From bb09bf354358d9b2378d8d7422e715773e49f5b9 Mon Sep 17 00:00:00 2001 From: Zhixiong Chi Date: Tue, 29 Oct 2024 23:21:32 -0700 Subject: [PATCH] cups: fix CVE-2024-47175 Upgrade libcups2 to 2.3.3op2-3+deb11u9 Refer to: https://nvd.nist.gov/vuln/detail/CVE-2024-47175 https://security-tracker.debian.org/tracker/CVE-2024-47175 TestPlan: PASS: download; build-pkgs PASS: build-image PASS: Jenkins Installation Closes-Bug: 2085810 Signed-off-by: Zhixiong Chi Change-Id: I4877fce67727614f1ec8a22c3c8810fab00139da --- debian-mirror-tools/config/debian/common/base-bullseye.lst | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/debian-mirror-tools/config/debian/common/base-bullseye.lst b/debian-mirror-tools/config/debian/common/base-bullseye.lst index d5c93f0c2..f31d86513 100644 --- a/debian-mirror-tools/config/debian/common/base-bullseye.lst +++ b/debian-mirror-tools/config/debian/common/base-bullseye.lst @@ -311,7 +311,7 @@ libcrypt-dev 1:4.4.18-4 libcryptsetup12 2:2.3.7-1+deb11u1 libctf0 2.35.2-2 libctf-nobfd0 2.35.2-2 -libcups2 2.3.3op2-3+deb11u7 https://snapshot.debian.org/archive/debian/20240622T144333Z/pool/main/c/cups/libcups2_2.3.3op2-3%2Bdeb11u7_amd64.deb +libcups2 2.3.3op2-3+deb11u9 https://snapshot.debian.org/archive/debian-security/20241030T011651Z/pool/main/c/cups/libcups2_2.3.3op2-3%2Bdeb11u9_amd64.deb libcurl3-gnutls 7.74.0-1.3+deb11u13 https://snapshot.debian.org/archive/debian/20240824T204406Z/pool/main/c/curl/libcurl3-gnutls_7.74.0-1.3%2Bdeb11u13_amd64.deb libcurl4 7.74.0-1.3+deb11u13 https://snapshot.debian.org/archive/debian/20240824T204406Z/pool/main/c/curl/libcurl4_7.74.0-1.3%2Bdeb11u13_amd64.deb libcurl4-gnutls-dev 7.74.0-1.3+deb11u13 https://snapshot.debian.org/archive/debian/20240824T204406Z/pool/main/c/curl/libcurl4-gnutls-dev_7.74.0-1.3%2Bdeb11u13_amd64.deb