From a36a1ee862a19a16931abbd03461b1c83c649230 Mon Sep 17 00:00:00 2001 From: Peng Zhang Date: Wed, 21 Feb 2024 05:56:42 +0000 Subject: [PATCH] ovmf: Upgrade to ovmf_2020.11-2+deb11u2_all.deb Upgrade package ovmf from 2020.11-2+deb11u1 to 2020.11-2+deb11u2 in order to fixing the CVE issue CVE-2023-48733. Refer to: https://nvd.nist.gov/vuln/detail/CVE-2023-48733 https://security-tracker.debian.org/tracker/DSA-5624-1 TestPlan: PASS: downloader; build-pkgs; build-image PASS: Jenkins Installation Closes-Bug: 2054273 Change-Id: I42937791da7c25b59ae4cf2f945bdd4b6d57ade3 Signed-off-by: Peng Zhang --- debian-mirror-tools/config/debian/common/base-bullseye.lst | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/debian-mirror-tools/config/debian/common/base-bullseye.lst b/debian-mirror-tools/config/debian/common/base-bullseye.lst index 3df6635f..b5dab50e 100644 --- a/debian-mirror-tools/config/debian/common/base-bullseye.lst +++ b/debian-mirror-tools/config/debian/common/base-bullseye.lst @@ -818,7 +818,7 @@ openssh-server 1:8.4p1-5+deb11u3 https://snapshot.debian.org/archive/debian/2023 openssh-sftp-server 1:8.4p1-5+deb11u3 https://snapshot.debian.org/archive/debian/20231224T085540Z/pool/main/o/openssh/openssh-sftp-server_8.4p1-5%2Bdeb11u3_amd64.deb openssl 1.1.1n-0+deb11u5 https://snapshot.debian.org/archive/debian/20230611T210420Z/pool/main/o/openssl/openssl_1.1.1n-0%2Bdeb11u5_amd64.deb original-awk 2018-08-27-1 -ovmf 2020.11-2+deb11u1 +ovmf 2020.11-2+deb11u2 https://snapshot.debian.org/archive/debian-security/20240214T195659Z/pool/updates/main/e/edk2/ovmf_2020.11-2%2Bdeb11u2_all.deb passwd 1:4.8.1-1 patch 2.7.6-7 pci.ids 0.0~2021.02.08-1