Test Plan:
a. In builder, run:
$rm /import/mirrors/starlingx/binaries/curl*
$rm /import/mirrors/starlingx/binaries/libcurl*
$downloader -b $repo_manage.py list_pkgs -r deb-local-binary
Check the required curl and libcurl packages are in the repository
b. $build-pkgs --clean --parallel 10
$build-image
Boot the iso image on board and check that the new
packages have been installed.
Closes-Bug: 2006412
Signed-off-by: Haiqing Bai <email address hidden>
Change-Id: Ie53841c64eda404856e513c337f98f0125122c98
Reviewed: https:/ /review. opendev. org/c/starlingx /tools/ +/874187 /opendev. org/starlingx/ tools/commit/ 1340364ee7e6396 05b46ec216f250a 9cbcdb5940
Committed: https:/
Submitter: "Zuul (22348)"
Branch: master
commit 1340364ee7e6396 05b46ec216f250a 9cbcdb5940
Author: Haiqing Bai <email address hidden>
Date: Fri Feb 17 10:47:07 2023 +0800
Debian: curl: CVE-2022- 32221,CVE- 2022-43552
Upgrade curl, libcurl3-gnutls, libcurl4, libcurl4- gnutls- dev, openssl- dev from "7.74.0- 1.3+deb11u3" to 74.0-1. 3+deb11u5" to fix below CVEs:
libcurl4-
"7.
CVE-2022-32221
CVE-2022-43552
Refer to: /security- tracker. debian. org/tracker/ DSA-5330- 1 /security- tracker. debian. org/tracker/ DLA-3288- 1
https:/
https:/
Test Plan: mirrors/ starlingx/ binaries/ curl* mirrors/ starlingx/ binaries/ libcurl*
$repo_manage. py list_pkgs -r deb-local-binary
a. In builder, run:
$rm /import/
$rm /import/
$downloader -b
Check the required curl and libcurl packages are in the repository
b. $build-pkgs --clean --parallel 10
$build-image
Boot the iso image on board and check that the new
packages have been installed.
Closes-Bug: 2006412
Signed-off-by: Haiqing Bai <email address hidden> 4856e513c337f98 f0125122c98
Change-Id: Ie53841c64eda40