Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Fetch security upgrades from apt [PLT-1607] #2518

Merged
merged 1 commit into from
Oct 9, 2023
Merged

Fetch security upgrades from apt [PLT-1607] #2518

merged 1 commit into from
Oct 9, 2023

Conversation

yob
Copy link
Contributor

@yob yob commented Oct 9, 2023
edited
Loading

In #2517 I upgrade docs frm debian 11 to 12, but I was surprised to see that CVE-2023-38408 is sitll being detected post-upgrade.

I think it's because the patched openssh is available in the debian security repositories. If so, adding this upgrade should fetch them.

/cc @buildkite/platform

@yob
Fetch security upgrades from apt
1608b91 
In #2517 I upgrade docs frm debian 11 to 12, but I was surprised to see
that CVE-2023-38408 is sitll being detected post-upgrade.

I think it's because the patched openssh is available in the debian
security repositories. If so, adding this upgade should fetch them.
@yob yob requested a review from dannymidnight October 9, 2023 01:19
@yob
Copy link
Contributor Author

yob commented Oct 9, 2023

Yup, this updated openssh (and others)

Calculating upgrade...
The following packages will be upgraded:
  base-files curl debian-archive-keyring debianutils krb5-multidev libc-bin
  libc-dev-bin libc6 libc6-dev libcurl3-gnutls libcurl4 libcurl4-openssl-dev
  libgssapi-krb5-2 libgssrpc4 libk5crypto3 libkadm5clnt-mit12
  libkadm5srv-mit12 libkdb5-10 libkrb5-3 libkrb5-dev libkrb5support0
  libmariadb-dev libmariadb-dev-compat libmariadb3 libpam-modules
  libpam-modules-bin libpam-runtime libpam0g libssl-dev libssl3 libsystemd0
  libudev1 libx11-6 libx11-data libx11-dev linux-libc-dev mariadb-common
  openssh-client openssl
39 upgraded, 0 newly installed, 0 to remove and 0 not upgraded.
Need to get 20.3 MB of archives.
After this operation, 103 kB of additional disk space will be used.

@buildkite-docs-bot
Copy link
Contributor

Preview URL: https://2518--bk-docs-preview.netlify.app

@yob yob changed the title Fetch security upgrades from apt Fetch security upgrades from apt [PLT-1607] Oct 9, 2023
@dannymidnight dannymidnight merged commit 60e3d03 into main Oct 9, 2023
@dannymidnight dannymidnight deleted the bookworm-security branch October 9, 2023 22:25
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@dannymidnight dannymidnight Awaiting requested review from dannymidnight

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@yob @buildkite-docs-bot @dannymidnight