22.0.0.SPC2
The following lists the issue resolved in the Kunpeng BoostKit 22.0.0.SPC2 SDS Global Cache 1.3.15 patch.
Trouble Ticket No. |
DTS2023061509891 |
|---|---|
Symptom |
The third-party component OpenSSL has the security vulnerability CVE-2023-2650. |
Severity |
Minor |
Cause Analysis |
Third-party software has vulnerabilities. |
Solution |
Upgrade OpenSSL. |
Impact |
The vulnerability is fixed, and no other impact is imposed. |
Test Suggestion |
Upgrade OpenSSL to 1.1.1n-h8 and check whether the functions are normal. |
Trouble Ticket No. |
DTS2023061510189 |
|---|---|
Symptom |
The third-party component c-ares has the security vulnerabilities.
|
Severity |
Minor |
Cause Analysis |
Third-party software has vulnerabilities. |
Solution |
Upgrade c-ares. |
Impact |
The vulnerability is fixed, and no other impact is imposed. |
Test Suggestion |
Upgrade c-ares to 1.18.1-1-oe2203-h4 and check whether the functions are normal. |
Trouble Ticket No. |
DTS2023061206654 |
|---|---|
Symptom |
gRPC v1.36.1 has security vulnerability CVE-2023-32731. |
Severity |
Major |
Cause Analysis |
Third-party software has vulnerabilities. |
Solution |
Upgrade gRPC. |
Impact |
The vulnerability is fixed, and no other impact is imposed. |
Test Suggestion |
Upgrade gRPC to 1.14.1-3-oe2203-h2 and check whether the functions are normal. |
Trouble Ticket No. |
DTS2023061302869 |
|---|---|
Symptom |
gRPC v1.36.1 has security vulnerability CVE-2023-32732. |
Severity |
Major |
Cause Analysis |
Third-party software has vulnerabilities. |
Solution |
Upgrade gRPC. |
Impact |
The vulnerability is fixed, and no other impact is imposed. |
Test Suggestion |
Upgrade gRPC to 1.14.1-3-oe2203-h2 and check whether the functions are normal. |