{"update": {"autokarma": true, "autotime": false, "stable_karma": 1, "stable_days": 0, "unstable_karma": -3, "require_bugs": false, "require_testcases": false, "display_name": "", "notes": "OpenSSL\n=======\n\nSecurity Fixes\n--------------\n\n  * A memory leak flaw was found in the way OpenSSL handled TLS status request extension data during session renegotiation. A remote attacker could cause a TLS server using OpenSSL to consume an excessive amount of memory and, possibly, exit unexpectedly after exhausting all available memory, if it enabled OCSP stapling support. (CVE-2016-6304)\n  * It was discovered that OpenSSL did not always use constant time operations when computing Digital Signature Algorithm (DSA) signatures. A local attacker could possibly use this flaw to obtain a private DSA key belonging to another user or service running on the same system. (CVE-2016-2178)\n  * It was discovered that the Datagram TLS (DTLS) implementation could fail to release memory in certain cases. A malicious DTLS client could cause a DTLS server using OpenSSL to consume an excessive amount of memory and, possibly, exit unexpectedly after exhausting all available memory. (CVE-2016-2179)\n  * A flaw was found in the Datagram TLS (DTLS) replay protection implementation in OpenSSL. A remote attacker could possibly use this flaw to make a DTLS server using OpenSSL to reject further packets sent from a DTLS client over an established DTLS connection. (CVE-2016-2181)\n  * An out of bounds write flaw was discovered in the OpenSSL BN_bn2dec() function. An attacker able to make an application using OpenSSL to process a large BIGNUM could cause the application to crash or, possibly, execute arbitrary code. (CVE-2016-2182)\n  * A flaw was found in the DES/3DES cipher was used as part of the TLS/SSL protocol. A man-in-the-middle attacker could use this flaw to recover some plaintext data by capturing large amounts of encrypted traffic between TLS/SSL server and client if the communication used a DES/3DES based ciphersuite. (CVE-2016-2183)\n  * This update mitigates the CVE-2016-2183 issue by lowering priority of DES cipher suites so they are not preferred over cipher suites using AES. For compatibility reasons, DES cipher suites remain enabled by default and included in the set of cipher suites identified by the HIGH cipher string. Future updates may move them to MEDIUM or not enable them by default.\n  * An integer underflow flaw leading to a buffer over-read was found in the way OpenSSL parsed TLS session tickets. A remote attacker could use this flaw to crash a TLS server using OpenSSL if it used SHA-512 as HMAC for session tickets. (CVE-2016-6302)\n  * Multiple integer overflow flaws were found in the way OpenSSL performed pointer arithmetic. A remote attacker could possibly use these flaws to cause a TLS/SSL server or client using OpenSSL to crash. (CVE-2016-2177)\n  * An out of bounds read flaw was found in the way OpenSSL formatted Public Key Infrastructure Time-Stamp Protocol data for printing. An attacker could possibly cause an application using OpenSSL to crash if it printed time stamp data from the attacker. (CVE-2016-2180)\n  * Multiple out of bounds read flaws were found in the way OpenSSL handled certain TLS/SSL protocol handshake messages. A remote attacker could possibly use these flaws to crash a TLS/SSL server or client using OpenSSL. (CVE-2016-6306)", "type": "security", "status": "stable", "request": null, "severity": "high", "suggest": "reboot", "locked": false, "pushed": true, "critpath": false, "critpath_groups": null, "close_bugs": true, "date_submitted": "2016-09-27 22:00:49", "date_modified": null, "date_approved": null, "date_testing": "2016-09-29 00:58:14", "date_stable": "2016-10-13 17:11:53", "alias": "FEDORA-EPEL-2016-803d3bfa1a", "test_gating_status": null, "from_tag": null, "date_pushed": "2016-10-13 17:11:53", "meets_testing_requirements": false, "url": "https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2016-803d3bfa1a", "title": "openssl101e-1.0.1e-9.el5", "version_hash": "88598f2d6cc1c45f3747de27a0f03e912a7c144f", "release": {"name": "EL-5", "long_name": "Fedora EPEL 5", "version": "5", "id_prefix": "FEDORA-EPEL", "branch": "el5", "dist_tag": "dist-5E-epel", "stable_tag": "dist-5E-epel", "testing_tag": "dist-5E-epel-testing", "candidate_tag": "dist-5E-epel-testing-candidate", "pending_signing_tag": "", "pending_testing_tag": "", "pending_stable_tag": "", "override_tag": "dist-5E-epel-override", "mail_template": "fedora_epel_legacy_errata_template", "state": "archived", "composed_by_bodhi": true, "create_automatic_updates": null, "package_manager": "unspecified", "testing_repository": null, "released_on": null, "eol": null, "critpath_mandatory_days_in_testing": 14, "mandatory_days_in_testing": 7, "critpath_min_karma": 2, "min_karma": 1, "setting_status": null}, "user": {"name": "robert", "email": "redhat@linuxnetz.de", "id": 172, "avatar": "https://seccdn.libravatar.org/avatar/5ce2f7b6de1c95bdf5b1d0f117f568f9955a164c0916ea7552b5db21bf3e689a?s=24&d=retro", "openid": "robert.id.fedoraproject.org", "groups": [{"name": "proventesters"}, {"name": "provenpackager"}, {"name": "packager"}, {"name": "ipausers"}, {"name": "ambassadors"}, {"name": "campusambassadors"}, {"name": "gitfedora-web"}, {"name": "fedora-contributor"}, {"name": "advocates"}, {"name": "fedorabugs"}, {"name": "gitsecurity-spin"}, {"name": "signed_fpca"}, {"name": "gitfama"}, {"name": "epel-packagers-sig"}, {"name": "web"}, {"name": "clamav"}]}, "comments": [{"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for testing by robert. ", "timestamp": "2016-09-27 22:00:49", "update_id": 68933, "user_id": 91, "id": 496014, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to testing.", "timestamp": "2016-09-29 01:16:31", "update_id": 68933, "user_id": 91, "id": 496747, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has reached 14 days in testing and can be pushed to stable now if the maintainer wishes", "timestamp": "2016-10-13 06:00:18", "update_id": 68933, "user_id": 91, "id": 506565, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been submitted for stable by robert. ", "timestamp": "2016-10-13 09:40:10", "update_id": 68933, "user_id": 91, "id": 506713, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}, {"karma": 0, "karma_critpath": 0, "text": "This update has been pushed to stable.", "timestamp": "2016-10-13 17:48:35", "update_id": 68933, "user_id": 91, "id": 506845, "bug_feedback": [], "testcase_feedback": [], "user": {"name": "bodhi", "email": null, "id": 91, "avatar": "https://apps.fedoraproject.org/img/icons/bodhi-24.png", "openid": "bodhi.id.fedoraproject.org", "groups": []}}], "builds": [{"nvr": "openssl101e-1.0.1e-9.el5", "signed": true, "release_id": 9, "type": "rpm", "epoch": 0}], "bugs": [{"bug_id": 1341705, "title": "CVE-2016-2177 openssl: Possible integer overflow vulnerabilities in codebase", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 494424, "bug_id": 1341705, "comment": {"karma": 1, "karma_critpath": 1, "text": "deployed on Sep 22 18:05 to production machines, long before it was in updates-testing which takes reapeatly way too long at Fedora", "timestamp": "2016-09-26 09:39:01", "update_id": 68741, "user_id": 182, "id": 494424, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494425, "bug_id": 1341705, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-26 09:43:15", "update_id": 68741, "user_id": 182, "id": 494425, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494862, "bug_id": 1341705, "comment": {"karma": 1, "karma_critpath": 1, "text": "after running non-critical infrastructure for some hours now depleyoed to production machines", "timestamp": "2016-09-26 18:07:51", "update_id": 68741, "user_id": 182, "id": 494862, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 495948, "bug_id": 1341705, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions noted.", "timestamp": "2016-09-27 18:06:21", "update_id": 68741, "user_id": 194, "id": 495948, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}]}, {"bug_id": 1341708, "title": "CVE-2016-2177 openssl101e: openssl: Possible integer overflow vulnerabilities in codebase [epel-5]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1343400, "title": "CVE-2016-2178 openssl: Non-constant time codepath followed for certain operations in DSA implementation", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 494424, "bug_id": 1343400, "comment": {"karma": 1, "karma_critpath": 1, "text": "deployed on Sep 22 18:05 to production machines, long before it was in updates-testing which takes reapeatly way too long at Fedora", "timestamp": "2016-09-26 09:39:01", "update_id": 68741, "user_id": 182, "id": 494424, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494425, "bug_id": 1343400, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-26 09:43:15", "update_id": 68741, "user_id": 182, "id": 494425, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494862, "bug_id": 1343400, "comment": {"karma": 1, "karma_critpath": 1, "text": "after running non-critical infrastructure for some hours now depleyoed to production machines", "timestamp": "2016-09-26 18:07:51", "update_id": 68741, "user_id": 182, "id": 494862, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 495948, "bug_id": 1343400, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions noted.", "timestamp": "2016-09-27 18:06:21", "update_id": 68741, "user_id": 194, "id": 495948, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}]}, {"bug_id": 1343403, "title": "CVE-2016-2178 openssl101e: openssl: Non-constant time codepath followed for certain operations in DSA implementation [epel-5]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1359615, "title": "CVE-2016-2180 OpenSSL: OOB read in TS_OBJ_print_bio()", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 494424, "bug_id": 1359615, "comment": {"karma": 1, "karma_critpath": 1, "text": "deployed on Sep 22 18:05 to production machines, long before it was in updates-testing which takes reapeatly way too long at Fedora", "timestamp": "2016-09-26 09:39:01", "update_id": 68741, "user_id": 182, "id": 494424, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494425, "bug_id": 1359615, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-26 09:43:15", "update_id": 68741, "user_id": 182, "id": 494425, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494862, "bug_id": 1359615, "comment": {"karma": 1, "karma_critpath": 1, "text": "after running non-critical infrastructure for some hours now depleyoed to production machines", "timestamp": "2016-09-26 18:07:51", "update_id": 68741, "user_id": 182, "id": 494862, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 495948, "bug_id": 1359615, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions noted.", "timestamp": "2016-09-27 18:06:21", "update_id": 68741, "user_id": 194, "id": 495948, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}]}, {"bug_id": 1359618, "title": "CVE-2016-2180 openssl101e: OpenSSL: OOB read in TS_OBJ_print_bio() [epel-5]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1367340, "title": "CVE-2016-2182 openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec()", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 494424, "bug_id": 1367340, "comment": {"karma": 1, "karma_critpath": 1, "text": "deployed on Sep 22 18:05 to production machines, long before it was in updates-testing which takes reapeatly way too long at Fedora", "timestamp": "2016-09-26 09:39:01", "update_id": 68741, "user_id": 182, "id": 494424, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494425, "bug_id": 1367340, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-26 09:43:15", "update_id": 68741, "user_id": 182, "id": 494425, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494862, "bug_id": 1367340, "comment": {"karma": 1, "karma_critpath": 1, "text": "after running non-critical infrastructure for some hours now depleyoed to production machines", "timestamp": "2016-09-26 18:07:51", "update_id": 68741, "user_id": 182, "id": 494862, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 495948, "bug_id": 1367340, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions noted.", "timestamp": "2016-09-27 18:06:21", "update_id": 68741, "user_id": 194, "id": 495948, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}]}, {"bug_id": 1367345, "title": "CVE-2016-2182 openssl101e: openssl: Out-of-bounds write caused by unchecked errors in BN_bn2dec() [epel-5]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1369113, "title": "CVE-2016-2181 openssl: DTLS replay protection bypass allows DoS against DTLS connection", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 494424, "bug_id": 1369113, "comment": {"karma": 1, "karma_critpath": 1, "text": "deployed on Sep 22 18:05 to production machines, long before it was in updates-testing which takes reapeatly way too long at Fedora", "timestamp": "2016-09-26 09:39:01", "update_id": 68741, "user_id": 182, "id": 494424, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494425, "bug_id": 1369113, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-26 09:43:15", "update_id": 68741, "user_id": 182, "id": 494425, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494862, "bug_id": 1369113, "comment": {"karma": 1, "karma_critpath": 1, "text": "after running non-critical infrastructure for some hours now depleyoed to production machines", "timestamp": "2016-09-26 18:07:51", "update_id": 68741, "user_id": 182, "id": 494862, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 495948, "bug_id": 1369113, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions noted.", "timestamp": "2016-09-27 18:06:21", "update_id": 68741, "user_id": 194, "id": 495948, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}]}, {"bug_id": 1369116, "title": "CVE-2016-2181 openssl101e: openssl: DTLS replay protection bypass via sending large sequence number [epel-5]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1369383, "title": "CVE-2016-2183 SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)", "security": true, "parent": true, "feedback": []}, {"bug_id": 1369504, "title": "CVE-2016-2179 openssl: DTLS memory exhaustion DoS when messages are not removed from fragment buffer", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 494424, "bug_id": 1369504, "comment": {"karma": 1, "karma_critpath": 1, "text": "deployed on Sep 22 18:05 to production machines, long before it was in updates-testing which takes reapeatly way too long at Fedora", "timestamp": "2016-09-26 09:39:01", "update_id": 68741, "user_id": 182, "id": 494424, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494425, "bug_id": 1369504, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-26 09:43:15", "update_id": 68741, "user_id": 182, "id": 494425, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494862, "bug_id": 1369504, "comment": {"karma": 1, "karma_critpath": 1, "text": "after running non-critical infrastructure for some hours now depleyoed to production machines", "timestamp": "2016-09-26 18:07:51", "update_id": 68741, "user_id": 182, "id": 494862, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 495948, "bug_id": 1369504, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions noted.", "timestamp": "2016-09-27 18:06:21", "update_id": 68741, "user_id": 194, "id": 495948, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}]}, {"bug_id": 1369507, "title": "CVE-2016-2179 openssl101e: openssl: DoS attack by filling up the queue for future messages [epel-5]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1369855, "title": "CVE-2016-6302 openssl: Insufficient TLS session ticket HMAC length checks", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 494424, "bug_id": 1369855, "comment": {"karma": 1, "karma_critpath": 1, "text": "deployed on Sep 22 18:05 to production machines, long before it was in updates-testing which takes reapeatly way too long at Fedora", "timestamp": "2016-09-26 09:39:01", "update_id": 68741, "user_id": 182, "id": 494424, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494425, "bug_id": 1369855, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-26 09:43:15", "update_id": 68741, "user_id": 182, "id": 494425, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494862, "bug_id": 1369855, "comment": {"karma": 1, "karma_critpath": 1, "text": "after running non-critical infrastructure for some hours now depleyoed to production machines", "timestamp": "2016-09-26 18:07:51", "update_id": 68741, "user_id": 182, "id": 494862, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 495948, "bug_id": 1369855, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions noted.", "timestamp": "2016-09-27 18:06:21", "update_id": 68741, "user_id": 194, "id": 495948, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}]}, {"bug_id": 1369861, "title": "CVE-2016-6302 openssl101e: openssl: Insufficient ticket sanity checks [epel-5]", "security": true, "parent": false, "feedback": []}, {"bug_id": 1377594, "title": "CVE-2016-6306 openssl: certificate message OOB reads", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 494424, "bug_id": 1377594, "comment": {"karma": 1, "karma_critpath": 1, "text": "deployed on Sep 22 18:05 to production machines, long before it was in updates-testing which takes reapeatly way too long at Fedora", "timestamp": "2016-09-26 09:39:01", "update_id": 68741, "user_id": 182, "id": 494424, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494425, "bug_id": 1377594, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-26 09:43:15", "update_id": 68741, "user_id": 182, "id": 494425, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494862, "bug_id": 1377594, "comment": {"karma": 1, "karma_critpath": 1, "text": "after running non-critical infrastructure for some hours now depleyoed to production machines", "timestamp": "2016-09-26 18:07:51", "update_id": 68741, "user_id": 182, "id": 494862, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 495948, "bug_id": 1377594, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions noted.", "timestamp": "2016-09-27 18:06:21", "update_id": 68741, "user_id": 194, "id": 495948, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}]}, {"bug_id": 1377600, "title": "CVE-2016-6304 openssl: OCSP Status Request extension unbounded memory growth", "security": true, "parent": true, "feedback": [{"karma": 0, "comment_id": 494424, "bug_id": 1377600, "comment": {"karma": 1, "karma_critpath": 1, "text": "deployed on Sep 22 18:05 to production machines, long before it was in updates-testing which takes reapeatly way too long at Fedora", "timestamp": "2016-09-26 09:39:01", "update_id": 68741, "user_id": 182, "id": 494424, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494425, "bug_id": 1377600, "comment": {"karma": 0, "karma_critpath": 0, "text": "", "timestamp": "2016-09-26 09:43:15", "update_id": 68741, "user_id": 182, "id": 494425, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 494862, "bug_id": 1377600, "comment": {"karma": 1, "karma_critpath": 1, "text": "after running non-critical infrastructure for some hours now depleyoed to production machines", "timestamp": "2016-09-26 18:07:51", "update_id": 68741, "user_id": 182, "id": 494862, "testcase_feedback": [], "user": {"name": "hreindl", "email": "h.reindl@thelounge.net", "id": 182, "avatar": "https://seccdn.libravatar.org/avatar/664e0d25c0404b7a153b4dbc5dc1f3d1be6a2e9fd91115fbb929fe16a55d21d7?s=24&d=retro", "openid": "hreindl.id.fedoraproject.org", "groups": []}}}, {"karma": 0, "comment_id": 495948, "bug_id": 1377600, "comment": {"karma": 1, "karma_critpath": 1, "text": "No regressions noted.", "timestamp": "2016-09-27 18:06:21", "update_id": 68741, "user_id": 194, "id": 495948, "testcase_feedback": [], "user": {"name": "dhgutteridge", "email": "dhgutteridge@hotmail.com", "id": 194, "avatar": "https://seccdn.libravatar.org/avatar/95e7a46aa03707373935111628c2b387339f570b9175d20455a53fd00acafbcb?s=24&d=retro", "openid": "dhgutteridge.id.fedoraproject.org", "groups": [{"name": "ipausers"}]}}}]}, {"bug_id": 1378409, "title": "CVE-2016-6304 CVE-2016-6306 openssl101e: various flaws [epel-5]", "security": true, "parent": false, "feedback": []}], "updateid": "FEDORA-EPEL-2016-803d3bfa1a", "karma": 0, "content_type": "rpm", "test_cases": []}, "can_edit": false, "ci_allowed": false}