StarlingX

  1. Bug #2020724
  2. Comment #2

Comment 2 for bug 2020724

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to tools (master)

Reviewed: https://review.opendev.org/c/starlingx/tools/+/884799
Committed: https://opendev.org/starlingx/tools/commit/5568a7b51a2ac0f6a4b47db02decb791e4288afb
Submitter: "Zuul (22348)"
Branch: master

commit 5568a7b51a2ac0f6a4b47db02decb791e4288afb
Author: Haiqing Bai <email address hidden>
Date: Tue May 30 23:06:08 2023 +0800

    gnutls: fix CVE-2023-0361

    Upgrade:
    libgnutls28-dev to 3.7.1-5+deb11u3
    libgnutls30 to 3.7.1-5+deb11u3
    Added for build dependency:
    libgnutls-dane0 3.7.1-5+deb11u3
    libgnutls-openssl27 3.7.1-5+deb11u3
    libgnutlsxx28 3.7.1-5+deb11u3

    Refer to:
    https://security-tracker.debian.org/tracker/CVE-2023-0361

    Test Plan:
    Pass: downloader -b
    Pass: build-pkgs --clean
    Pass: build-image
    Pass: Jenkins Installation
    PASS: dpkg -l | grep libgnutls30
          ii libgnutls30:amd64 3.7.1-5+deb11u3

    Closes-Bug: 2020724

    Change-Id: If0a6aced49b6ab343e3231bec47155613aefdf72
    Signed-off-by: Haiqing Bai <email address hidden>