StarlingX

Bug #2012868
Comment #2

Comment 2 for bug 2012868

Revision history for this message

OpenStack Infra (hudson-openstack) wrote on 2023-04-11: Fix merged to tools (master)

Reviewed: https://review.opendev.org/c/starlingx/tools/+/879344
Committed: https://opendev.org/starlingx/tools/commit/6ebfca01f4505f7e4f1d89e034e0b9382a343323
Submitter: "Zuul (22348)"
Branch: master

commit 6ebfca01f4505f7e4f1d89e034e0b9382a343323
Author: Zhang Xiao <email address hidden>
Date: Mon Apr 3 21:17:58 2023 +0800

Debian: syslog-ng: fix CVE-2022-38725

    Upgrade packages to below version to fix CVE-2022-38725:
    syslog-ng_3.28.1-2+deb11u1_all.deb
    syslog-ng-core_3.28.1-2+deb11u1_amd64.deb
    syslog-ng-mod-mongodb_3.28.1-2+deb11u1_amd64.deb
    syslog-ng-mod-sql_3.28.1-2+deb11u1_amd64.deb

Refer to:
https://nvd.nist.gov/vuln/detail/CVE-2022-38725

    Test Plan:
    Pass: downloader
    Pass: build-pkgs --clean --all
    Pass: build-image
    Pass: boot

Closes-bug: #2012868

Signed-off-by: Zhang Xiao <email address hidden>
Change-Id: I5577da009521ac8e76abc35926d48f6a1955bc22