StarlingX

  1. Bug #2054276
  2. Comment #2

Comment 2 for bug 2054276

Revision history for this message
OpenStack Infra (hudson-openstack) wrote : Fix merged to tools (master)

Reviewed: https://review.opendev.org/c/starlingx/tools/+/910140
Committed: https://opendev.org/starlingx/tools/commit/24d8e4e82cb91a3a18fad701765b9299b96359b2
Submitter: "Zuul (22348)"
Branch: master

commit 24d8e4e82cb91a3a18fad701765b9299b96359b2
Author: Peng Zhang <email address hidden>
Date: Wed Feb 21 07:15:41 2024 +0000

    libunbound: Upgrade to 1.13.1-1+deb11u2

    Upgrade package libunbound8 and libunbound-dev from 1.13.1-1+deb11u1
    to 1.13.1-1+deb11u2 in order to fixing the CVE issue CVE-2023-50387
    and CVE-2023-50868.

    Refer to:
    https://nvd.nist.gov/vuln/detail/CVE-2023-50387
    https://nvd.nist.gov/vuln/detail/CVE-2023-50868
    https://security-tracker.debian.org/tracker/DSA-5620-1

    TestPlan:
    PASS: downloader; build-pkgs; build-image
    PASS: Jenkins Installation

    Closes-Bug: 2054276

    Change-Id: I646be1b0d6c0f8be2108a68d1ac1c9ad78eee519
    Signed-off-by: Peng Zhang <email address hidden>