": 0, "karma_critpath": 0, "text": "kparal edited this update.", "timestamp": "2022-06-17 06:36:14", "update_id": 413947, "user_id": 91, "id": 2575651, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 07:30:15", "update_id": 413947, "user_id": 1557, "id": 2575663, "bug_feedback": [{"karma": 0, "comment_id": 2575663, "bug_id": 2093310, "bug": {"bug_id": 2093310, "title": "CVE-2022-30783 ntfs-3g-system-compression: ntfs-3g: invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575663, "bug_id": 2093319, "bug": {"bug_id": 2093319, "title": "CVE-2022-30784 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575663, "bug_id": 2093325, "bug": {"bug_id": 2093325, "title": "CVE-2022-30785 ntfs-3g-system-compression: ntfs-3g: a file handle created in fuse_lib_opendir, and later used in fuse_lib_readdir, enables arbitrary memory read and write operations [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575663, "bug_id": 2093331, "bug": {"bug_id": 2093331, "title": "CVE-2022-30786 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575663, "bug_id": 2093338, "bug": {"bug_id": 2093338, "title": "CVE-2022-30787 ntfs-3g-system-compression: ntfs-3g: integer underflow in fuse_lib_readdir enables arbitrary memory read operations [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575663, "bug_id": 2093345, "bug": {"bug_id": 2093345, "title": "CVE-2022-30788 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_mft_rec_alloc [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575663, "bug_id": 2093352, "bug": {"bug_id": 2093352, "title": "CVE-2022-30789 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_check_log_client_array [fedora-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 2575663, "bug_id": 2093361, "bug": {"bug_id": 2093361, "title": "CVE-2021-46790 ntfs-3g-system-compression: ntfs-3g: heap-based buffer overflow in ntfsck [fedora-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "lbrabec", "email": "lbrabec@redhat.com", "id": 1557, "avatar": "https://seccdn.libravatar.org/avatar/3981be1743fbe64181607912911697458541c81f730e842eb676bd3e74c7123d?s=24&d=retro", "openid": "lbrabec.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "qa-admin"}, {"name": "trust admins"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2022-06-17 07:30:16", "update_id": 413947, "user_id": 91, "id": 2575664, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2022-06-18 00:38:14", "update_id": 413947, "user_id": 91, "id": 2576088, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "ntfs-3g-system-compression-1.0-9.fc36", "signed": true, "release_id": 56, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 2093310, "title": "CVE-2022-30783 ntfs-3g-system-compression: ntfs-3g: invalid return code in fuse_kern_mount enables intercepting of libfuse-lite protocol traffic [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 2575663, "bug_id": 2093310, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 07:30:15", "update_id": 413947, "user_id": 1557, "id": 2575663, "testcase_feedback": [], "user": {"name": "lbrabec", "email": "lbrabec@redhat.com", "id": 1557, "avatar": "https://seccdn.libravatar.org/avatar/3981be1743fbe64181607912911697458541c81f730e842eb676bd3e74c7123d?s=24&d=retro", "openid": "lbrabec.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "qa-admin"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 2568806, "bug_id": 2093310, "comment": {"karma": 1, "karma_critpath": 0, "text": "Listing `Windows/System32/` works fine, so I think this works ok.\n\n@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8fa7e5aeaf so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:07:53", "update_id": 413950, "user_id": 411, "id": 2568806, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093310, "comment": {"karma": 0, "karma_critpath": 0, "text": "@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8f775872c9 so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:08:17", "update_id": 413947, "user_id": 411, "id": 2568807, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093310, "comment": {"karma": 0, "karma_critpath": 0, "text": "Possibly, but I've no idea how.", "timestamp": "2022-06-09 09:11:47", "update_id": 413947, "user_id": 141, "id": 2568813, "testcase_feedback": [], "user": {"name": "rjones", "email": "rjones@redhat.com", "id": 141, "avatar": "https://seccdn.libravatar.org/avatar/6bc2ebbc861c9a4776b76939247a95d742d150e3feb2878a3b1ffd4d950329db?s=24&d=retro", "openid": "rjones.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "virtmaint-sig"}, {"name": "giterlang"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "gitvirt-v2v"}, {"name": "gitvirt-tools"}, {"name": "signed_fpca"}, {"name": "ipausers"}, {"name": "gitcdupgrader"}, {"name": "gitfedora-ocaml"}, {"name": "fedora-contributor"}, {"name": "hosted-content"}, {"name": "gitautobuildrequires"}, {"name": "risc-v"}]}}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093310, "comment": {"karma": 0, "karma_critpath": 0, "text": "Just obsolete this update and then edit the other one and add `ntfs-3g-system-compression-1.0-9.fc36` into it.", "timestamp": "2022-06-09 09:23:08", "update_id": 413947, "user_id": 411, "id": 2568831, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093310, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 06:34:25", "update_id": 413947, "user_id": 411, "id": 2575650, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}]}, {"bug_id": 2093319, "title": "CVE-2022-30784 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause heap exhaustion in ntfs_get_attribute_value [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 2575663, "bug_id": 2093319, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 07:30:15", "update_id": 413947, "user_id": 1557, "id": 2575663, "testcase_feedback": [], "user": {"name": "lbrabec", "email": "lbrabec@redhat.com", "id": 1557, "avatar": "https://seccdn.libravatar.org/avatar/3981be1743fbe64181607912911697458541c81f730e842eb676bd3e74c7123d?s=24&d=retro", "openid": "lbrabec.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "qa-admin"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 2568806, "bug_id": 2093319, "comment": {"karma": 1, "karma_critpath": 0, "text": "Listing `Windows/System32/` works fine, so I think this works ok.\n\n@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8fa7e5aeaf so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:07:53", "update_id": 413950, "user_id": 411, "id": 2568806, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093319, "comment": {"karma": 0, "karma_critpath": 0, "text": "@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8f775872c9 so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:08:17", "update_id": 413947, "user_id": 411, "id": 2568807, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093319, "comment": {"karma": 0, "karma_critpath": 0, "text": "Possibly, but I've no idea how.", "timestamp": "2022-06-09 09:11:47", "update_id": 413947, "user_id": 141, "id": 2568813, "testcase_feedback": [], "user": {"name": "rjones", "email": "rjones@redhat.com", "id": 141, "avatar": "https://seccdn.libravatar.org/avatar/6bc2ebbc861c9a4776b76939247a95d742d150e3feb2878a3b1ffd4d950329db?s=24&d=retro", "openid": "rjones.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "virtmaint-sig"}, {"name": "giterlang"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "gitvirt-v2v"}, {"name": "gitvirt-tools"}, {"name": "signed_fpca"}, {"name": "ipausers"}, {"name": "gitcdupgrader"}, {"name": "gitfedora-ocaml"}, {"name": "fedora-contributor"}, {"name": "hosted-content"}, {"name": "gitautobuildrequires"}, {"name": "risc-v"}]}}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093319, "comment": {"karma": 0, "karma_critpath": 0, "text": "Just obsolete this update and then edit the other one and add `ntfs-3g-system-compression-1.0-9.fc36` into it.", "timestamp": "2022-06-09 09:23:08", "update_id": 413947, "user_id": 411, "id": 2568831, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093319, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 06:34:25", "update_id": 413947, "user_id": 411, "id": 2575650, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}]}, {"bug_id": 2093325, "title": "CVE-2022-30785 ntfs-3g-system-compression: ntfs-3g: a file handle created in fuse_lib_opendir, and later used in fuse_lib_readdir, enables arbitrary memory read and write operations [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 2575663, "bug_id": 2093325, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 07:30:15", "update_id": 413947, "user_id": 1557, "id": 2575663, "testcase_feedback": [], "user": {"name": "lbrabec", "email": "lbrabec@redhat.com", "id": 1557, "avatar": "https://seccdn.libravatar.org/avatar/3981be1743fbe64181607912911697458541c81f730e842eb676bd3e74c7123d?s=24&d=retro", "openid": "lbrabec.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "qa-admin"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 2568806, "bug_id": 2093325, "comment": {"karma": 1, "karma_critpath": 0, "text": "Listing `Windows/System32/` works fine, so I think this works ok.\n\n@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8fa7e5aeaf so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:07:53", "update_id": 413950, "user_id": 411, "id": 2568806, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093325, "comment": {"karma": 0, "karma_critpath": 0, "text": "@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8f775872c9 so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:08:17", "update_id": 413947, "user_id": 411, "id": 2568807, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093325, "comment": {"karma": 0, "karma_critpath": 0, "text": "Possibly, but I've no idea how.", "timestamp": "2022-06-09 09:11:47", "update_id": 413947, "user_id": 141, "id": 2568813, "testcase_feedback": [], "user": {"name": "rjones", "email": "rjones@redhat.com", "id": 141, "avatar": "https://seccdn.libravatar.org/avatar/6bc2ebbc861c9a4776b76939247a95d742d150e3feb2878a3b1ffd4d950329db?s=24&d=retro", "openid": "rjones.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "virtmaint-sig"}, {"name": "giterlang"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "gitvirt-v2v"}, {"name": "gitvirt-tools"}, {"name": "signed_fpca"}, {"name": "ipausers"}, {"name": "gitcdupgrader"}, {"name": "gitfedora-ocaml"}, {"name": "fedora-contributor"}, {"name": "hosted-content"}, {"name": "gitautobuildrequires"}, {"name": "risc-v"}]}}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093325, "comment": {"karma": 0, "karma_critpath": 0, "text": "Just obsolete this update and then edit the other one and add `ntfs-3g-system-compression-1.0-9.fc36` into it.", "timestamp": "2022-06-09 09:23:08", "update_id": 413947, "user_id": 411, "id": 2568831, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093325, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 06:34:25", "update_id": 413947, "user_id": 411, "id": 2575650, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}]}, {"bug_id": 2093331, "title": "CVE-2022-30786 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_names_full_collate [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 2575663, "bug_id": 2093331, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 07:30:15", "update_id": 413947, "user_id": 1557, "id": 2575663, "testcase_feedback": [], "user": {"name": "lbrabec", "email": "lbrabec@redhat.com", "id": 1557, "avatar": "https://seccdn.libravatar.org/avatar/3981be1743fbe64181607912911697458541c81f730e842eb676bd3e74c7123d?s=24&d=retro", "openid": "lbrabec.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "qa-admin"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 2568806, "bug_id": 2093331, "comment": {"karma": 1, "karma_critpath": 0, "text": "Listing `Windows/System32/` works fine, so I think this works ok.\n\n@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8fa7e5aeaf so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:07:53", "update_id": 413950, "user_id": 411, "id": 2568806, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093331, "comment": {"karma": 0, "karma_critpath": 0, "text": "@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8f775872c9 so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:08:17", "update_id": 413947, "user_id": 411, "id": 2568807, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093331, "comment": {"karma": 0, "karma_critpath": 0, "text": "Possibly, but I've no idea how.", "timestamp": "2022-06-09 09:11:47", "update_id": 413947, "user_id": 141, "id": 2568813, "testcase_feedback": [], "user": {"name": "rjones", "email": "rjones@redhat.com", "id": 141, "avatar": "https://seccdn.libravatar.org/avatar/6bc2ebbc861c9a4776b76939247a95d742d150e3feb2878a3b1ffd4d950329db?s=24&d=retro", "openid": "rjones.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "virtmaint-sig"}, {"name": "giterlang"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "gitvirt-v2v"}, {"name": "gitvirt-tools"}, {"name": "signed_fpca"}, {"name": "ipausers"}, {"name": "gitcdupgrader"}, {"name": "gitfedora-ocaml"}, {"name": "fedora-contributor"}, {"name": "hosted-content"}, {"name": "gitautobuildrequires"}, {"name": "risc-v"}]}}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093331, "comment": {"karma": 0, "karma_critpath": 0, "text": "Just obsolete this update and then edit the other one and add `ntfs-3g-system-compression-1.0-9.fc36` into it.", "timestamp": "2022-06-09 09:23:08", "update_id": 413947, "user_id": 411, "id": 2568831, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093331, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 06:34:25", "update_id": 413947, "user_id": 411, "id": 2575650, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}]}, {"bug_id": 2093338, "title": "CVE-2022-30787 ntfs-3g-system-compression: ntfs-3g: integer underflow in fuse_lib_readdir enables arbitrary memory read operations [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 2575663, "bug_id": 2093338, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 07:30:15", "update_id": 413947, "user_id": 1557, "id": 2575663, "testcase_feedback": [], "user": {"name": "lbrabec", "email": "lbrabec@redhat.com", "id": 1557, "avatar": "https://seccdn.libravatar.org/avatar/3981be1743fbe64181607912911697458541c81f730e842eb676bd3e74c7123d?s=24&d=retro", "openid": "lbrabec.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "qa-admin"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 2568806, "bug_id": 2093338, "comment": {"karma": 1, "karma_critpath": 0, "text": "Listing `Windows/System32/` works fine, so I think this works ok.\n\n@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8fa7e5aeaf so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:07:53", "update_id": 413950, "user_id": 411, "id": 2568806, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093338, "comment": {"karma": 0, "karma_critpath": 0, "text": "@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8f775872c9 so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:08:17", "update_id": 413947, "user_id": 411, "id": 2568807, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093338, "comment": {"karma": 0, "karma_critpath": 0, "text": "Possibly, but I've no idea how.", "timestamp": "2022-06-09 09:11:47", "update_id": 413947, "user_id": 141, "id": 2568813, "testcase_feedback": [], "user": {"name": "rjones", "email": "rjones@redhat.com", "id": 141, "avatar": "https://seccdn.libravatar.org/avatar/6bc2ebbc861c9a4776b76939247a95d742d150e3feb2878a3b1ffd4d950329db?s=24&d=retro", "openid": "rjones.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "virtmaint-sig"}, {"name": "giterlang"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "gitvirt-v2v"}, {"name": "gitvirt-tools"}, {"name": "signed_fpca"}, {"name": "ipausers"}, {"name": "gitcdupgrader"}, {"name": "gitfedora-ocaml"}, {"name": "fedora-contributor"}, {"name": "hosted-content"}, {"name": "gitautobuildrequires"}, {"name": "risc-v"}]}}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093338, "comment": {"karma": 0, "karma_critpath": 0, "text": "Just obsolete this update and then edit the other one and add `ntfs-3g-system-compression-1.0-9.fc36` into it.", "timestamp": "2022-06-09 09:23:08", "update_id": 413947, "user_id": 411, "id": 2568831, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093338, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 06:34:25", "update_id": 413947, "user_id": 411, "id": 2575650, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}]}, {"bug_id": 2093345, "title": "CVE-2022-30788 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_mft_rec_alloc [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 2575663, "bug_id": 2093345, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 07:30:15", "update_id": 413947, "user_id": 1557, "id": 2575663, "testcase_feedback": [], "user": {"name": "lbrabec", "email": "lbrabec@redhat.com", "id": 1557, "avatar": "https://seccdn.libravatar.org/avatar/3981be1743fbe64181607912911697458541c81f730e842eb676bd3e74c7123d?s=24&d=retro", "openid": "lbrabec.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "qa-admin"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 2568806, "bug_id": 2093345, "comment": {"karma": 1, "karma_critpath": 0, "text": "Listing `Windows/System32/` works fine, so I think this works ok.\n\n@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8fa7e5aeaf so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:07:53", "update_id": 413950, "user_id": 411, "id": 2568806, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093345, "comment": {"karma": 0, "karma_critpath": 0, "text": "@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8f775872c9 so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:08:17", "update_id": 413947, "user_id": 411, "id": 2568807, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093345, "comment": {"karma": 0, "karma_critpath": 0, "text": "Possibly, but I've no idea how.", "timestamp": "2022-06-09 09:11:47", "update_id": 413947, "user_id": 141, "id": 2568813, "testcase_feedback": [], "user": {"name": "rjones", "email": "rjones@redhat.com", "id": 141, "avatar": "https://seccdn.libravatar.org/avatar/6bc2ebbc861c9a4776b76939247a95d742d150e3feb2878a3b1ffd4d950329db?s=24&d=retro", "openid": "rjones.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "virtmaint-sig"}, {"name": "giterlang"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "gitvirt-v2v"}, {"name": "gitvirt-tools"}, {"name": "signed_fpca"}, {"name": "ipausers"}, {"name": "gitcdupgrader"}, {"name": "gitfedora-ocaml"}, {"name": "fedora-contributor"}, {"name": "hosted-content"}, {"name": "gitautobuildrequires"}, {"name": "risc-v"}]}}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093345, "comment": {"karma": 0, "karma_critpath": 0, "text": "Just obsolete this update and then edit the other one and add `ntfs-3g-system-compression-1.0-9.fc36` into it.", "timestamp": "2022-06-09 09:23:08", "update_id": 413947, "user_id": 411, "id": 2568831, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093345, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 06:34:25", "update_id": 413947, "user_id": 411, "id": 2575650, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}]}, {"bug_id": 2093352, "title": "CVE-2022-30789 ntfs-3g-system-compression: ntfs-3g: crafted NTFS image can cause a heap-based buffer overflow in ntfs_check_log_client_array [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 2575663, "bug_id": 2093352, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 07:30:15", "update_id": 413947, "user_id": 1557, "id": 2575663, "testcase_feedback": [], "user": {"name": "lbrabec", "email": "lbrabec@redhat.com", "id": 1557, "avatar": "https://seccdn.libravatar.org/avatar/3981be1743fbe64181607912911697458541c81f730e842eb676bd3e74c7123d?s=24&d=retro", "openid": "lbrabec.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "qa-admin"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 2568806, "bug_id": 2093352, "comment": {"karma": 1, "karma_critpath": 0, "text": "Listing `Windows/System32/` works fine, so I think this works ok.\n\n@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8fa7e5aeaf so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:07:53", "update_id": 413950, "user_id": 411, "id": 2568806, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093352, "comment": {"karma": 0, "karma_critpath": 0, "text": "@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8f775872c9 so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:08:17", "update_id": 413947, "user_id": 411, "id": 2568807, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093352, "comment": {"karma": 0, "karma_critpath": 0, "text": "Possibly, but I've no idea how.", "timestamp": "2022-06-09 09:11:47", "update_id": 413947, "user_id": 141, "id": 2568813, "testcase_feedback": [], "user": {"name": "rjones", "email": "rjones@redhat.com", "id": 141, "avatar": "https://seccdn.libravatar.org/avatar/6bc2ebbc861c9a4776b76939247a95d742d150e3feb2878a3b1ffd4d950329db?s=24&d=retro", "openid": "rjones.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "virtmaint-sig"}, {"name": "giterlang"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "gitvirt-v2v"}, {"name": "gitvirt-tools"}, {"name": "signed_fpca"}, {"name": "ipausers"}, {"name": "gitcdupgrader"}, {"name": "gitfedora-ocaml"}, {"name": "fedora-contributor"}, {"name": "hosted-content"}, {"name": "gitautobuildrequires"}, {"name": "risc-v"}]}}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093352, "comment": {"karma": 0, "karma_critpath": 0, "text": "Just obsolete this update and then edit the other one and add `ntfs-3g-system-compression-1.0-9.fc36` into it.", "timestamp": "2022-06-09 09:23:08", "update_id": 413947, "user_id": 411, "id": 2568831, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093352, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 06:34:25", "update_id": 413947, "user_id": 411, "id": 2575650, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}]}, {"bug_id": 2093361, "title": "CVE-2021-46790 ntfs-3g-system-compression: ntfs-3g: heap-based buffer overflow in ntfsck [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 2568806, "bug_id": 2093361, "comment": {"karma": 1, "karma_critpath": 0, "text": "Listing `Windows/System32/` works fine, so I think this works ok.\n\n@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8fa7e5aeaf so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:07:53", "update_id": 413950, "user_id": 411, "id": 2568806, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568807, "bug_id": 2093361, "comment": {"karma": 0, "karma_critpath": 0, "text": "@rjones Can this be merged into https://bodhi.fedoraproject.org/updates/FEDORA-2022-8f775872c9 so that the updates go out together? I believe these two should be a single update.", "timestamp": "2022-06-09 09:08:17", "update_id": 413947, "user_id": 411, "id": 2568807, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2568813, "bug_id": 2093361, "comment": {"karma": 0, "karma_critpath": 0, "text": "Possibly, but I've no idea how.", "timestamp": "2022-06-09 09:11:47", "update_id": 413947, "user_id": 141, "id": 2568813, "testcase_feedback": [], "user": {"name": "rjones", "email": "rjones@redhat.com", "id": 141, "avatar": "https://seccdn.libravatar.org/avatar/6bc2ebbc861c9a4776b76939247a95d742d150e3feb2878a3b1ffd4d950329db?s=24&d=retro", "openid": "rjones.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "virtmaint-sig"}, {"name": "giterlang"}, {"name": "fedorabugs"}, {"name": "cla_redhat"}, {"name": "gitvirt-v2v"}, {"name": "gitvirt-tools"}, {"name": "signed_fpca"}, {"name": "ipausers"}, {"name": "gitcdupgrader"}, {"name": "gitfedora-ocaml"}, {"name": "fedora-contributor"}, {"name": "hosted-content"}, {"name": "gitautobuildrequires"}, {"name": "risc-v"}]}}}, {"karma": 0, "comment_id": 2568831, "bug_id": 2093361, "comment": {"karma": 0, "karma_critpath": 0, "text": "Just obsolete this update and then edit the other one and add `ntfs-3g-system-compression-1.0-9.fc36` into it.", "timestamp": "2022-06-09 09:23:08", "update_id": 413947, "user_id": 411, "id": 2568831, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2575650, "bug_id": 2093361, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 06:34:25", "update_id": 413947, "user_id": 411, "id": 2575650, "testcase_feedback": [], "user": {"name": "kparal", "email": "kparal@redhat.com", "id": 411, "avatar": "https://seccdn.libravatar.org/avatar/5da027c64997c654044c3d0fdefea4cde1b5cea73f8ecfca77af48e2ba5ed772?s=24&d=retro", "openid": "kparal.id.fedoraproject.org", "groups": [{"name": "qa-tools-sig"}, {"name": "proventesters"}, {"name": "qa"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "qa-admin"}]}}}, {"karma": 0, "comment_id": 2575663, "bug_id": 2093361, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2022-06-17 07:30:15", "update_id": 413947, "user_id": 1557, "id": 2575663, "testcase_feedback": [], "user": {"name": "lbrabec", "email": "lbrabec@redhat.com", "id": 1557, "avatar": "https://seccdn.libravatar.org/avatar/3981be1743fbe64181607912911697458541c81f730e842eb676bd3e74c7123d?s=24&d=retro", "openid": "lbrabec.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "communishift"}, {"name": "qa-admin"}, {"name": "trust admins"}]}}}]}], "updateid": "FEDORA-2022-13bc8c91b0", "karma": 2, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}