[#374980] p11 EPERM keycloak.git=26.1.2-alt1
Girar awaiter (cas)
girar-builder at altlinux.org
Sun Feb 16 18:39:44 MSK 2025
https://git.altlinux.org/tasks/374980/logs/events.1.1.log
https://packages.altlinux.org/tasks/374980
subtask name aarch64 i586 x86_64
#100 keycloak - - 4:28
2025-Feb-16 15:31:57 :: task #374980 for p11 started by cas:
2025-Feb-16 15:31:57 :: message: CVE_fixes
#100 build 26.1.2-alt1 from /gears/k/keycloak.git fetched at 2025-Feb-16 15:31:53 from sisyphus
2025-Feb-16 15:31:59 :: [i586] #100 keycloak.git 26.1.2-alt1: build start
2025-Feb-16 15:31:59 :: [x86_64] #100 keycloak.git 26.1.2-alt1: build start
2025-Feb-16 15:31:59 :: [aarch64] #100 keycloak.git 26.1.2-alt1: build start
2025-Feb-16 15:32:18 :: [i586] #100 keycloak.git 26.1.2-alt1: build SKIPPED
2025-Feb-16 15:32:25 :: [aarch64] #100 keycloak.git 26.1.2-alt1: build SKIPPED
2025-Feb-16 15:36:27 :: [x86_64] #100 keycloak.git 26.1.2-alt1: build OK
2025-Feb-16 15:36:37 :: #100: keycloak.git 26.1.2-alt1: build check OK
2025-Feb-16 15:36:38 :: build check OK
2025-Feb-16 15:36:38 :: noarch check OK
2025-Feb-16 15:36:39 :: plan: src +1 -1 =19694, x86_64 +1 -1 =34753
#100 keycloak 24.0.4-alt1 -> 26.1.2-alt1
Tue Feb 11 2025 Andrey Cherepanov <cas at altlinux> 26.1.2-alt1
- New version.
- Security fixes:
+ CVE-2024-11736 Unrestricted admin use of system and environment variables
+ CVE-2024-11734 Denial of Service in Keycloak Server via Security Headers
+ CVE-2024-10451 Sensitive Data Exposure in Keycloak Build Process
+ CVE-2024-10270 Potential Denial of Service
+ CVE-2024-10492 Keycloak path trasversal
+ CVE-2024-9666 Keycloak proxy header handling Denial-of-Service (DoS) vulnerability
+ CVE-2024-10039 Bypassing mTLS validation
[...]
2025-Feb-16 15:36:40 :: keycloak: closes bugs: 50434
2025-Feb-16 15:36:40 :: keycloak: mentions vulnerabilities: CVE-2024-11736 CVE-2024-11734 CVE-2024-10451 CVE-2024-10270 CVE-2024-10492 CVE-2024-9666 CVE-2024-10039 CVE-2021-44549 CVE-2024-8883 CVE-2024-8698 CVE-2024-7341
2025-Feb-16 15:37:17 :: patched apt indices
2025-Feb-16 15:37:25 :: created next repo
2025-Feb-16 15:37:35 :: duplicate provides check OK
2025-Feb-16 15:38:10 :: dependencies check OK
2025-Feb-16 15:38:20 :: [x86_64] ELF symbols check OK
x86_64: keycloak=26.1.2-alt1 post-install unowned files:
/tmp/hsperfdata_root
2025-Feb-16 15:38:56 :: [x86_64] #100 keycloak: install check OK
2025-Feb-16 15:39:12 :: [x86_64-i586] generated apt indices
2025-Feb-16 15:39:12 :: [x86_64-i586] created next repo
2025-Feb-16 15:39:21 :: [x86_64-i586] dependencies check OK
2025-Feb-16 15:39:22 :: gears inheritance check OK
2025-Feb-16 15:39:23 :: srpm inheritance check OK
girar-check-perms: access to @maint ALLOWED for cas: member of approved group
check-subtask-perms: #100: keycloak: allowed for cas, needs an approval from a member of @tester group
2025-Feb-16 15:39:24 :: acl check FAILED
2025-Feb-16 15:39:34 :: created contents_index files
2025-Feb-16 15:39:42 :: created hash files: src x86_64
2025-Feb-16 15:39:44 :: task #374980 for p11 EPERM
More information about the Sisyphus-incominger
mailing list