StarlingX

  1. Bug #2009336
  2. Comment #2

Comment 2 for bug 2009336

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to tools (master)

Reviewed: https://review.opendev.org/c/starlingx/tools/+/877073
Committed: https://opendev.org/starlingx/tools/commit/875df53cafcc10a63479777d37ac24aceff58da2
Submitter: "Zuul (22348)"
Branch: master

commit 875df53cafcc10a63479777d37ac24aceff58da2
Author: Li Zhou <email address hidden>
Date: Thu Mar 9 10:23:34 2023 +0800

    Debian: openssl: fix CVE-2022-4450/CVE-2023-0215

    Upgrade packages to below version to fix CVE-2022-4450/CVE-2023-0215:
    libssl1.1_1.1.1n-0+deb11u4_amd64.deb
    libssl-dev_1.1.1n-0+deb11u4_amd64.deb
    openssl_1.1.1n-0+deb11u4_amd64.deb

    Refer to:
    https://security-tracker.debian.org/tracker/CVE-2022-4450
    https://security-tracker.debian.org/tracker/CVE-2023-0215

    Test Plan:
    Pass: downloader
    Pass: build-pkgs --clean --all
    Pass: build-image
    Pass: boot

    Closes-bug: #2009336

    Signed-off-by: Li Zhou <email address hidden>
    Change-Id: Ieb7f59020e7e3e54bde0693f860d74850d10914b