A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:
Revision r21a52e87ac2e (ppc64le; channels: 1.18-22.04_beta, 1.18-22.04_edge)
* libjbig0: 5742-1
Revision r27f34ba3e62a (s390x; channels: 1.18-20.04_beta, 1.18-20.04_edge)
* libjbig0: 5742-1
Revision r5ec779ab04fc (amd64; channels: 1.18-20.04_beta, 1.18-20.04_edge)
* libjbig0: 5742-1
Revision r67ab2db0af85 (amd64; channels: 1.18-22.04_beta, 1.18-22.04_edge)
* libjbig0: 5742-1
Revision r87eb488b4659 (arm64; channels: 1.18-20.04_beta, 1.18-20.04_edge)
* libjbig0: 5742-1
Revision r9b38d8a18b35 (arm64; channels: 1.18-22.04_beta, 1.18-22.04_edge)
* libjbig0: 5742-1
Revision r9e214b45d6ae (s390x; channels: 1.18-22.04_beta, 1.18-22.04_edge)
* libjbig0: 5742-1
Revision rf3345b46ac65 (ppc64le; channels: 1.18-20.04_beta, 1.18-20.04_edge)
* libjbig0: 5742-1
Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.
Thank you for your rock and for attending to this matter.
References:
* https://ubuntu.com/security/notices/USN-5742-1/
