From 684b84d99a6fc540597571c0bd5b9c07c7401d7c Mon Sep 17 00:00:00 2001 From: Zhixiong Chi Date: Mon, 4 Nov 2024 02:17:19 -0500 Subject: [PATCH] openssl: fix multiple CVEs Upgrade the version to 1.1.1w-0+deb11u2 to fix CVE-2023-5678/CVE-2024-0727/CVE-2024-2511/CVE-2024-4741 CVE-2024-5535/CVE-2024-9143 Refer to: https://security-tracker.debian.org/tracker/DLA-3942-2 TestPlan: PASS: downloader PASS: build-pkgs PASS: build-image PASS: Jenkins Installation on AIO-SX PASS: openssl version PASS: openssl genrsa -out domain.key 2048 Signed-off-by: Zhixiong Chi Change-Id: Ic03a5479b64acee7e95c06f6a74b5d0fdbcd2821 --- base/openssl/debian/meta_data.yaml | 8 ++++---- 1 file changed, 4 insertions(+), 4 deletions(-) diff --git a/base/openssl/debian/meta_data.yaml b/base/openssl/debian/meta_data.yaml index f688c81ae..db785da76 100644 --- a/base/openssl/debian/meta_data.yaml +++ b/base/openssl/debian/meta_data.yaml @@ -1,10 +1,10 @@ --- -debver: 1.1.1w-0+deb11u1 +debver: 1.1.1w-0+deb11u2 debname: openssl dl_path: - name: openssl-debian-openssl-1.1.1w-0+deb11u1.tar.gz - url: https://salsa.debian.org/debian/openssl/-/archive/debian/openssl-1.1.1w-0+deb11u1/openssl-debian-openssl-1.1.1w-0+deb11u1.tar.gz - sha256sum: 89d98075fc77871eb619d7c48e3fb1ced0ce431c43b8cd85241a67597d984622 + name: openssl-debian-openssl-1.1.1w-0+deb11u2.tar.gz + url: https://salsa.debian.org/debian/openssl/-/archive/debian/openssl-1.1.1w-0+deb11u2/openssl-debian-openssl-1.1.1w-0+deb11u2.tar.gz + sha256sum: ce06fccd9deea3c56a6b3cc1b986878d4838b41d8266e0454cfb0c48dcd8a29c revision: dist: $STX_DIST PKG_GITREVCOUNT: true