[#247748] p9 EPERM firefox-esr.git=esr/68.6.0-alt1
Girar Builder awaiter robot
girar-builder at altlinux.org
Thu Mar 12 20:35:47 MSK 2020
http://git.altlinux.org/tasks/247748/logs/events.1.1.log
2020-Mar-12 16:32:20 :: task #247748 for p9 started by cas:
2020-Mar-12 16:32:20 :: message: new_version_with_CVE
#100 build esr/68.6.0-alt1 from /gears/f/firefox-esr.git fetched at 2020-Mar-12 16:14:50
2020-Mar-12 16:32:21 :: [aarch64] #100 firefox-esr.git esr/68.6.0-alt1: build start
2020-Mar-12 16:32:21 :: [x86_64] #100 firefox-esr.git esr/68.6.0-alt1: build start
2020-Mar-12 16:32:21 :: [i586] #100 firefox-esr.git esr/68.6.0-alt1: build start
2020-Mar-12 16:32:21 :: [ppc64le] #100 firefox-esr.git esr/68.6.0-alt1: build start
2020-Mar-12 17:17:49 :: [x86_64] #100 firefox-esr.git esr/68.6.0-alt1: build OK
2020-Mar-12 17:25:56 :: [i586] #100 firefox-esr.git esr/68.6.0-alt1: build OK
2020-Mar-12 17:26:41 :: [aarch64] #100 firefox-esr.git esr/68.6.0-alt1: build OK
2020-Mar-12 17:29:14 :: [ppc64le] #100 firefox-esr.git esr/68.6.0-alt1: build OK
2020-Mar-12 17:29:44 :: #100: firefox-esr.git esr/68.6.0-alt1: build check OK
2020-Mar-12 17:29:44 :: build check OK
2020-Mar-12 17:30:39 :: noarch check OK
2020-Mar-12 17:30:41 :: plan: src +1 -1 =17869, aarch64 +2 -2 =29789, i586 +2 -2 =32003, noarch +1 -1 =18635, ppc64le +2 -2 =30137, x86_64 +2 -2 =32308
2020-Mar-12 17:30:41 :: version check OK
#100 firefox-esr 68.5.0-alt1 -> 68.6.0-alt1
Tue Mar 10 2020 Andrey Cherepanov <cas at altlinux> 68.6.0-alt1
- New ESR version (68.6.0).
- Fix license tag according to SPDX.
- Fixed:
+ CVE-2020-6805 Use-after-free when removing data about origins
+ CVE-2020-6806 BodyStream::OnInputStreamReady was missing protections against state confusion
+ CVE-2020-6807 Use-after-free in cubeb during stream destruction
+ CVE-2020-6811 Devtools' 'Copy as cURL' feature did not fully escape website-controlled data, potentially leading to command injection
+ CVE-2019-20503 Out of bounds reads in sctp_load_addresses_from_init
+ CVE-2020-6812 The names of AirPods with personally identifiable information were exposed to websites with camera or microphone permission
[...]
2020-Mar-12 17:30:41 :: firefox-esr: mentions vulnerabilities: CVE-2020-6805 CVE-2020-6806 CVE-2020-6807 CVE-2020-6811 CVE-2019-20503 CVE-2020-6812 CVE-2020-6814
2020-Mar-12 17:32:11 :: generated apt indices
2020-Mar-12 17:32:11 :: created next repo
2020-Mar-12 17:32:49 :: dependencies check OK
2020-Mar-12 17:33:26 :: [x86_64 i586 aarch64 ppc64le] ELF symbols check OK
2020-Mar-12 17:33:53 :: [x86_64] #100 firefox-esr: install check OK
2020-Mar-12 17:33:54 :: [i586] #100 firefox-esr: install check OK
2020-Mar-12 17:34:10 :: [x86_64] #100 firefox-esr-debuginfo: install check OK
2020-Mar-12 17:34:12 :: [i586] #100 firefox-esr-debuginfo: install check OK
2020-Mar-12 17:34:26 :: [x86_64] #100 firefox-esr-wayland: install check OK
2020-Mar-12 17:34:29 :: [i586] #100 firefox-esr-wayland: install check OK
2020-Mar-12 17:34:30 :: [x86_64-i586] plan: #1 +1 -1 =10623
2020-Mar-12 17:35:18 :: [x86_64-i586] arepo build OK
2020-Mar-12 17:35:35 :: [x86_64-i586] generated apt indices
2020-Mar-12 17:35:35 :: [x86_64-i586] created next repo
2020-Mar-12 17:35:44 :: [x86_64-i586] dependencies check OK
2020-Mar-12 17:35:45 :: gears inheritance check OK
2020-Mar-12 17:35:45 :: srpm inheritance check OK
girar-check-perms: access to @maint ALLOWED for cas: member of approved group
check-subtask-perms: #100: firefox-esr: allowed for cas, needs an approval from a member of @tester group
2020-Mar-12 17:35:47 :: acl check FAILED
2020-Mar-12 17:35:47 :: task #247748 for p9 EPERM
More information about the Sisyphus-incominger
mailing list