[#397376] p11 EPERM firefox-esr.git=firefox-esr/140.4.0-alt1

Girar awaiter (pav) girar-builder at altlinux.org
Fri Oct 17 08:42:13 MSK 2025 

https://git.altlinux.org/tasks/397376/logs/events.1.1.log
https://packages.altlinux.org/tasks/397376

subtask  name         aarch64   i586  x86_64
   #100  firefox-esr  2:15:34  39:34   38:34

2025-Oct-17 03:17:17 :: task #397376 for p11 started by pav:
2025-Oct-17 03:17:17 :: message: New_version_with_CVE
#100 build firefox-esr/140.4.0-alt1 from /gears/f/firefox-esr.git fetched at 2025-Oct-17 00:20:11 from sisyphus
2025-Oct-17 03:17:19 :: [aarch64] #100 firefox-esr.git firefox-esr/140.4.0-alt1: build start
2025-Oct-17 03:17:19 :: [x86_64] #100 firefox-esr.git firefox-esr/140.4.0-alt1: build start
2025-Oct-17 03:17:19 :: [i586] #100 firefox-esr.git firefox-esr/140.4.0-alt1: build start
2025-Oct-17 03:55:53 :: [x86_64] #100 firefox-esr.git firefox-esr/140.4.0-alt1: build OK
2025-Oct-17 03:56:53 :: [i586] #100 firefox-esr.git firefox-esr/140.4.0-alt1: build OK
2025-Oct-17 05:32:53 :: [aarch64] #100 firefox-esr.git firefox-esr/140.4.0-alt1: build OK
2025-Oct-17 05:33:22 :: 100: build check OK
2025-Oct-17 05:33:23 :: build check OK
2025-Oct-17 05:33:31 :: #100: firefox-esr.git firefox-esr/140.4.0-alt1: version check OK
2025-Oct-17 05:33:32 :: build version check OK
warning (#100): firefox-esr-config-privacy-140.4.0-alt1.x86_64.rpm should be .noarch.rpm
2025-Oct-17 05:35:14 :: noarch check OK
2025-Oct-17 05:35:16 :: plan: src +1 -1 =19867, aarch64 +3 -3 =34966, i586 +3 -3 =33976, x86_64 +3 -3 =35756
#100 firefox-esr 140.2.0-alt2 -> 140.4.0-alt1
 Wed Oct 15 2025 Pavel Vasenkov <pav at altlinux> 140.4.0-alt1
 - New ESR version.
 - Security fixes:
   + CVE-2025-11708 Use-after-free in MediaTrackGraphImpl::GetInstance()
   + CVE-2025-11709 Out of bounds read/write in a privileged process triggered by WebGL textures
   + CVE-2025-11710 Cross-process information leaked due to malicious IPC messages
   + CVE-2025-11711 Some non-writable Object properties could be modified
   + CVE-2025-11712 An OBJECT tag type attribute overrode browser behavior on web resources without a content-type
   + CVE-2025-11713 Potential user-assisted code execution in 'Copy as cURL' command
   + CVE-2025-11714 Memory safety bugs fixed in Firefox ESR 115.29, Firefox ESR 140.4, Thunderbird ESR 140.4, Firefox 144 and Thunderbird 144
 [...]
2025-Oct-17 05:35:16 :: firefox-esr: mentions vulnerabilities: CVE-2025-11708 CVE-2025-11709 CVE-2025-11710 CVE-2025-11711 CVE-2025-11712 CVE-2025-11713 CVE-2025-11714 CVE-2025-11715 CVE-2025-10527 CVE-2025-10528 CVE-2025-10529 CVE-2025-10532 CVE-2025-10533 CVE-2025-10536 CVE-2025-10537
2025-Oct-17 05:36:04 :: patched apt indices
2025-Oct-17 05:36:14 :: created next repo
2025-Oct-17 05:36:24 :: duplicate provides check OK
2025-Oct-17 05:37:03 :: dependencies check OK
2025-Oct-17 05:37:39 :: [x86_64 i586 aarch64] ELF symbols check OK
	i586: firefox-esr=140.4.0-alt1 post-install unowned files:
 /usr/share/gnome-shell
 /usr/share/gnome-shell/search-providers
 /usr/share/icons/hicolor/22x22
 /usr/share/icons/hicolor/22x22/apps
 /usr/share/icons/hicolor/24x24
 /usr/share/icons/hicolor/24x24/apps
 /usr/share/icons/hicolor/256x256
 /usr/share/icons/hicolor/256x256/apps
2025-Oct-17 05:38:08 :: [i586] #100 firefox-esr: install check OK
	x86_64: firefox-esr=140.4.0-alt1 post-install unowned files:
 /usr/share/gnome-shell
 /usr/share/gnome-shell/search-providers
 /usr/share/icons/hicolor/22x22
 /usr/share/icons/hicolor/22x22/apps
 /usr/share/icons/hicolor/24x24
 /usr/share/icons/hicolor/24x24/apps
 /usr/share/icons/hicolor/256x256
 /usr/share/icons/hicolor/256x256/apps
2025-Oct-17 05:38:13 :: [x86_64] #100 firefox-esr: install check OK
	aarch64: firefox-esr=140.4.0-alt1 post-install unowned files:
 /usr/share/gnome-shell
 /usr/share/gnome-shell/search-providers
 /usr/share/icons/hicolor/22x22
 /usr/share/icons/hicolor/22x22/apps
 /usr/share/icons/hicolor/24x24
 /usr/share/icons/hicolor/24x24/apps
 /usr/share/icons/hicolor/256x256
 /usr/share/icons/hicolor/256x256/apps
2025-Oct-17 05:38:30 :: [i586] #100 firefox-esr-config-privacy: install check OK
2025-Oct-17 05:38:30 :: [aarch64] #100 firefox-esr: install check OK
2025-Oct-17 05:38:35 :: [x86_64] #100 firefox-esr-config-privacy: install check OK
2025-Oct-17 05:39:01 :: [i586] #100 firefox-esr-debuginfo: install check OK
2025-Oct-17 05:39:04 :: [aarch64] #100 firefox-esr-config-privacy: install check OK
2025-Oct-17 05:39:37 :: [x86_64] #100 firefox-esr-debuginfo: install check OK
2025-Oct-17 05:40:37 :: [aarch64] #100 firefox-esr-debuginfo: install check OK
2025-Oct-17 05:40:38 :: [x86_64-i586] plan: #1 +1 -1 =11732
2025-Oct-17 05:41:16 :: [x86_64-i586] arepo build OK
2025-Oct-17 05:41:32 :: [x86_64-i586] generated apt indices
2025-Oct-17 05:41:33 :: [x86_64-i586] created next repo
2025-Oct-17 05:41:44 :: [x86_64-i586] dependencies check OK
2025-Oct-17 05:41:46 :: gears inheritance check OK
2025-Oct-17 05:41:46 :: srpm inheritance check OK
girar-check-perms: access to firefox-esr DENIED for pav: project `firefox-esr' is not listed in the acl file for repository `p11', and the policy for such projects in `p11' is to deny
check-subtask-perms: #100: firefox-esr: needs approvals from members of @maint and @tester groups
2025-Oct-17 05:41:48 :: acl check FAILED
2025-Oct-17 05:42:00 :: created contents_index files
2025-Oct-17 05:42:10 :: created hash files: aarch64 i586 src x86_64-i586 x86_64
2025-Oct-17 05:42:13 :: task #397376 for p11 EPERM

More information about the Girar-builder-p11 mailing list