StarlingX

  1. Bug #2047673
  2. Comment #2

Comment 2 for bug 2047673

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to tools (master)

Reviewed: https://review.opendev.org/c/starlingx/tools/+/904481
Committed: https://opendev.org/starlingx/tools/commit/29ec4cfeaa483e2d0153d612e59589d72f187276
Submitter: "Zuul (22348)"
Branch: master

commit 29ec4cfeaa483e2d0153d612e59589d72f187276
Author: Zhixiong Chi <email address hidden>
Date: Thu Dec 28 18:54:16 2023 -0800

    libssh: Upgrade to 0.9.8-0+deb11u1

    Upgrade libssh-4 and libssh-dev to 0.9.8-0+deb11u1 to fix the CVE
    issues CVE-2023-6004/CVE-2023-6918/CVE-2023-48795

    Refer to:
    https://security-tracker.debian.org/tracker/DSA-5591-1
    https://nvd.nist.gov/vuln/detail/CVE-2023-6004
    https://nvd.nist.gov/vuln/detail/CVE-2023-6918
    https://nvd.nist.gov/vuln/detail/CVE-2023-48795

    Closes-Bug: 2047673

    Change-Id: I03397c7ca51e569b12387c8f86f79dbe0781a1df
    Signed-off-by: Zhixiong Chi <email address hidden>