StarlingX

  1. Bug #1994099
  2. Comment #3

Comment 3 for bug 1994099

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to tools (master)

Reviewed: https://review.opendev.org/c/starlingx/tools/+/862366
Committed: https://opendev.org/starlingx/tools/commit/b299878b1e77f45ed8ebb190c0fa8afd321bad42
Submitter: "Zuul (22348)"
Branch: master

commit b299878b1e77f45ed8ebb190c0fa8afd321bad42
Author: Wentao Zhang <email address hidden>
Date: Mon Oct 31 08:36:15 2022 +0800

    Debian: bind9:fix CVE-2022-2795, CVE-2022-3080, CVE-2022-38177, CVE-2022-38178

    Upgrade bind9 to a version that the above CVEs have been fixed:
    bind9-dnsutils_1:9.16.27-1~deb11u1_amd64.deb to
    bind9-dnsutils_1:9.16.33-1~deb11u1_amd64.deb
    bind9-host_1:9.16.27-1~deb11u1_amd64.deb to
    bind9-host_1:9.16.33-1~deb11u1_amd64.deb
    bind9-libs_1:9.16.27-1~deb11u1_amd64.deb to
    bind9-libs_1:9.16.33-1~deb11u1_amd64.deb

    (Refer to https://www.debian.org/security/2022/dsa-5235)

    This fix provides the URL of the package in base-bullseye.lst to
    make sure that the binary package can be downloaded no matter how
    the upstream changes.

    Test plan:
    PASS: build-pkgs --clean --all && build-image

    Closes-bug: 1994099
    Signed-off-by: Wentao Zhang<email address hidden>
    Change-Id: I155dc621386339db337e0987c698e13634d36750