starlingx
/
tools
Code Issues Proposed changes

ovmf: Upgrade to ovmf_2020.11-2+deb11u2_all.deb 

Upgrade package ovmf from 2020.11-2+deb11u1 to 2020.11-2+deb11u2 in
order to fixing the CVE issue CVE-2023-48733.

Refer to:
https://nvd.nist.gov/vuln/detail/CVE-2023-48733
https://security-tracker.debian.org/tracker/DSA-5624-1

TestPlan:
PASS: downloader; build-pkgs; build-image
PASS: Jenkins Installation

Closes-Bug: 2054273

Change-Id: I42937791da7c25b59ae4cf2f945bdd4b6d57ade3
Signed-off-by: Peng Zhang <Peng.Zhang2@windriver.com>
This commit is contained in:
Peng Zhang 2024-02-21 05:56:42 +00:00
parent 14d5030d09
commit a36a1ee862
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
debian-mirror-tools/config/debian/common/base-bullseye.lst
View File

@ -818,7 +818,7 @@ openssh-server 1:8.4p1-5+deb11u3 https://snapshot.debian.org/archive/debian/2023
openssh-sftp-server 1:8.4p1-5+deb11u3 https://snapshot.debian.org/archive/debian/20231224T085540Z/pool/main/o/openssh/openssh-sftp-server_8.4p1-5%2Bdeb11u3_amd64.deb
openssl 1.1.1n-0+deb11u5 https://snapshot.debian.org/archive/debian/20230611T210420Z/pool/main/o/openssl/openssl_1.1.1n-0%2Bdeb11u5_amd64.deb
original-awk 2018-08-27-1
ovmf 2020.11-2+deb11u1
ovmf 2020.11-2+deb11u2 https://snapshot.debian.org/archive/debian-security/20240214T195659Z/pool/updates/main/e/edk2/ovmf_2020.11-2%2Bdeb11u2_all.deb
passwd 1:4.8.1-1
patch 2.7.6-7
pci.ids 0.0~2021.02.08-1