StarlingX

  1. Bug #2009334
  2. Comment #1

Comment 1 for bug 2009334

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to integ (master)

Reviewed: https://review.opendev.org/c/starlingx/integ/+/876989
Committed: https://opendev.org/starlingx/integ/commit/46e734ac4edc3a76868bdaa9b13d7c3001dafdac
Submitter: "Zuul (22348)"
Branch: master

commit 46e734ac4edc3a76868bdaa9b13d7c3001dafdac
Author: Zhixiong Chi <email address hidden>
Date: Thu Mar 9 10:02:42 2023 -0500

    Debian: haproxy: CVE-2023-0056,CVE-2023-25725

    Upgrade haproxy from "2.2.9-2+deb11u3" to "2.2.9-2+deb11u4" to
    fix below CVEs:
    CVE-2023-0056
    CVE-2023-25725

    Refer to:
    https://www.debian.org/security/2023/dsa-5348
    https://security-tracker.debian.org/tracker/DSA-5348-1

    Test Plan:
    PASS: $downloader
    PASS: $build-pkgs --clean --parallel 10
    PASS: $build-image
    PASS: Jenkins Installation
    PASS: Validation that the package version has been upgraded.

    Closes-Bug: 2009334

    Signed-off-by: Zhixiong Chi <email address hidden>
    Change-Id: Ibe076cb75deaa212fb954aa880324220165a5523