From 874990dca80b9a79559f6257ef90685cd6e552b1 Mon Sep 17 00:00:00 2001
From: Wentao Zhang <wentao.zhang@windriver.com>
Date: Tue, 27 Feb 2024 11:16:15 +0800
Subject: [PATCH] Debian: glib2.0 : fix
 CVE-2023-29499/CVE-2023-32611/CVE-2023-32665

Upgrade libglib2.0-0 to 2.66.8-1+deb11u1
Upgrade libglib2.0-dev to 2.66.8-1+deb11u1
Upgrade libglib2.0-bin to 2.66.8-1+deb11u1
Upgrade libglib2.0-dev-bin to 2.66.8-1+deb11u1

Refer to:
https://nvd.nist.gov/vuln/detail/CVE-2023-29499
https://nvd.nist.gov/vuln/detail/CVE-2023-32611
https://nvd.nist.gov/vuln/detail/CVE-2023-32665

Test Plan:
Pass: downloader
Pass: build-pkgs --clean --all
Pass: build-image
Pass: boot

Closes-bug: #2052924

Change-Id: I2531757a643b3b443de392e30983378341d5b581
Signed-off-by: Wentao Zhang <wentao.zhang@windriver.com>
---
 debian-mirror-tools/config/debian/common/base-bullseye.lst | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/debian-mirror-tools/config/debian/common/base-bullseye.lst b/debian-mirror-tools/config/debian/common/base-bullseye.lst
index 607393ea..93c80491 100644
--- a/debian-mirror-tools/config/debian/common/base-bullseye.lst
+++ b/debian-mirror-tools/config/debian/common/base-bullseye.lst
@@ -384,7 +384,10 @@ libgfortran5  10.2.1-6
 libgfrpc0  9.2-1
 libgfxdr0  9.2-1
 libgirepository-1.0-1  1.66.1-1+b1
-libglib2.0-0  2.66.8-1
+libglib2.0-0  2.66.8-1+deb11u1  https://snapshot.debian.org/archive/debian/20231113T085432Z/pool/main/g/glib2.0/libglib2.0-0_2.66.8-1%2Bdeb11u1_amd64.deb
+libglib2.0-dev  2.66.8-1+deb11u1  https://snapshot.debian.org/archive/debian/20231113T085432Z/pool/main/g/glib2.0/libglib2.0-dev_2.66.8-1%2Bdeb11u1_amd64.deb
+libglib2.0-bin  2.66.8-1+deb11u1  https://snapshot.debian.org/archive/debian/20231113T085432Z/pool/main/g/glib2.0/libglib2.0-bin_2.66.8-1%2Bdeb11u1_amd64.deb
+libglib2.0-dev-bin  2.66.8-1+deb11u1  https://snapshot.debian.org/archive/debian/20231113T085432Z/pool/main/g/glib2.0/libglib2.0-dev-bin_2.66.8-1%2Bdeb11u1_amd64.deb
 libglusterfs-dev  9.2-1
 libglusterfs0  9.2-1
 libgmp10  2:6.2.1+dfsg-1+deb11u1