StarlingX

  1. Bug #2006412
  2. Comment #4

Comment 4 for bug 2006412

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to tools (master)

Reviewed: https://review.opendev.org/c/starlingx/tools/+/874187
Committed: https://opendev.org/starlingx/tools/commit/1340364ee7e639605b46ec216f250a9cbcdb5940
Submitter: "Zuul (22348)"
Branch: master

commit 1340364ee7e639605b46ec216f250a9cbcdb5940
Author: Haiqing Bai <email address hidden>
Date: Fri Feb 17 10:47:07 2023 +0800

    Debian: curl: CVE-2022-32221,CVE-2022-43552

    Upgrade curl, libcurl3-gnutls, libcurl4, libcurl4-gnutls-dev,
    libcurl4-openssl-dev from "7.74.0-1.3+deb11u3" to
    "7.74.0-1.3+deb11u5" to fix below CVEs:
    CVE-2022-32221
    CVE-2022-43552

    Refer to:
    https://security-tracker.debian.org/tracker/DSA-5330-1
    https://security-tracker.debian.org/tracker/DLA-3288-1

    Test Plan:
    a. In builder, run:
       $rm /import/mirrors/starlingx/binaries/curl*
       $rm /import/mirrors/starlingx/binaries/libcurl*
       $downloader -b
       $repo_manage.py list_pkgs -r deb-local-binary
       Check the required curl and libcurl packages are in the repository
    b. $build-pkgs --clean --parallel 10
       $build-image
       Boot the iso image on board and check that the new
       packages have been installed.

    Closes-Bug: 2006412

    Signed-off-by: Haiqing Bai <email address hidden>
    Change-Id: Ie53841c64eda404856e513c337f98f0125122c98