From e819e5f1443b2df796fe07603dc270cbf1b00870 Mon Sep 17 00:00:00 2001 From: Peng Zhang Date: Wed, 21 Feb 2024 07:37:15 +0000 Subject: [PATCH] bind9: Upgrade to 1:9.16.48-1 Upgrade package bind9-dnsutils, bind9-host and bind9-libs from 1:9.16.44-1~deb11u1 to 1:9.16.48-1 in order to fixing following CVE issues: 1.CVE-2023-4408 2.CVE-2023-5517 3.CVE-2023-5679 4.CVE-2023-50387 5.CVE-2023-50868 6.CVE-2023-6516. Refer to: https://nvd.nist.gov/vuln/detail/CVE-2023-4408 https://nvd.nist.gov/vuln/detail/CVE-2023-5517 https://nvd.nist.gov/vuln/detail/CVE-2023-5679 https://nvd.nist.gov/vuln/detail/CVE-2023-50387 https://nvd.nist.gov/vuln/detail/CVE-2023-50868 https://nvd.nist.gov/vuln/detail/CVE-2023-6516 https://security-tracker.debian.org/tracker/DSA-5621-1 TestPlan: PASS: downloader; build-pkgs; build-image PASS: Jenkins Installation Closes-Bug: 2054275 Change-Id: Ia672dfd46b71db404dee55a8a33e66a7d3580791 Signed-off-by: Peng Zhang --- debian-mirror-tools/config/debian/common/base-bullseye.lst | 6 +++--- 1 file changed, 3 insertions(+), 3 deletions(-) diff --git a/debian-mirror-tools/config/debian/common/base-bullseye.lst b/debian-mirror-tools/config/debian/common/base-bullseye.lst index 3df6635f..1edfecd1 100644 --- a/debian-mirror-tools/config/debian/common/base-bullseye.lst +++ b/debian-mirror-tools/config/debian/common/base-bullseye.lst @@ -23,9 +23,9 @@ avahi-daemon 0.8-5+deb11u2 https://snapshot.debian.org/archive/debian/20230213T base-files 11.1+deb11u3 https://snapshot.debian.org/archive/debian/20220703T032011Z/pool/main/b/base-files/base-files_11.1%2Bdeb11u3_amd64.deb bash-completion 1:2.11-2 bc 1.07.1-2+b2 -bind9-dnsutils 1:9.16.44-1~deb11u1 https://snapshot.debian.org/archive/debian/20230923T204823Z/pool/main/b/bind9/bind9-dnsutils_9.16.44-1~deb11u1_amd64.deb -bind9-host 1:9.16.44-1~deb11u1 https://snapshot.debian.org/archive/debian/20230923T204823Z/pool/main/b/bind9/bind9-host_9.16.44-1~deb11u1_amd64.deb -bind9-libs 1:9.16.44-1~deb11u1 https://snapshot.debian.org/archive/debian/20230923T204823Z/pool/main/b/bind9/bind9-libs_9.16.44-1~deb11u1_amd64.deb +bind9-dnsutils 1:9.16.48-1 https://snapshot.debian.org/archive/debian-security/20240214T075916Z/pool/updates/main/b/bind9/bind9-dnsutils_9.16.48-1_amd64.deb +bind9-host 1:9.16.48-1 https://snapshot.debian.org/archive/debian-security/20240214T075916Z/pool/updates/main/b/bind9/bind9-host_9.16.48-1_amd64.deb +bind9-libs 1:9.16.48-1 https://snapshot.debian.org/archive/debian-security/20240214T075916Z/pool/updates/main/b/bind9/bind9-libs_9.16.48-1_amd64.deb binutils 2.35.2-2 binutils-common 2.35.2-2 binutils-x86-64-linux-gnu 2.35.2-2