Peng Zhang cfcbd4d6e2 Debian: wheel: fix CVE-2022-40898 ...

To the wheel binary of Debian bullseye, there is no release
to fix this issue. So we need to delete the binary package in
base-bullseye.lst, add source package and backport the fix to Bullseye
to fulfill security obligations.

CVE-2022-40898: https://nvd.nist.gov/vuln/detail/CVE-2022-40898

Reference:
88f02bc335
https://security-tracker.debian.org/tracker/CVE-2022-40898

TestPlan:
PASS: downloader; build-pkgs
PASS: build-image
PASS: install on SX-lab

Depends-On: https://review.opendev.org/c/starlingx/root/+/948315

Closes-Bug: 2108013

Change-Id: I73ce75f22c4234542b0cda986d4ced735ddf7efc
Signed-off-by: Peng Zhang <Peng.Zhang2@windriver.com>

2025-04-28 22:02:42 +08:00

..

dh-python/debian

meta_data.yaml: add sha256sum checksum

2022-03-03 14:30:40 +08:00

pynetlink

Python Netlink library

2025-03-10 09:13:52 -03:00

python3-nsenter/debian

Create Debian python3-nsenter package

2022-09-20 15:05:20 +00:00

python3-setuptools/debian

Debian: setuptools: fix CVE-2022-40897/CVE-2024-6345

2024-09-26 16:52:28 +08:00

python3-wheel/debian

Debian: wheel: fix CVE-2022-40898

2025-04-28 22:02:42 +08:00

python3-zmq/debian

Add patched pyzmq debian package

2024-04-10 19:02:43 -03:00

python3.9/debian

Debian: python3.9: fix multiple CVEs

2024-12-10 13:14:27 +08:00

python-nss/debian

Fix lint errors identified by Zuul pylint job

2023-03-15 12:07:17 +00:00

python-setuptools/files

Remove CentOS/OpenSUSE build support

2024-05-01 16:39:19 -04:00

zerorpc-python/debian

Add heartbeat to zmq socket

2025-03-10 18:26:00 +00:00