{"update": {"autokarma": true, "autotime": true, "stable_karma": 3, "stable_days": 3, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "29.0.6 release RHBZ#2305125 RHBZ#2309499 fixes CVE-2024-39338", "type": "security", "status": "stable", "request": null, "severity": "medium", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": "", "close_bugs": true, "date_submitted": "2024-09-03 21:03:57", "date_modified": null, "date_approved": "2024-09-07 07:27:01", "date_testing": "2024-09-04 07:26:26", "date_stable": "2024-09-13 20:43:08", "alias": "FEDORA-2024-19e63ed69e", "test_gating_status": "ignored", "from_tag": null, "date_pushed": "2024-09-13 20:43:08", "meets_testing_requirements": true, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-2024-19e63ed69e", "title": "nextcloud-29.0.6-1.fc41", "version_hash": "63a7749c83279ec18bd6157c78acbc300700fb3a", "release": {"name": "F41", "long_name": "Fedora 41", "version": "41", "id_prefix": "FEDORA", "branch": "f41", "dist_tag": "f41", "stable_tag": "f41-updates", "testing_tag": "f41-updates-testing", "candidate_tag": "f41-updates-candidate", "pending_signing_tag": "f41-signing-pending", "pending_testing_tag": "f41-updates-testing-pending", "pending_stable_tag": "f41-updates-pending", "override_tag": "f41-override", "mail_template": "fedora_errata_template", "state": "current", "composed_by_bodhi": true, "create_automatic_updates": false, "package_manager": "dnf", "testing_repository": "updates-testing", "released_on": null, "eol": "2025-11-11", "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "kni", "email": "zonexpertconsulting@outlook.com", "id": 3369, "avatar": "https://seccdn.libravatar.org/avatar/14e6d27a847651ad4eba71828f3f858b6be7a7849888b834cb22a001096ab0da?s=24&d=retro", "openid": "kni.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by kni. ", "timestamp": "2024-09-03 21:03:57", "update_id": 645480, "user_id": 91, "id": 3703985, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update's test gating status has been changed to 'ignored'.", "timestamp": "2024-09-03 21:03:57", "update_id": 645480, "user_id": 91, "id": 3703986, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2024-09-04 07:28:09", "update_id": 645480, "user_id": 91, "id": 3704878, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. \n\nThere is an ongoing freeze; this will be pushed to stable after the freeze is over. ", "timestamp": "2024-09-07 07:27:01", "update_id": 645480, "user_id": 91, "id": 3709774, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2024-09-13 20:57:56", "update_id": 645480, "user_id": 91, "id": 3719130, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "nextcloud-29.0.6-1.fc41", "signed": true, "release_id": 80, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 2305125, "title": "CVE-2024-39338 nextcloud: axios: Server-Side Request Forgery [fedora-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 3705632, "bug_id": 2305125, "comment": {"karma": 1, "karma_critpath": 0, "text": "Just tested httpd/PostgreSQL, no issues", "timestamp": "2024-09-04 17:40:53", "update_id": 645478, "user_id": 5776, "id": 3705632, "testcase_feedback": [], "user": {"name": "koalillo", "email": "alex@corcoles.net", "id": 5776, "avatar": "https://seccdn.libravatar.org/avatar/26920a0ab862c52e972d3c504cba78166472a827b10a41b78380600b6c91f64a?s=24&d=retro", "openid": "koalillo.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 3709164, "bug_id": 2305125, "comment": {"karma": 0, "karma_critpath": 0, "text": "@koalillo\nThanks for testing! Glad to hear someone besides myself is using Nextcloud on el9.", "timestamp": "2024-09-06 20:14:34", "update_id": 645478, "user_id": 3369, "id": 3709164, "testcase_feedback": [], "user": {"name": "kni", "email": "zonexpertconsulting@outlook.com", "id": 3369, "avatar": "https://seccdn.libravatar.org/avatar/14e6d27a847651ad4eba71828f3f858b6be7a7849888b834cb22a001096ab0da?s=24&d=retro", "openid": "kni.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 3709170, "bug_id": 2305125, "comment": {"karma": 0, "karma_critpath": 0, "text": "Yeah, I get it. Nextcloud 29 is going to be the last version available for el9, due to the php requirements. I'll continue to add minor 29.x releases as they become available. The fedora branches will move to Nextcloud 30 in the coming weeks after its release.\n\nI'm personally going to stay with Nextcloud 29 until after rhel 10 is released in 2025. The RHEL 10 branches for EPEL have recently been created and I've already pushed Nextcloud to it.\n\n", "timestamp": "2024-09-06 20:24:28", "update_id": 645478, "user_id": 3369, "id": 3709170, "testcase_feedback": [], "user": {"name": "kni", "email": "zonexpertconsulting@outlook.com", "id": 3369, "avatar": "https://seccdn.libravatar.org/avatar/14e6d27a847651ad4eba71828f3f858b6be7a7849888b834cb22a001096ab0da?s=24&d=retro", "openid": "kni.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 3709171, "bug_id": 2305125, "comment": {"karma": 0, "karma_critpath": 0, "text": "Oh, I'll track this. Actually, I used the package in my COPR with newer PHP versions from Remi's repos- it also worked quite well.\n\nHopefully NC29 is supported until EL10 arrives.\n\nThanks for your efforts!", "timestamp": "2024-09-06 20:26:05", "update_id": 645478, "user_id": 5776, "id": 3709171, "testcase_feedback": [], "user": {"name": "koalillo", "email": "alex@corcoles.net", "id": 5776, "avatar": "https://seccdn.libravatar.org/avatar/26920a0ab862c52e972d3c504cba78166472a827b10a41b78380600b6c91f64a?s=24&d=retro", "openid": "koalillo.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 3709165, "bug_id": 2305125, "comment": {"karma": 0, "karma_critpath": 0, "text": "Hah, I kept a COPR, I was so glad when I saw the el9 branch!\n\n(I'm a bit concerned about PHP version compatibility, but so far everything works.)", "timestamp": "2024-09-06 20:15:57", "update_id": 645478, "user_id": 5776, "id": 3709165, "testcase_feedback": [], "user": {"name": "koalillo", "email": "alex@corcoles.net", "id": 5776, "avatar": "https://seccdn.libravatar.org/avatar/26920a0ab862c52e972d3c504cba78166472a827b10a41b78380600b6c91f64a?s=24&d=retro", "openid": "koalillo.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}]}, {"bug_id": 2309499, "title": "nextcloud-30.0.0rc3 is available", "security": false, "parent": false, "feedback": [{"karma": 0, "comment_id": 3705632, "bug_id": 2309499, "comment": {"karma": 1, "karma_critpath": 0, "text": "Just tested httpd/PostgreSQL, no issues", "timestamp": "2024-09-04 17:40:53", "update_id": 645478, "user_id": 5776, "id": 3705632, "testcase_feedback": [], "user": {"name": "koalillo", "email": "alex@corcoles.net", "id": 5776, "avatar": "https://seccdn.libravatar.org/avatar/26920a0ab862c52e972d3c504cba78166472a827b10a41b78380600b6c91f64a?s=24&d=retro", "openid": "koalillo.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 3709164, "bug_id": 2309499, "comment": {"karma": 0, "karma_critpath": 0, "text": "@koalillo\nThanks for testing! Glad to hear someone besides myself is using Nextcloud on el9.", "timestamp": "2024-09-06 20:14:34", "update_id": 645478, "user_id": 3369, "id": 3709164, "testcase_feedback": [], "user": {"name": "kni", "email": "zonexpertconsulting@outlook.com", "id": 3369, "avatar": "https://seccdn.libravatar.org/avatar/14e6d27a847651ad4eba71828f3f858b6be7a7849888b834cb22a001096ab0da?s=24&d=retro", "openid": "kni.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 3709170, "bug_id": 2309499, "comment": {"karma": 0, "karma_critpath": 0, "text": "Yeah, I get it. Nextcloud 29 is going to be the last version available for el9, due to the php requirements. I'll continue to add minor 29.x releases as they become available. The fedora branches will move to Nextcloud 30 in the coming weeks after its release.\n\nI'm personally going to stay with Nextcloud 29 until after rhel 10 is released in 2025. The RHEL 10 branches for EPEL have recently been created and I've already pushed Nextcloud to it.\n\n", "timestamp": "2024-09-06 20:24:28", "update_id": 645478, "user_id": 3369, "id": 3709170, "testcase_feedback": [], "user": {"name": "kni", "email": "zonexpertconsulting@outlook.com", "id": 3369, "avatar": "https://seccdn.libravatar.org/avatar/14e6d27a847651ad4eba71828f3f858b6be7a7849888b834cb22a001096ab0da?s=24&d=retro", "openid": "kni.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 3709171, "bug_id": 2309499, "comment": {"karma": 0, "karma_critpath": 0, "text": "Oh, I'll track this. Actually, I used the package in my COPR with newer PHP versions from Remi's repos- it also worked quite well.\n\nHopefully NC29 is supported until EL10 arrives.\n\nThanks for your efforts!", "timestamp": "2024-09-06 20:26:05", "update_id": 645478, "user_id": 5776, "id": 3709171, "testcase_feedback": [], "user": {"name": "koalillo", "email": "alex@corcoles.net", "id": 5776, "avatar": "https://seccdn.libravatar.org/avatar/26920a0ab862c52e972d3c504cba78166472a827b10a41b78380600b6c91f64a?s=24&d=retro", "openid": "koalillo.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}, {"karma": 0, "comment_id": 3709165, "bug_id": 2309499, "comment": {"karma": 0, "karma_critpath": 0, "text": "Hah, I kept a COPR, I was so glad when I saw the el9 branch!\n\n(I'm a bit concerned about PHP version compatibility, but so far everything works.)", "timestamp": "2024-09-06 20:15:57", "update_id": 645478, "user_id": 5776, "id": 3709165, "testcase_feedback": [], "user": {"name": "koalillo", "email": "alex@corcoles.net", "id": 5776, "avatar": "https://seccdn.libravatar.org/avatar/26920a0ab862c52e972d3c504cba78166472a827b10a41b78380600b6c91f64a?s=24&d=retro", "openid": "koalillo.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}]}}}]}], "updateid": "FEDORA-2024-19e63ed69e", "karma": 0, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}