StarlingX

  1. Bug #2054275
  2. Comment #2

Comment 2 for bug 2054275

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to tools (master)

Reviewed: https://review.opendev.org/c/starlingx/tools/+/910141
Committed: https://opendev.org/starlingx/tools/commit/e819e5f1443b2df796fe07603dc270cbf1b00870
Submitter: "Zuul (22348)"
Branch: master

commit e819e5f1443b2df796fe07603dc270cbf1b00870
Author: Peng Zhang <email address hidden>
Date: Wed Feb 21 07:37:15 2024 +0000

    bind9: Upgrade to 1:9.16.48-1

    Upgrade package bind9-dnsutils, bind9-host and bind9-libs from
    1:9.16.44-1~deb11u1 to 1:9.16.48-1 in order to fixing following
    CVE issues:
    1.CVE-2023-4408
    2.CVE-2023-5517
    3.CVE-2023-5679
    4.CVE-2023-50387
    5.CVE-2023-50868
    6.CVE-2023-6516.

    Refer to:
    https://nvd.nist.gov/vuln/detail/CVE-2023-4408
    https://nvd.nist.gov/vuln/detail/CVE-2023-5517
    https://nvd.nist.gov/vuln/detail/CVE-2023-5679
    https://nvd.nist.gov/vuln/detail/CVE-2023-50387
    https://nvd.nist.gov/vuln/detail/CVE-2023-50868
    https://nvd.nist.gov/vuln/detail/CVE-2023-6516
    https://security-tracker.debian.org/tracker/DSA-5621-1

    TestPlan:
    PASS: downloader; build-pkgs; build-image
    PASS: Jenkins Installation

    Closes-Bug: 2054275

    Change-Id: Ia672dfd46b71db404dee55a8a33e66a7d3580791
    Signed-off-by: Peng Zhang <email address hidden>