{"update": {"autokarma": true, "autotime": false, "stable_karma": 3, "stable_days": 0, "unstable_karma": -3, "require_bugs": true, "require_testcases": true, "display_name": "", "notes": "Security fix for CVE-2013-7458", "type": "security", "status": "stable", "request": null, "severity": "unspecified", "suggest": "unspecified", "locked": false, "pushed": true, "critpath": false, "critpath_groups": null, "close_bugs": true, "date_submitted": "2016-08-05 13:33:29", "date_modified": null, "date_approved": null, "date_testing": "2016-08-09 02:06:07", "date_stable": "2017-03-13 18:40:39", "alias": "FEDORA-EPEL-2016-23fa04bf1c", "test_gating_status": null, "from_tag": null, "date_pushed": "2017-03-13 18:40:39", "meets_testing_requirements": false, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-23fa04bf1c", "title": "redis-3.2.3-1.el7", "version_hash": "737ef13b41f6aeece1be41456c771ceb4f8ac016", "release": {"name": "EPEL-7", "long_name": "Fedora EPEL 7", "version": "7", "id_prefix": "FEDORA-EPEL", "branch": "epel7", "dist_tag": "epel7", "stable_tag": "epel7", "testing_tag": "epel7-testing", "candidate_tag": "epel7-testing-candidate", "pending_signing_tag": "epel7-signing-pending", "pending_testing_tag": "epel7-testing-pending", "pending_stable_tag": "epel7-pending", "override_tag": "epel7-override", "mail_template": "fedora_epel_legacy_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": false, "package_manager": "unspecified", "testing_repository": null, "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "hguemar", "email": "karlthered@gmail.com", "id": 222, "avatar": "https://seccdn.libravatar.org/avatar/21751e7ac6415a04d74130ce9b3235b7e41d8a15e71f7fc40c5bec45e493a516?s=24&d=retro", "openid": "hguemar.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "python-sig"}, {"name": "openstack-sig"}, {"name": "sig-storage"}, {"name": "gitbeefymiracle"}, {"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "python-packagers-sig"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "gitovirt"}, {"name": "fedora-contributor"}, {"name": "centosproject-email-aliases"}, {"name": "atomic-wg"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by hguemar. ", "timestamp": "2016-08-05 13:33:29", "update_id": 64000, "user_id": 91, "id": 467522, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2016-08-09 02:20:08", "update_id": 64000, "user_id": 91, "id": 468701, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes", "timestamp": "2016-08-23 06:00:13", "update_id": 64000, "user_id": 91, "id": 475448, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "Considering the number of people asking me to push that update ...\nIt would have just gone faster if people voted ;-)", "timestamp": "2016-11-22 10:30:42", "update_id": 64000, "user_id": 222, "id": 524829, "bug_feedback": [{"karma": 0, "comment_id": 524829, "bug_id": 1363672, "bug": {"bug_id": 1363672, "title": "CVE-2013-7458 redis: world-readable ~/.rediscli_history [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 524829, "bug_id": 1363670, "bug": {"bug_id": 1363670, "title": "CVE-2013-7458 redis: world-readable ~/.rediscli_history", "security": true, "parent": true}}, {"karma": 0, "comment_id": 524829, "bug_id": 1278967, "bug": {"bug_id": 1278967, "title": "CVE-2015-8080 redis: Integer wraparound in lua_struct.c causing stack-based buffer overflow [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 524829, "bug_id": 1228332, "bug": {"bug_id": 1228332, "title": "redis: Lua sandbox escape and arbitrary code execution [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 524829, "bug_id": 1069036, "bug": {"bug_id": 1069036, "title": "redis: insecure temporary file creation [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 524829, "bug_id": 923970, "bug": {"bug_id": 923970, "title": "redis in epel is very out of date", "security": false, "parent": false}}, {"karma": 0, "comment_id": 524829, "bug_id": 895121, "bug": {"bug_id": 895121, "title": "redis 2.4: Insecure temporary flaw use for redis service's vm swap file [epel-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "hguemar", "email": "karlthered@gmail.com", "id": 222, "avatar": "https://seccdn.libravatar.org/avatar/21751e7ac6415a04d74130ce9b3235b7e41d8a15e71f7fc40c5bec45e493a516?s=24&d=retro", "openid": "hguemar.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "python-sig"}, {"name": "openstack-sig"}, {"name": "sig-storage"}, {"name": "gitbeefymiracle"}, {"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "python-packagers-sig"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "gitovirt"}, {"name": "fedora-contributor"}, {"name": "centosproject-email-aliases"}, {"name": "atomic-wg"}]}}, {"karma": 1, "karma_critpath": 0, "text": "Works for me. Although 3.2.3 contains a critical security issue, see https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES", "timestamp": "2016-12-12 10:02:57", "update_id": 64000, "user_id": 1879, "id": 535018, "bug_feedback": [{"karma": 1, "comment_id": 535018, "bug_id": 1363672, "bug": {"bug_id": 1363672, "title": "CVE-2013-7458 redis: world-readable ~/.rediscli_history [epel-all]", "security": true, "parent": false}}, {"karma": 1, "comment_id": 535018, "bug_id": 1363670, "bug": {"bug_id": 1363670, "title": "CVE-2013-7458 redis: world-readable ~/.rediscli_history", "security": true, "parent": true}}, {"karma": 1, "comment_id": 535018, "bug_id": 1278967, "bug": {"bug_id": 1278967, "title": "CVE-2015-8080 redis: Integer wraparound in lua_struct.c causing stack-based buffer overflow [epel-all]", "security": true, "parent": false}}, {"karma": 1, "comment_id": 535018, "bug_id": 1228332, "bug": {"bug_id": 1228332, "title": "redis: Lua sandbox escape and arbitrary code execution [epel-all]", "security": true, "parent": false}}, {"karma": 1, "comment_id": 535018, "bug_id": 1069036, "bug": {"bug_id": 1069036, "title": "redis: insecure temporary file creation [epel-all]", "security": true, "parent": false}}, {"karma": 1, "comment_id": 535018, "bug_id": 923970, "bug": {"bug_id": 923970, "title": "redis in epel is very out of date", "security": false, "parent": false}}, {"karma": 1, "comment_id": 535018, "bug_id": 895121, "bug": {"bug_id": 895121, "title": "redis 2.4: Insecure temporary flaw use for redis service's vm swap file [epel-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "prupert", "email": "pim@lemonbit.com", "id": 1879, "avatar": "https://seccdn.libravatar.org/avatar/ccadc73ba34ef9ddb6a23ef5b23f9daaf3190422dea21f025b2e42bf85560429?s=24&d=retro", "openid": "prupert.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "trust admins"}]}}, {"karma": 0, "karma_critpath": 0, "text": "Has passed testing here as well. \n\nkarma: +1", "timestamp": "2016-12-13 22:08:33", "update_id": 64000, "user_id": 207, "id": 535839, "bug_feedback": [{"karma": 1, "comment_id": 535839, "bug_id": 1363672, "bug": {"bug_id": 1363672, "title": "CVE-2013-7458 redis: world-readable ~/.rediscli_history [epel-all]", "security": true, "parent": false}}, {"karma": 1, "comment_id": 535839, "bug_id": 1363670, "bug": {"bug_id": 1363670, "title": "CVE-2013-7458 redis: world-readable ~/.rediscli_history", "security": true, "parent": true}}, {"karma": 0, "comment_id": 535839, "bug_id": 1278967, "bug": {"bug_id": 1278967, "title": "CVE-2015-8080 redis: Integer wraparound in lua_struct.c causing stack-based buffer overflow [epel-all]", "security": true, "parent": false}}, {"karma": 1, "comment_id": 535839, "bug_id": 1228332, "bug": {"bug_id": 1228332, "title": "redis: Lua sandbox escape and arbitrary code execution [epel-all]", "security": true, "parent": false}}, {"karma": 1, "comment_id": 535839, "bug_id": 1069036, "bug": {"bug_id": 1069036, "title": "redis: insecure temporary file creation [epel-all]", "security": true, "parent": false}}, {"karma": 1, "comment_id": 535839, "bug_id": 923970, "bug": {"bug_id": 923970, "title": "redis in epel is very out of date", "security": false, "parent": false}}, {"karma": 1, "comment_id": 535839, "bug_id": 895121, "bug": {"bug_id": 895121, "title": "redis 2.4: Insecure temporary flaw use for redis service's vm swap file [epel-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "We ran it in production for a few days. No issues whatsoever.", "timestamp": "2017-01-16 10:33:40", "update_id": 64000, "user_id": 3262, "id": 549388, "bug_feedback": [{"karma": 0, "comment_id": 549388, "bug_id": 1363672, "bug": {"bug_id": 1363672, "title": "CVE-2013-7458 redis: world-readable ~/.rediscli_history [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 549388, "bug_id": 1363670, "bug": {"bug_id": 1363670, "title": "CVE-2013-7458 redis: world-readable ~/.rediscli_history", "security": true, "parent": true}}, {"karma": 0, "comment_id": 549388, "bug_id": 1278967, "bug": {"bug_id": 1278967, "title": "CVE-2015-8080 redis: Integer wraparound in lua_struct.c causing stack-based buffer overflow [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 549388, "bug_id": 1228332, "bug": {"bug_id": 1228332, "title": "redis: Lua sandbox escape and arbitrary code execution [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 549388, "bug_id": 1069036, "bug": {"bug_id": 1069036, "title": "redis: insecure temporary file creation [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 549388, "bug_id": 923970, "bug": {"bug_id": 923970, "title": "redis in epel is very out of date", "security": false, "parent": false}}, {"karma": 0, "comment_id": 549388, "bug_id": 895121, "bug": {"bug_id": 895121, "title": "redis 2.4: Insecure temporary flaw use for redis service's vm swap file [epel-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "leoluk", "email": "mail@leoschabel.de", "id": 3262, "avatar": "https://seccdn.libravatar.org/avatar/45a66c530acb64db8fe4e68966f5ffbf6cf39b0c2152433fbba43b71a22d9263?s=24&d=retro", "openid": "leoluk.id.fedoraproject.org", "groups": []}}, {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-03-13 08:17:09", "update_id": 64000, "user_id": 374, "id": 574040, "bug_feedback": [{"karma": 0, "comment_id": 574040, "bug_id": 1363672, "bug": {"bug_id": 1363672, "title": "CVE-2013-7458 redis: world-readable ~/.rediscli_history [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 574040, "bug_id": 1363670, "bug": {"bug_id": 1363670, "title": "CVE-2013-7458 redis: world-readable ~/.rediscli_history", "security": true, "parent": true}}, {"karma": 0, "comment_id": 574040, "bug_id": 1278967, "bug": {"bug_id": 1278967, "title": "CVE-2015-8080 redis: Integer wraparound in lua_struct.c causing stack-based buffer overflow [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 574040, "bug_id": 1228332, "bug": {"bug_id": 1228332, "title": "redis: Lua sandbox escape and arbitrary code execution [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 574040, "bug_id": 1069036, "bug": {"bug_id": 1069036, "title": "redis: insecure temporary file creation [epel-all]", "security": true, "parent": false}}, {"karma": 0, "comment_id": 574040, "bug_id": 923970, "bug": {"bug_id": 923970, "title": "redis in epel is very out of date", "security": false, "parent": false}}, {"karma": 0, "comment_id": 574040, "bug_id": 895121, "bug": {"bug_id": 895121, "title": "redis 2.4: Insecure temporary flaw use for redis service's vm swap file [epel-all]", "security": true, "parent": false}}], "testcase_feedback": [], "user": {"name": "stevetraylen", "email": "steve.traylen@cern.ch", "id": 374, "avatar": "https://seccdn.libravatar.org/avatar/5eeaecee99771110b69c4fc782c5d460826adafcd677f1642ed046a7e20870ff?s=24&d=retro", "openid": "stevetraylen.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "centosproject-email-aliases"}, {"name": "sig-sclo"}]}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by bodhi. ", "timestamp": "2017-03-13 08:17:11", "update_id": 64000, "user_id": 91, "id": 574041, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2017-03-13 20:19:31", "update_id": 64000, "user_id": 91, "id": 574332, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "redis-3.2.3-1.el7", "signed": true, "release_id": 8, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 895121, "title": "redis 2.4: Insecure temporary flaw use for redis service's vm swap file [epel-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 524829, "bug_id": 895121, "comment": {"karma": 0, "karma_critpath": 0, "text": "Considering the number of people asking me to push that update ...\nIt would have just gone faster if people voted ;-)", "timestamp": "2016-11-22 10:30:42", "update_id": 64000, "user_id": 222, "id": 524829, "testcase_feedback": [], "user": {"name": "hguemar", "email": "karlthered@gmail.com", "id": 222, "avatar": "https://seccdn.libravatar.org/avatar/21751e7ac6415a04d74130ce9b3235b7e41d8a15e71f7fc40c5bec45e493a516?s=24&d=retro", "openid": "hguemar.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "python-sig"}, {"name": "openstack-sig"}, {"name": "sig-storage"}, {"name": "gitbeefymiracle"}, {"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "python-packagers-sig"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "gitovirt"}, {"name": "fedora-contributor"}, {"name": "centosproject-email-aliases"}, {"name": "atomic-wg"}]}}}, {"karma": 1, "comment_id": 535018, "bug_id": 895121, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me. Although 3.2.3 contains a critical security issue, see https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES", "timestamp": "2016-12-12 10:02:57", "update_id": 64000, "user_id": 1879, "id": 535018, "testcase_feedback": [], "user": {"name": "prupert", "email": "pim@lemonbit.com", "id": 1879, "avatar": "https://seccdn.libravatar.org/avatar/ccadc73ba34ef9ddb6a23ef5b23f9daaf3190422dea21f025b2e42bf85560429?s=24&d=retro", "openid": "prupert.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "trust admins"}]}}}, {"karma": 1, "comment_id": 535839, "bug_id": 895121, "comment": {"karma": 0, "karma_critpath": 0, "text": "Has passed testing here as well. \n\nkarma: +1", "timestamp": "2016-12-13 22:08:33", "update_id": 64000, "user_id": 207, "id": 535839, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 549388, "bug_id": 895121, "comment": {"karma": 1, "karma_critpath": 0, "text": "We ran it in production for a few days. No issues whatsoever.", "timestamp": "2017-01-16 10:33:40", "update_id": 64000, "user_id": 3262, "id": 549388, "testcase_feedback": [], "user": {"name": "leoluk", "email": "mail@leoschabel.de", "id": 3262, "avatar": "https://seccdn.libravatar.org/avatar/45a66c530acb64db8fe4e68966f5ffbf6cf39b0c2152433fbba43b71a22d9263?s=24&d=retro", "openid": "leoluk.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 574040, "bug_id": 895121, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-03-13 08:17:09", "update_id": 64000, "user_id": 374, "id": 574040, "testcase_feedback": [], "user": {"name": "stevetraylen", "email": "steve.traylen@cern.ch", "id": 374, "avatar": "https://seccdn.libravatar.org/avatar/5eeaecee99771110b69c4fc782c5d460826adafcd677f1642ed046a7e20870ff?s=24&d=retro", "openid": "stevetraylen.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "centosproject-email-aliases"}, {"name": "sig-sclo"}]}}}]}, {"bug_id": 923970, "title": "redis in epel is very out of date", "security": false, "parent": false, "feedback": [{"karma": 0, "comment_id": 524829, "bug_id": 923970, "comment": {"karma": 0, "karma_critpath": 0, "text": "Considering the number of people asking me to push that update ...\nIt would have just gone faster if people voted ;-)", "timestamp": "2016-11-22 10:30:42", "update_id": 64000, "user_id": 222, "id": 524829, "testcase_feedback": [], "user": {"name": "hguemar", "email": "karlthered@gmail.com", "id": 222, "avatar": "https://seccdn.libravatar.org/avatar/21751e7ac6415a04d74130ce9b3235b7e41d8a15e71f7fc40c5bec45e493a516?s=24&d=retro", "openid": "hguemar.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "python-sig"}, {"name": "openstack-sig"}, {"name": "sig-storage"}, {"name": "gitbeefymiracle"}, {"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "python-packagers-sig"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "gitovirt"}, {"name": "fedora-contributor"}, {"name": "centosproject-email-aliases"}, {"name": "atomic-wg"}]}}}, {"karma": 1, "comment_id": 535018, "bug_id": 923970, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me. Although 3.2.3 contains a critical security issue, see https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES", "timestamp": "2016-12-12 10:02:57", "update_id": 64000, "user_id": 1879, "id": 535018, "testcase_feedback": [], "user": {"name": "prupert", "email": "pim@lemonbit.com", "id": 1879, "avatar": "https://seccdn.libravatar.org/avatar/ccadc73ba34ef9ddb6a23ef5b23f9daaf3190422dea21f025b2e42bf85560429?s=24&d=retro", "openid": "prupert.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "trust admins"}]}}}, {"karma": 1, "comment_id": 535839, "bug_id": 923970, "comment": {"karma": 0, "karma_critpath": 0, "text": "Has passed testing here as well. \n\nkarma: +1", "timestamp": "2016-12-13 22:08:33", "update_id": 64000, "user_id": 207, "id": 535839, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 549388, "bug_id": 923970, "comment": {"karma": 1, "karma_critpath": 0, "text": "We ran it in production for a few days. No issues whatsoever.", "timestamp": "2017-01-16 10:33:40", "update_id": 64000, "user_id": 3262, "id": 549388, "testcase_feedback": [], "user": {"name": "leoluk", "email": "mail@leoschabel.de", "id": 3262, "avatar": "https://seccdn.libravatar.org/avatar/45a66c530acb64db8fe4e68966f5ffbf6cf39b0c2152433fbba43b71a22d9263?s=24&d=retro", "openid": "leoluk.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 574040, "bug_id": 923970, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-03-13 08:17:09", "update_id": 64000, "user_id": 374, "id": 574040, "testcase_feedback": [], "user": {"name": "stevetraylen", "email": "steve.traylen@cern.ch", "id": 374, "avatar": "https://seccdn.libravatar.org/avatar/5eeaecee99771110b69c4fc782c5d460826adafcd677f1642ed046a7e20870ff?s=24&d=retro", "openid": "stevetraylen.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "centosproject-email-aliases"}, {"name": "sig-sclo"}]}}}]}, {"bug_id": 1069036, "title": "redis: insecure temporary file creation [epel-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 524829, "bug_id": 1069036, "comment": {"karma": 0, "karma_critpath": 0, "text": "Considering the number of people asking me to push that update ...\nIt would have just gone faster if people voted ;-)", "timestamp": "2016-11-22 10:30:42", "update_id": 64000, "user_id": 222, "id": 524829, "testcase_feedback": [], "user": {"name": "hguemar", "email": "karlthered@gmail.com", "id": 222, "avatar": "https://seccdn.libravatar.org/avatar/21751e7ac6415a04d74130ce9b3235b7e41d8a15e71f7fc40c5bec45e493a516?s=24&d=retro", "openid": "hguemar.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "python-sig"}, {"name": "openstack-sig"}, {"name": "sig-storage"}, {"name": "gitbeefymiracle"}, {"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "python-packagers-sig"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "gitovirt"}, {"name": "fedora-contributor"}, {"name": "centosproject-email-aliases"}, {"name": "atomic-wg"}]}}}, {"karma": 1, "comment_id": 535018, "bug_id": 1069036, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me. Although 3.2.3 contains a critical security issue, see https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES", "timestamp": "2016-12-12 10:02:57", "update_id": 64000, "user_id": 1879, "id": 535018, "testcase_feedback": [], "user": {"name": "prupert", "email": "pim@lemonbit.com", "id": 1879, "avatar": "https://seccdn.libravatar.org/avatar/ccadc73ba34ef9ddb6a23ef5b23f9daaf3190422dea21f025b2e42bf85560429?s=24&d=retro", "openid": "prupert.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "trust admins"}]}}}, {"karma": 1, "comment_id": 535839, "bug_id": 1069036, "comment": {"karma": 0, "karma_critpath": 0, "text": "Has passed testing here as well. \n\nkarma: +1", "timestamp": "2016-12-13 22:08:33", "update_id": 64000, "user_id": 207, "id": 535839, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 549388, "bug_id": 1069036, "comment": {"karma": 1, "karma_critpath": 0, "text": "We ran it in production for a few days. No issues whatsoever.", "timestamp": "2017-01-16 10:33:40", "update_id": 64000, "user_id": 3262, "id": 549388, "testcase_feedback": [], "user": {"name": "leoluk", "email": "mail@leoschabel.de", "id": 3262, "avatar": "https://seccdn.libravatar.org/avatar/45a66c530acb64db8fe4e68966f5ffbf6cf39b0c2152433fbba43b71a22d9263?s=24&d=retro", "openid": "leoluk.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 574040, "bug_id": 1069036, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-03-13 08:17:09", "update_id": 64000, "user_id": 374, "id": 574040, "testcase_feedback": [], "user": {"name": "stevetraylen", "email": "steve.traylen@cern.ch", "id": 374, "avatar": "https://seccdn.libravatar.org/avatar/5eeaecee99771110b69c4fc782c5d460826adafcd677f1642ed046a7e20870ff?s=24&d=retro", "openid": "stevetraylen.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "centosproject-email-aliases"}, {"name": "sig-sclo"}]}}}]}, {"bug_id": 1228332, "title": "redis: Lua sandbox escape and arbitrary code execution [epel-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 524829, "bug_id": 1228332, "comment": {"karma": 0, "karma_critpath": 0, "text": "Considering the number of people asking me to push that update ...\nIt would have just gone faster if people voted ;-)", "timestamp": "2016-11-22 10:30:42", "update_id": 64000, "user_id": 222, "id": 524829, "testcase_feedback": [], "user": {"name": "hguemar", "email": "karlthered@gmail.com", "id": 222, "avatar": "https://seccdn.libravatar.org/avatar/21751e7ac6415a04d74130ce9b3235b7e41d8a15e71f7fc40c5bec45e493a516?s=24&d=retro", "openid": "hguemar.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "python-sig"}, {"name": "openstack-sig"}, {"name": "sig-storage"}, {"name": "gitbeefymiracle"}, {"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "python-packagers-sig"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "gitovirt"}, {"name": "fedora-contributor"}, {"name": "centosproject-email-aliases"}, {"name": "atomic-wg"}]}}}, {"karma": 1, "comment_id": 535018, "bug_id": 1228332, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me. Although 3.2.3 contains a critical security issue, see https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES", "timestamp": "2016-12-12 10:02:57", "update_id": 64000, "user_id": 1879, "id": 535018, "testcase_feedback": [], "user": {"name": "prupert", "email": "pim@lemonbit.com", "id": 1879, "avatar": "https://seccdn.libravatar.org/avatar/ccadc73ba34ef9ddb6a23ef5b23f9daaf3190422dea21f025b2e42bf85560429?s=24&d=retro", "openid": "prupert.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "trust admins"}]}}}, {"karma": 1, "comment_id": 535839, "bug_id": 1228332, "comment": {"karma": 0, "karma_critpath": 0, "text": "Has passed testing here as well. \n\nkarma: +1", "timestamp": "2016-12-13 22:08:33", "update_id": 64000, "user_id": 207, "id": 535839, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 549388, "bug_id": 1228332, "comment": {"karma": 1, "karma_critpath": 0, "text": "We ran it in production for a few days. No issues whatsoever.", "timestamp": "2017-01-16 10:33:40", "update_id": 64000, "user_id": 3262, "id": 549388, "testcase_feedback": [], "user": {"name": "leoluk", "email": "mail@leoschabel.de", "id": 3262, "avatar": "https://seccdn.libravatar.org/avatar/45a66c530acb64db8fe4e68966f5ffbf6cf39b0c2152433fbba43b71a22d9263?s=24&d=retro", "openid": "leoluk.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 574040, "bug_id": 1228332, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-03-13 08:17:09", "update_id": 64000, "user_id": 374, "id": 574040, "testcase_feedback": [], "user": {"name": "stevetraylen", "email": "steve.traylen@cern.ch", "id": 374, "avatar": "https://seccdn.libravatar.org/avatar/5eeaecee99771110b69c4fc782c5d460826adafcd677f1642ed046a7e20870ff?s=24&d=retro", "openid": "stevetraylen.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "centosproject-email-aliases"}, {"name": "sig-sclo"}]}}}]}, {"bug_id": 1278967, "title": "CVE-2015-8080 redis: Integer wraparound in lua_struct.c causing stack-based buffer overflow [epel-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 524829, "bug_id": 1278967, "comment": {"karma": 0, "karma_critpath": 0, "text": "Considering the number of people asking me to push that update ...\nIt would have just gone faster if people voted ;-)", "timestamp": "2016-11-22 10:30:42", "update_id": 64000, "user_id": 222, "id": 524829, "testcase_feedback": [], "user": {"name": "hguemar", "email": "karlthered@gmail.com", "id": 222, "avatar": "https://seccdn.libravatar.org/avatar/21751e7ac6415a04d74130ce9b3235b7e41d8a15e71f7fc40c5bec45e493a516?s=24&d=retro", "openid": "hguemar.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "python-sig"}, {"name": "openstack-sig"}, {"name": "sig-storage"}, {"name": "gitbeefymiracle"}, {"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "python-packagers-sig"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "gitovirt"}, {"name": "fedora-contributor"}, {"name": "centosproject-email-aliases"}, {"name": "atomic-wg"}]}}}, {"karma": 1, "comment_id": 535018, "bug_id": 1278967, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me. Although 3.2.3 contains a critical security issue, see https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES", "timestamp": "2016-12-12 10:02:57", "update_id": 64000, "user_id": 1879, "id": 535018, "testcase_feedback": [], "user": {"name": "prupert", "email": "pim@lemonbit.com", "id": 1879, "avatar": "https://seccdn.libravatar.org/avatar/ccadc73ba34ef9ddb6a23ef5b23f9daaf3190422dea21f025b2e42bf85560429?s=24&d=retro", "openid": "prupert.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "trust admins"}]}}}, {"karma": 0, "comment_id": 535839, "bug_id": 1278967, "comment": {"karma": 0, "karma_critpath": 0, "text": "Has passed testing here as well. \n\nkarma: +1", "timestamp": "2016-12-13 22:08:33", "update_id": 64000, "user_id": 207, "id": 535839, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 549388, "bug_id": 1278967, "comment": {"karma": 1, "karma_critpath": 0, "text": "We ran it in production for a few days. No issues whatsoever.", "timestamp": "2017-01-16 10:33:40", "update_id": 64000, "user_id": 3262, "id": 549388, "testcase_feedback": [], "user": {"name": "leoluk", "email": "mail@leoschabel.de", "id": 3262, "avatar": "https://seccdn.libravatar.org/avatar/45a66c530acb64db8fe4e68966f5ffbf6cf39b0c2152433fbba43b71a22d9263?s=24&d=retro", "openid": "leoluk.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 574040, "bug_id": 1278967, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-03-13 08:17:09", "update_id": 64000, "user_id": 374, "id": 574040, "testcase_feedback": [], "user": {"name": "stevetraylen", "email": "steve.traylen@cern.ch", "id": 374, "avatar": "https://seccdn.libravatar.org/avatar/5eeaecee99771110b69c4fc782c5d460826adafcd677f1642ed046a7e20870ff?s=24&d=retro", "openid": "stevetraylen.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "centosproject-email-aliases"}, {"name": "sig-sclo"}]}}}]}, {"bug_id": 1363670, "title": "CVE-2013-7458 redis: world-readable ~/.rediscli_history", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 513681, "bug_id": 1363670, "comment": {"karma": 1, "karma_critpath": 0, "text": "Installs, service starts, and benchmark works. Don't forget to push your updates. This update is 2 months old.", "timestamp": "2016-10-28 15:09:13", "update_id": 63999, "user_id": 457, "id": 513681, "testcase_feedback": [], "user": {"name": "mooninite", "email": "mike@cchtml.com", "id": 457, "avatar": "https://seccdn.libravatar.org/avatar/8b3c41993362b402769daf7b9e159cd28a40b2552f96c93bba03f32d4d68d127?s=24&d=retro", "openid": "mooninite.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}]}}}, {"karma": 0, "comment_id": 524829, "bug_id": 1363670, "comment": {"karma": 0, "karma_critpath": 0, "text": "Considering the number of people asking me to push that update ...\nIt would have just gone faster if people voted ;-)", "timestamp": "2016-11-22 10:30:42", "update_id": 64000, "user_id": 222, "id": 524829, "testcase_feedback": [], "user": {"name": "hguemar", "email": "karlthered@gmail.com", "id": 222, "avatar": "https://seccdn.libravatar.org/avatar/21751e7ac6415a04d74130ce9b3235b7e41d8a15e71f7fc40c5bec45e493a516?s=24&d=retro", "openid": "hguemar.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "python-sig"}, {"name": "openstack-sig"}, {"name": "sig-storage"}, {"name": "gitbeefymiracle"}, {"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "python-packagers-sig"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "gitovirt"}, {"name": "fedora-contributor"}, {"name": "centosproject-email-aliases"}, {"name": "atomic-wg"}]}}}, {"karma": 1, "comment_id": 535018, "bug_id": 1363670, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me. Although 3.2.3 contains a critical security issue, see https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES", "timestamp": "2016-12-12 10:02:57", "update_id": 64000, "user_id": 1879, "id": 535018, "testcase_feedback": [], "user": {"name": "prupert", "email": "pim@lemonbit.com", "id": 1879, "avatar": "https://seccdn.libravatar.org/avatar/ccadc73ba34ef9ddb6a23ef5b23f9daaf3190422dea21f025b2e42bf85560429?s=24&d=retro", "openid": "prupert.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "trust admins"}]}}}, {"karma": 1, "comment_id": 535839, "bug_id": 1363670, "comment": {"karma": 0, "karma_critpath": 0, "text": "Has passed testing here as well. \n\nkarma: +1", "timestamp": "2016-12-13 22:08:33", "update_id": 64000, "user_id": 207, "id": 535839, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 549388, "bug_id": 1363670, "comment": {"karma": 1, "karma_critpath": 0, "text": "We ran it in production for a few days. No issues whatsoever.", "timestamp": "2017-01-16 10:33:40", "update_id": 64000, "user_id": 3262, "id": 549388, "testcase_feedback": [], "user": {"name": "leoluk", "email": "mail@leoschabel.de", "id": 3262, "avatar": "https://seccdn.libravatar.org/avatar/45a66c530acb64db8fe4e68966f5ffbf6cf39b0c2152433fbba43b71a22d9263?s=24&d=retro", "openid": "leoluk.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 574040, "bug_id": 1363670, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-03-13 08:17:09", "update_id": 64000, "user_id": 374, "id": 574040, "testcase_feedback": [], "user": {"name": "stevetraylen", "email": "steve.traylen@cern.ch", "id": 374, "avatar": "https://seccdn.libravatar.org/avatar/5eeaecee99771110b69c4fc782c5d460826adafcd677f1642ed046a7e20870ff?s=24&d=retro", "openid": "stevetraylen.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "centosproject-email-aliases"}, {"name": "sig-sclo"}]}}}]}, {"bug_id": 1363672, "title": "CVE-2013-7458 redis: world-readable ~/.rediscli_history [epel-all]", "security": true, "parent": false, "feedback": [{"karma": 0, "comment_id": 524829, "bug_id": 1363672, "comment": {"karma": 0, "karma_critpath": 0, "text": "Considering the number of people asking me to push that update ...\nIt would have just gone faster if people voted ;-)", "timestamp": "2016-11-22 10:30:42", "update_id": 64000, "user_id": 222, "id": 524829, "testcase_feedback": [], "user": {"name": "hguemar", "email": "karlthered@gmail.com", "id": 222, "avatar": "https://seccdn.libravatar.org/avatar/21751e7ac6415a04d74130ce9b3235b7e41d8a15e71f7fc40c5bec45e493a516?s=24&d=retro", "openid": "hguemar.id.fedoraproject.org", "groups": [{"name": "provenpackager"}, {"name": "packager"}, {"name": "python-sig"}, {"name": "openstack-sig"}, {"name": "sig-storage"}, {"name": "gitbeefymiracle"}, {"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "python-packagers-sig"}, {"name": "fedorabugs"}, {"name": "ambassadors"}, {"name": "gitovirt"}, {"name": "fedora-contributor"}, {"name": "centosproject-email-aliases"}, {"name": "atomic-wg"}]}}}, {"karma": 1, "comment_id": 535018, "bug_id": 1363672, "comment": {"karma": 1, "karma_critpath": 0, "text": "Works for me. Although 3.2.3 contains a critical security issue, see https://raw.githubusercontent.com/antirez/redis/3.2/00-RELEASENOTES", "timestamp": "2016-12-12 10:02:57", "update_id": 64000, "user_id": 1879, "id": 535018, "testcase_feedback": [], "user": {"name": "prupert", "email": "pim@lemonbit.com", "id": 1879, "avatar": "https://seccdn.libravatar.org/avatar/ccadc73ba34ef9ddb6a23ef5b23f9daaf3190422dea21f025b2e42bf85560429?s=24&d=retro", "openid": "prupert.id.fedoraproject.org", "groups": [{"name": "ipausers"}, {"name": "signed_fpca"}, {"name": "trust admins"}]}}}, {"karma": 1, "comment_id": 535839, "bug_id": 1363672, "comment": {"karma": 0, "karma_critpath": 0, "text": "Has passed testing here as well. \n\nkarma: +1", "timestamp": "2016-12-13 22:08:33", "update_id": 64000, "user_id": 207, "id": 535839, "testcase_feedback": [], "user": {"name": "anonymous", "email": null, "id": 207, "avatar": "https://seccdn.libravatar.org/avatar/37a8eec1ce19687d132fe29051dca629d164e2c4958ba141d5f4133a33f0688f?s=24&d=retro", "openid": "anonymous.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 549388, "bug_id": 1363672, "comment": {"karma": 1, "karma_critpath": 0, "text": "We ran it in production for a few days. No issues whatsoever.", "timestamp": "2017-01-16 10:33:40", "update_id": 64000, "user_id": 3262, "id": 549388, "testcase_feedback": [], "user": {"name": "leoluk", "email": "mail@leoschabel.de", "id": 3262, "avatar": "https://seccdn.libravatar.org/avatar/45a66c530acb64db8fe4e68966f5ffbf6cf39b0c2152433fbba43b71a22d9263?s=24&d=retro", "openid": "leoluk.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 574040, "bug_id": 1363672, "comment": {"karma": 1, "karma_critpath": 0, "text": "", "timestamp": "2017-03-13 08:17:09", "update_id": 64000, "user_id": 374, "id": 574040, "testcase_feedback": [], "user": {"name": "stevetraylen", "email": "steve.traylen@cern.ch", "id": 374, "avatar": "https://seccdn.libravatar.org/avatar/5eeaecee99771110b69c4fc782c5d460826adafcd677f1642ed046a7e20870ff?s=24&d=retro", "openid": "stevetraylen.id.fedoraproject.org", "groups": [{"name": "packager"}, {"name": "provenpackager"}, {"name": "ipausers"}, {"name": "fedora-contributor"}, {"name": "signed_fpca"}, {"name": "fedorabugs"}, {"name": "centosproject-email-aliases"}, {"name": "sig-sclo"}]}}}]}], "updateid": "FEDORA-EPEL-2016-23fa04bf1c", "karma": 3, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}