Skip to content

Bump repositories for CVE-2026-31431 (Copy Fail)#2299

Merged
bbezak merged 1 commit intostackhpc/2025.1from
bump-repo-versions
May 7, 2026
Merged

Bump repositories for CVE-2026-31431 (Copy Fail)#2299
bbezak merged 1 commit intostackhpc/2025.1from
bump-repo-versions

Conversation

@priteau
Copy link
Copy Markdown
Member

@priteau priteau commented May 7, 2026

This includes Rocky Linux kernels fixing the Copy Fail vulnerability. Mitigation on Ubuntu is applied through an updated kmod package [1].

[1] https://ubuntu.com/blog/copy-fail-vulnerability-fixes-available

@priteau priteau self-assigned this May 7, 2026
@priteau priteau requested a review from a team as a code owner May 7, 2026 07:46
gemini-code-assist[bot]
gemini-code-assist Bot reviewed May 7, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@gemini-code-assist gemini-code-assist Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code Review

This pull request updates the autogenerated version timestamps for various Pulp repositories in etc/kayobe/pulp-repo-versions.yml, including CentOS Stream, Docker, ELRepo, EPEL, Grafana, RabbitMQ, Rocky Linux, and Ubuntu. As there are no review comments provided, I have no further feedback to offer.

@priteau priteau force-pushed the bump-repo-versions branch from 798942b to 25dd60c Compare May 7, 2026 07:49
@priteau
Copy link
Copy Markdown
Member Author

priteau commented May 7, 2026

/gemini review

gemini-code-assist[bot]
gemini-code-assist Bot reviewed May 7, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

@gemini-code-assist gemini-code-assist Bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Code Review

This pull request updates various repository version timestamps in etc/kayobe/pulp-repo-versions.yml to newer May 2026 versions. These updates address CVE-2026-31431 (Copy Fail), as documented in the newly added security release note. I have no feedback to provide as there were no review comments to assess.

@priteau @bbezak
Bump repositories for CVE-2026-31431 (Copy Fail)
2e89053 
This includes Rocky Linux kernels fixing the Copy Fail vulnerability.
Mitigation on Ubuntu is applied through an updated kmod package [1].

[1] https://ubuntu.com/blog/copy-fail-vulnerability-fixes-available
@bbezak bbezak force-pushed the bump-repo-versions branch from 25dd60c to 2e89053 Compare May 7, 2026 09:27
@bbezak
Copy link
Copy Markdown
Member

bbezak commented May 7, 2026

is the next step to build container images out of those repos ?

@priteau
Copy link
Copy Markdown
Member Author

priteau commented May 7, 2026

is the next step to build container images out of those repos ?

It can be done in another pull request, since the priority here is to ship the new kernel to customers.

@bbezak bbezak merged commit b4232c5 into stackhpc/2025.1 May 7, 2026
16 of 22 checks passed
@bbezak bbezak deleted the bump-repo-versions branch May 7, 2026 09:45
@bbezak
Copy link
Copy Markdown
Member

bbezak commented May 7, 2026
edited
Loading

is the next step to build container images out of those repos ?

It can be done in another pull request, since the priority here is to ship the new kernel to customers.

and we need new doca build for new kernel for instance

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@cityofships cityofships cityofships approved these changes

@bbezak bbezak bbezak approved these changes

+1 more reviewer

@gemini-code-assist gemini-code-assist[bot] gemini-code-assist[bot] left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

@priteau priteau

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@priteau @bbezak @cityofships