Back to bug 2132867
| Who | When | What | Removed | Added |
|---|---|---|---|---|
| Avinash Hanwate | 2022-10-07 04:58:53 UTC | CC | amctagga, aoconnor, bniver, bodavis, dbenoit, emachado, flucifre, gmeno, jistone, jpadman, mbenjamin, mhackett, mnewsome, sipoyare, sostapov, tstellar, vereddy | |
| Avinash Hanwate | 2022-10-07 04:59:16 UTC | CC | ailan, virt-maint | |
| Avinash Hanwate | 2022-10-07 04:59:45 UTC | CC | jwendell, ovanders, rcernich | |
| Avinash Hanwate | 2022-10-07 05:05:57 UTC | Depends On | 2132878, 2132879 | |
| Avinash Hanwate | 2022-10-07 05:10:27 UTC | Summary | CVE-2022-2879 archive/tar: unbounded memory consumption when reading headers | CVE-2022-2879 golang: archive/tar: unbounded memory consumption when reading headers |
| Avinash Hanwate | 2022-10-07 05:10:55 UTC | CC | jwendell, ovanders, rcernich | |
| Avinash Hanwate | 2022-10-07 05:11:06 UTC | CC | ansmith, bbaude, bcl, bcoca, bkundu, chazlett, cnv-qe-bugs, cwelton, davidn, dcadzow, dkenigsb, dwalsh, epacific, etamir, fdeutsch, jcammara, jchui, jhardy, jligon, jneedle, jnovy, jobarker, joelsmith, jwon, krathod, lball, lsm5, mabashia, matzew, mboddu, mcressma, mheon, mokumar, nbecker, ocs-bugs, oramraz, osapryki, osbuilders, pehunt, pjindal, pthomas, rhuss, rrajasek, saroy, sgott, simaishi, smcdonal, smullick, tkral, tsweeney, umohnani, yguenane, zsadeh | |
| Avinash Hanwate | 2022-10-07 05:11:21 UTC | CC | bdettelb, dwhatley, dymurray, eglynn, gparvin, hchiramm, ibolton, jcantril, jjoyce, jmatthew, jmontleo, jramanat, lhh, madam, mburns, mgarciac, njean, pahickey, periklis, rhos-maint, slucidi, spower, sseago, stcannon, whayutin | |
| Avinash Hanwate | 2022-10-07 05:11:45 UTC | CC | jwendell, ovanders, rcernich | |
| Sage McTaggart | 2022-10-11 20:27:48 UTC | CC | ansmith, bbaude, bcl, bcoca, bdettelb, bkundu, chazlett, cnv-qe-bugs, cwelton, davidn, dcadzow, dkenigsb, dwalsh, dwhatley, dymurray, eglynn, epacific, etamir, fdeutsch, gparvin, hchiramm, ibolton, jcammara, jcantril, jchui, jhardy, jjoyce, jligon, jmatthew, jmontleo, jneedle, jnovy, jobarker, joelsmith, jramanat, jwendell, jwon, krathod, lball, lhh, lsm5, mabashia, madam, matzew, mboddu, mburns, mcressma, mgarciac, mheon, mokumar, nbecker, njean, ocs-bugs, oramraz, osapryki, osbuilders, ovanders, pahickey, pehunt, periklis, pjindal, pthomas, rcernich, rhos-maint, rhuss, rrajasek, saroy, sgott, simaishi, slucidi, smcdonal, smullick, spower, sseago, stcannon, tkral, tsweeney, umohnani, whayutin, yguenane, zsadeh | |
| Sage McTaggart | 2022-10-11 20:28:04 UTC | CC | ansmith, bbaude, bcl, bcoca, bkundu, chazlett, cnv-qe-bugs, cwelton, davidn, dcadzow, dkenigsb, dwalsh, epacific, etamir, fdeutsch, jcammara, jchui, jhardy, jligon, jneedle, jnovy, jobarker, joelsmith, jwon, krathod, lball, lsm5, mabashia, matzew, mboddu, mcressma, mheon, mokumar, nbecker, ocs-bugs, oramraz, osapryki, osbuilders, oskutka, pehunt, pjindal, pthomas, rhuss, rrajasek, saroy, sgott, simaishi, smcdonal, smullick, tkral, tsweeney, umohnani, yguenane, zsadeh | |
| Sage McTaggart | 2022-10-11 20:28:18 UTC | CC | bdettelb, dwhatley, dymurray, eglynn, gparvin, hchiramm, ibolton, jcantril, jjoyce, jmatthew, jmontleo, jramanat, lhh, madam, mburns, mgarciac, njean, pahickey, periklis, rhos-maint, slucidi, spower, sseago, stcannon, whayutin | |
| Sage McTaggart | 2022-10-11 20:28:42 UTC | CC | jwendell, ovanders, rcernich | |
| Sage McTaggart | 2022-10-11 20:38:32 UTC | Depends On | 2133924, 2133918, 2133921, 2133923, 2133922, 2133917, 2133916, 2133920, 2133919, 2133915 | |
| TEJ RATHI | 2022-10-13 07:50:02 UTC | CC | jburrell, vkumar | |
| Borja Tarraso | 2022-10-13 08:06:33 UTC | Depends On | 2134345 | |
| TEJ RATHI | 2022-10-13 11:30:56 UTC | Depends On | 2134407, 2134406, 2134405 | |
| TEJ RATHI | 2022-10-13 12:33:22 UTC | Depends On | 2134442, 2134443, 2134441 | |
| TEJ RATHI | 2022-10-13 12:55:17 UTC | Depends On | 2134450, 2134445, 2134449, 2134447, 2134446, 2134448 | |
| TEJ RATHI | 2022-10-13 13:11:07 UTC | Depends On | 2134453, 2134456, 2134457, 2134454, 2134455 | |
| TEJ RATHI | 2022-10-13 13:18:53 UTC | Depends On | 2134468, 2134467 | |
| Nick Tait | 2022-10-15 19:40:39 UTC | CC | cnv-qe-bugs, sgott | |
| Stoyan Nikolov | 2022-10-17 07:44:37 UTC | CC | ansmith, bcoca, chazlett, cwelton, davidn, epacific, etamir, hchiramm, jcammara, jcantril, jhardy, jneedle, jobarker, joelsmith, jwon, krathod, lball, mabashia, madam, matzew, mcressma, mokumar, nbecker, ocs-bugs, osapryki, periklis, pjindal, rhuss, rrajasek, saroy, simaishi, smcdonal, yguenane, zsadeh | |
| Stoyan Nikolov | 2022-10-17 07:45:07 UTC | CC | ansmith, bcoca, chazlett, cnv-qe-bugs, cwelton, davidn, epacific, etamir, jcammara, jhardy, jneedle, jobarker, joelsmith, jwon, krathod, lball, mabashia, matzew, mcressma, mokumar, nbecker, ocs-bugs, osapryki, pjindal, rhuss, rrajasek, saroy, sgott, simaishi, smcdonal, yguenane, zsadeh | |
| Stoyan Nikolov | 2022-10-17 07:45:36 UTC | CC | hchiramm, jcantril, madam, periklis | |
| Stoyan Nikolov | 2022-10-17 08:55:19 UTC | Depends On | 2133921 | |
| Stoyan Nikolov | 2022-10-17 09:09:25 UTC | CC | cnv-qe-bugs, sgott | |
| Tomáš Král | 2022-10-21 07:26:39 UTC | CC | tkral | |
| David Benoit | 2022-10-21 14:33:46 UTC | Depends On | 2136835 | |
| David Benoit | 2022-10-21 15:11:14 UTC | Depends On | 2136839 | |
| David Benoit | 2022-10-21 15:11:53 UTC | Depends On | 2136841 | |
| David Benoit | 2022-10-21 15:23:12 UTC | Depends On | 2136843 | |
| David Benoit | 2022-10-21 15:31:55 UTC | Depends On | 2136849 | |
| Mauro Matteo Cascella | 2022-10-24 10:52:55 UTC | Depends On | 2136717 | |
| Mauro Matteo Cascella | 2022-10-24 10:53:03 UTC | Depends On | 2136718 | |
| Mauro Matteo Cascella | 2022-10-24 10:53:11 UTC | Depends On | 2136719 | |
| Mauro Matteo Cascella | 2022-10-24 10:53:21 UTC | Depends On | 2136720 | |
| Mauro Matteo Cascella | 2022-10-24 10:53:41 UTC | Depends On | 2136721 | |
| Mauro Matteo Cascella | 2022-10-24 10:53:52 UTC | Depends On | 2136722 | |
| Mauro Matteo Cascella | 2022-10-24 10:54:01 UTC | Depends On | 2136723 | |
| Red Hat Bugzilla | 2022-10-28 13:12:36 UTC | CC | krathod | |
| Vipul Nair | 2022-10-31 15:21:59 UTC | Depends On | 2138891 | |
| Avinash Hanwate | 2022-11-01 04:10:22 UTC | Doc Text | A flaw was found in the golang package. Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panic. After fixing, Reader.Read limits the maximum size of header blocks to 1 MiB. | |
| CC | adudiak, tfister | |||
| RaTasha Tillery-Smith | 2022-11-01 12:19:02 UTC | Doc Text | A flaw was found in the golang package. Reader.Read does not set a limit on the maximum size of file headers. A maliciously crafted archive could cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panic. After fixing, Reader.Read limits the maximum size of header blocks to 1 MiB. | A flaw was found in the golang package, where Reader.Read does not set a limit on the maximum size of file headers. After fixing, Reader.Read limits the maximum size of header blocks to 1 MiB. This flaw allows a maliciously crafted archive to cause Read to allocate unbounded amounts of memory, potentially causing resource exhaustion or panic. |
| errata-xmlrpc | 2022-12-08 07:37:53 UTC | Link ID | Red Hat Product Errata RHSA-2022:8781 | |
| Red Hat Bugzilla | 2022-12-31 20:04:34 UTC | CC | hchiramm | |
| Red Hat Bugzilla | 2023-01-01 05:32:59 UTC | CC | amctagga | |
| Red Hat Bugzilla | 2023-01-01 05:47:22 UTC | CC | flucifre | |
| Red Hat Bugzilla | 2023-01-01 05:52:56 UTC | CC | mhackett | |
| Red Hat Bugzilla | 2023-01-01 06:02:40 UTC | CC | bniver | |
| Red Hat Bugzilla | 2023-01-01 08:35:23 UTC | CC | mbenjamin | |
| Red Hat Bugzilla | 2023-01-01 08:44:37 UTC | CC | sostapov | |
| Red Hat Bugzilla | 2023-01-01 08:47:00 UTC | CC | vereddy | |
| Alasdair Kergon | 2023-01-04 04:55:31 UTC | CC | hchiramm | |
| Alasdair Kergon | 2023-01-04 05:43:50 UTC | CC | sostapov | |
| Alasdair Kergon | 2023-01-04 06:11:25 UTC | CC | bniver | |
| Alasdair Kergon | 2023-01-04 06:19:28 UTC | CC | mbenjamin | |
| Alasdair Kergon | 2023-01-04 06:29:04 UTC | CC | vereddy | |
| Alasdair Kergon | 2023-01-04 06:43:51 UTC | CC | flucifre | |
| Alasdair Kergon | 2023-01-04 11:29:24 UTC | CC | mhackett | |
| Sam Fowler | 2023-01-13 00:15:06 UTC | CC | sfowler | |
| errata-xmlrpc | 2023-01-17 19:37:28 UTC | Link ID | Red Hat Product Errata RHSA-2022:7399 | |
| errata-xmlrpc | 2023-01-19 11:04:35 UTC | Link ID | Red Hat Product Errata RHSA-2023:0264 | |
| Red Hat Bugzilla | 2023-01-20 05:18:53 UTC | CC | cwelton | |
| errata-xmlrpc | 2023-01-23 15:20:28 UTC | Link ID | Red Hat Product Errata RHSA-2023:0328 | |
| errata-xmlrpc | 2023-01-25 08:31:06 UTC | Link ID | Red Hat Product Errata RHSA-2023:0445 | |
| errata-xmlrpc | 2023-01-25 09:15:59 UTC | Link ID | Red Hat Product Errata RHSA-2023:0446 | |
| errata-xmlrpc | 2023-01-30 17:20:51 UTC | Link ID | Red Hat Product Errata RHSA-2023:0542 | |
| Red Hat Bugzilla | 2023-01-31 22:27:28 UTC | CC | nbecker | |
| Red Hat Bugzilla | 2023-01-31 22:28:17 UTC | CC | etamir | |
| Red Hat Bugzilla | 2023-01-31 23:37:00 UTC | CC | madam | |
| Josh Stone | 2023-02-02 02:06:44 UTC | CC | jistone | |
| Red Hat Bugzilla | 2023-02-03 23:11:37 UTC | CC | ovanders | |
| Red Hat Bugzilla | 2023-02-08 00:54:46 UTC | CC | hchiramm | |
| errata-xmlrpc | 2023-02-09 02:18:02 UTC | Link ID | Red Hat Product Errata RHSA-2023:0693 | |
| errata-xmlrpc | 2023-02-09 09:26:10 UTC | Link ID | Red Hat Product Errata RHSA-2023:0708 | |
| errata-xmlrpc | 2023-02-09 12:05:36 UTC | Link ID | Red Hat Product Errata RHSA-2023:0709 | |
| errata-xmlrpc | 2023-02-16 14:14:19 UTC | Link ID | Red Hat Product Errata RHSA-2023:0727 | |
| Red Hat Bugzilla | 2023-02-22 01:15:38 UTC | CC | dkenigsb | |
| errata-xmlrpc | 2023-03-06 16:24:48 UTC | Link ID | Red Hat Product Errata RHSA-2023:1079 | |
| errata-xmlrpc | 2023-03-06 18:40:50 UTC | Link ID | Red Hat Product Errata RHSA-2023:1042 | |
| errata-xmlrpc | 2023-03-09 01:25:08 UTC | Link ID | Red Hat Product Errata RHSA-2023:1174 | |
| Product Security DevOps Team | 2023-03-09 05:24:18 UTC | Status | NEW | CLOSED |
| Resolution | --- | ERRATA | ||
| Last Closed | 2023-03-09 05:24:18 UTC | |||
| errata-xmlrpc | 2023-05-09 07:17:48 UTC | Link ID | Red Hat Product Errata RHSA-2023:2204 | |
| errata-xmlrpc | 2023-05-16 08:11:43 UTC | Link ID | Red Hat Product Errata RHSA-2023:2780 | |
| errata-xmlrpc | 2023-05-18 02:55:27 UTC | Link ID | Red Hat Product Errata RHSA-2023:3205 | |
| Joel Smith | 2023-06-21 15:50:19 UTC | CC | joelsmith | |
| errata-xmlrpc | 2023-06-22 19:51:58 UTC | Link ID | Red Hat Product Errata RHSA-2023:3742 | |
| errata-xmlrpc | 2023-06-26 01:16:01 UTC | Link ID | Red Hat Product Errata RHSA-2023:3613 | |
| errata-xmlrpc | 2023-07-10 08:51:08 UTC | Link ID | Red Hat Product Errata RHSA-2023:4003 | |
| Chess Hazlett | 2023-07-17 19:00:56 UTC | CC | ataylor, jross, rkieley |
Back to bug 2132867