Debian: libgnutls30:fix CVE-2022-2509

Upgrade libgnutls30 to a version that the above CVEs have been fixed: libgnutls30_3.7.1-5_amd64.deb to libgnutls30_3.7.1-5+deb11u2_amd64.deb (Refer to https://nvd.nist.gov/vuln/detail/CVE-2022-2509) This fix provides the URL of the package in base-bullseye.lst to make sure that the binary package can be downloaded no matter how the upstream changes. Test plan: PASS: build-pkgs --clean --all && build-image Closes-bug: 1994112 Signed-off-by: Wentao Zhang<Wentao.Zhang@windriver.com> Change-Id: Ibea82b5dc051644b778666c46998e45253b9eaab
2022-11-08 08:43:29 +08:00 · 2022-11-08 08:43:29 +08:00 · 25152a7d6d
commit 25152a7d6d
parent b299878b1e
1 changed files with 1 additions and 1 deletions
--- a/debian-mirror-tools/config/debian/common/base-bullseye.lst
+++ b/debian-mirror-tools/config/debian/common/base-bullseye.lst
@ -287,7 +287,7 @@ libgfortran5  10.2.1-6
 libgirepository-1.0-1  1.66.1-1+b1
 libglib2.0-0  2.66.8-1
 libgmp10  2:6.2.1+dfsg-1+deb11u1
-libgnutls30  3.7.1-5
+libgnutls30  3.7.1-5+deb11u2  https://snapshot.debian.org/archive/debian-security/20220808T192640Z/pool/updates/main/g/gnutls28/libgnutls30_3.7.1-5%2Bdeb11u2_amd64.deb
 libgomp1  10.2.1-6
 libgoogle-perftools4  2.8.1-1
 libgpg-error0  1.38-2