starlingx
/
integ
Code Issues Proposed changes

haproxy: upgrade to 2.2.9-2+deb11u5 

Fix the CVE-2023-0836 issue:
5 bytes left uninitialized in the connection buffer

Refer to:
https://www.debian.org/security/2023/dsa-5388

Test Plan:
PASS: $downloader
PASS: $build-pkgs --clean --parallel 10
PASS: $build-image
PASS: Jenkins Installation
PASS: dpkg -l |grep haproxy
ii  haproxy                       2.2.9-2+deb11u5.stx.3

Closes-Bug: 2020732

Signed-off-by: Zhixiong Chi <zhixiong.chi@windriver.com>
Change-Id: I8c5a938ace4b81d6adf3ddb242a6b80555c6c7d4
This commit is contained in:
Zhixiong Chi 2023-05-25 18:12:32 +08:00
parent 0aa36aeaad
commit 323cc82399
1 changed files with 4 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

9
base/haproxy/debian/meta_data.yaml
View File

@ -1,10 +1,9 @@
---
debver: 2.2.9-2+deb11u4
debver: 2.2.9-2+deb11u5
dl_path:
name: haproxy-debian-2.2.9-2+deb11u4.tar.gz
url: https://salsa.debian.org/haproxy-team/haproxy/-/archive/debian/2.2.9-2+deb11u4/haproxy-debian-2.2.9-2+deb11u4.tar.gz
md5sum: c5a8b73ff2b5c359bb1289c15c8f20d0
sha256sum: dfa52c0f8da5b3585dbb2160d248e8f4961ea590ad1dd4119458e58196917803
name: haproxy-debian-2.2.9-2+deb11u5.tar.gz
url: https://salsa.debian.org/haproxy-team/haproxy/-/archive/debian/2.2.9-2+deb11u5/haproxy-debian-2.2.9-2+deb11u5.tar.gz
sha256sum: 7ac0fbbe15a733fe291031b71e550577310d9a839502102b79598d26f4501a0e
revision:
dist: $STX_DIST
PKG_GITREVCOUNT: true