StarlingX

  1. Bug #2012866
  2. Comment #2

Comment 2 for bug 2012866

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to tools (master)

Reviewed: https://review.opendev.org/c/starlingx/tools/+/879341
Committed: https://opendev.org/starlingx/tools/commit/bfc56fefe6efc3abddc56308e452d51f8bad811f
Submitter: "Zuul (22348)"
Branch: master

commit bfc56fefe6efc3abddc56308e452d51f8bad811f
Author: Zhang Xiao <email address hidden>
Date: Mon Apr 3 21:14:25 2023 +0800

    Debian: apr: fix CVE-2022-24963

    Upgrade packages to below version to fix CVE-2022-24963:
    libapr1_1.7.0-6+deb11u2_amd64.deb

    Refer to:
    https://nvd.nist.gov/vuln/detail/CVE-2022-24963

    Test Plan:
    Pass: downloader
    Pass: build-pkgs --clean --all
    Pass: build-image
    Pass: boot

    Closes-bug: #2012866

    Signed-off-by: Zhang Xiao <email address hidden>
    Change-Id: Iba38bdadc2ded56324ef78f72e5b7a3b8e7e6834