Bug 2162696

Summary: fatal transport file not allowed
Product: Red Hat Enterprise Linux 8 Reporter: Michal Kolar <mkolar>
Component: cmakeAssignee: Tom Stellard <tstellar>
Status: CLOSED ERRATA QA Contact: Lenka Špačková <lkuprova>
Severity: unspecified Docs Contact:
Priority: unspecified    
Version: 8.8CC: mcermak, sipoyare
Target Milestone: rcKeywords: Triaged
Target Release: ---Flags: pm-rhel: mirror+
Hardware: Unspecified   
OS: Unspecified   
Whiteboard:
Fixed In Version: cmake-3.20.2-5.el8 Doc Type: No Doc Update
Doc Text:
Story Points: ---
Clone Of:
: 2162700 2165799 (view as bug list) Environment:
Last Closed: 2023-05-16 08:42:16 UTC Type: Bug
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:
Bug Depends On:    
Bug Blocks: 2144443, 2162700, 2165799    

Description Michal Kolar 2023-01-20 14:22:20 UTC 
Description of problem:
ExternalProject and CTest.UpdateGIT fails due to git issue with message:
fatal: transport 'file' not allowed

Failure is probably caused by changes of default git behavior due to CVE-2022-39253. Tests should be modified to adapt to these changes.



Version-Release number of selected component (if applicable):
RHEL-8.8.0-20230114.0
cmake-3.20.2-4.el8
git-2.39.0-1.el8



How reproducible:
run internal tests ExternalProject and CTest.UpdateGIT



Additional info:
Test cases passes with git-2.31.1-2.el8.
https://github.blog/2022-10-18-git-security-vulnerabilities-announced/#cve-2022-39253
https://vielmetti.typepad.com/logbook/2022/10/git-security-fixes-lead-to-fatal-transport-file-not-allowed-error-in-ci-systems-cve-2022-39253.html
Comment 6 errata-xmlrpc 2023-05-16 08:42:16 UTC 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory (cmake bug fix and enhancement update), and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHBA-2023:2901