From 183e2959e80364f7f3d76a76e67697e9f15661e3 Mon Sep 17 00:00:00 2001 From: Wentao Zhang Date: Fri, 1 Mar 2024 00:39:31 -0800 Subject: [PATCH] Debian: postgresql-13: fix CVE-2024-0985 Upgrade libpq5 to 13.14-0+deb11u1 Upgrade libpq-dev to 13.14-0+deb11u1 Upgrade postgresql-13 to 13.14-0+deb11u1 Upgrade postgresql-client-13 to 13.14-0+deb11u1 Refer to: https://nvd.nist.gov/vuln/detail/CVE-2024-0985 https://security-tracker.debian.org/tracker/DSA-5622-1 TestPlan: PASS: downloader; build-pkgs; build-image PASS: Jenkins Installation Closes-Bug: 2054274 Change-Id: I194a78d1e1371b6550a1fc755f296251f417f016 Signed-off-by: Wentao Zhang --- .../config/debian/common/base-bullseye.lst | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/debian-mirror-tools/config/debian/common/base-bullseye.lst b/debian-mirror-tools/config/debian/common/base-bullseye.lst index e8ff9c2c..f184fc86 100644 --- a/debian-mirror-tools/config/debian/common/base-bullseye.lst +++ b/debian-mirror-tools/config/debian/common/base-bullseye.lst @@ -586,8 +586,8 @@ libpolkit-agent-1-0 0.105-31+deb11u1 libpolkit-gobject-1-dev 0.105-31+deb11u1 libpolkit-gobject-1-0 0.105-31+deb11u1 libpopt0 1.18-2 -libpq5 13.13-0+deb11u1 https://snapshot.debian.org/archive/debian-security/20231113T212648Z/pool/updates/main/p/postgresql-13/libpq5_13.13-0%2Bdeb11u1_amd64.deb -libpq-dev 13.13-0+deb11u1 https://snapshot.debian.org/archive/debian-security/20231113T212648Z/pool/updates/main/p/postgresql-13/libpq-dev_13.13-0%2Bdeb11u1_amd64.deb +libpq5 13.14-0+deb11u1 https://snapshot.debian.org/archive/debian-security/20240214T195659Z/pool/updates/main/p/postgresql-13/libpq5_13.14-0%2Bdeb11u1_amd64.deb +libpq-dev 13.14-0+deb11u1 https://snapshot.debian.org/archive/debian-security/20240214T195659Z/pool/updates/main/p/postgresql-13/libpq-dev_13.14-0%2Bdeb11u1_amd64.deb libprocps8 2:3.3.17-5 libprotobuf-c1 1.3.3-1+b2 libproxy1v5 0.4.17-1 @@ -834,8 +834,8 @@ pipexec 2.5.5-2+b1 pm-utils 1.4.1-19 po-debconf 1.0.21+nmu1 policykit-1 0.105-31+deb11u1 -postgresql-13 13.13-0+deb11u1 https://snapshot.debian.org/archive/debian-security/20231113T212648Z/pool/updates/main/p/postgresql-13/postgresql-13_13.13-0%2Bdeb11u1_amd64.deb -postgresql-client-13 13.13-0+deb11u1 https://snapshot.debian.org/archive/debian-security/20231113T212648Z/pool/updates/main/p/postgresql-13/postgresql-client-13_13.13-0%2Bdeb11u1_amd64.deb +postgresql-13 13.14-0+deb11u1 https://snapshot.debian.org/archive/debian-security/20240214T195659Z/pool/updates/main/p/postgresql-13/postgresql-13_13.14-0%2Bdeb11u1_amd64.deb +postgresql-client-13 13.14-0+deb11u1 https://snapshot.debian.org/archive/debian-security/20240214T195659Z/pool/updates/main/p/postgresql-13/postgresql-client-13_13.14-0%2Bdeb11u1_amd64.deb postgresql-client-common 225 postgresql-common 225 powermgmt-base 1.36