You are here
Home > Preporuke > Sigurnosni nedostaci programskog paketa openqa

Sigurnosni nedostaci programskog paketa openqa

  • Detalji os-a: WN7
  • Važnost: IMP
  • Operativni sustavi: L
  • Kategorije: LFE

Fedora Update Notification
2019-08-11 01:11:43.672603

Name : openqa
Product : Fedora 30
Version : 4.6
Release : 18.20190716git5bfa647.fc30.2
Summary : OS-level automated testing framework
Description :
openQA is a testing framework that allows you to test GUI applications on one
hand and bootloader and kernel on the other. In both cases, it is difficult to
script tests and verify the output. Output can be a popup window or it can be
an error in early boot even before init is executed.

openQA is an automated test tool that makes it possible to test the whole
installation process of an operating system. It uses virtual machines to
reproduce the process, check the output (both serial console and screen) in
every step and send the necessary keystrokes and commands to proceed to the
next. openQA can check whether the system can be installed, whether it works
properly in ‘live’ mode, whether applications work or whether the system
responds as expected to different installation options and commands.

Even more importantly, openQA can run several combinations of tests for every
revision of the operating system, reporting the errors detected for each
combination of hardware configuration, installation options and variant of the
operating system.

Update Information:

This update provides recent git snapshots of os-autoinst and openQA, with the
usual slate of bug fixes and changes from upstream. Also, the AMQP plugin is now
enabled, as the dependencies have been packaged into Fedora. The update also
addresses some potential security issues.

* Thu Aug 1 2019 Adam Williamson <> – 4.6-18.20190716git5bfa647.fc30.2
– Backport PR #2232 (faster and safer markdown rendering)
– Allow comments by users again (safe with PR #2232)
* Wed Jul 31 2019 Adam Williamson <> – 4.6-18.20190716git5bfa647.fc30.1
– Only allow operators and admins to post comments (security issue)
* Thu Jul 25 2019 Adam Williamson <> – 4.6-18.20190716git5bfa647
– Backport PR #2213 (fixes vulnerability to maliciously-formed API requests)
– Backport PR #2217 (allow passing headers to publish_amqp)
* Thu Jul 25 2019 Fedora Release Engineering <> – 4.6-17.20190716git5bfa647
– Rebuilt for
* Tue Jul 16 2019 Adam Williamson <> – 4.6-16.20190716git5bfa647
– Update to latest git again, re-sync spec with upstream
– Enable AMQP plugin now the dependencies are packaged
– Backport some PRs to fix some test failures
* Mon Jun 3 2019 Adam Williamson <> – 4.6-15.20190603git8a35385
– Update to latest git again
– Fix update auto restart plugin for upstream changes
* Fri May 24 2019 Adam Williamson <> – 4.6-14.20190522gitab91f31
– Update to latest git again
– Drop merged patch

This update can be installed with the “dnf” update program. Use
su -c ‘dnf upgrade –advisory FEDORA-2019-c404576415’ at the command
line. For more information, refer to the dnf documentation available at

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
package-announce mailing list —
To unsubscribe send an email to
Fedora Code of Conduct:
List Guidelines:
List Archives:

AutorZvonimir Bosnjak
Cert idNCERT-REF-2019-08-0001-ADV
More in Preporuke
Sigurnosni nedostaci programskog paketa os-autoinst

Otkriveni su sigurnosni nedostaci u programskom paketu os-autoinst za operacijski sustav Fedora. Otkriveni nedostaci potencijalnim napadačima omogućuju izvođenje nespecificiranih vrsta...