A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:
Revision r3072805987e4 (ppc64le; channels: 2.4-20.04_edge)
* login: 5745-2
* passwd: 5745-2
Revision r400603289527 (arm64; channels: 2.4-20.04_beta)
* login: 5745-2
* passwd: 5745-2
Revision r55c4d41c0b61 (amd64; channels: 2.4-20.04_edge)
* login: 5745-2
* passwd: 5745-2
Revision r57dd25994d0c (arm64; channels: edge, 2.4-22.10_beta, latest)
* libperl5.34: 5689-2
* login: 5745-1
* passwd: 5745-1
* perl: 5689-2
* perl-base: 5689-2
* perl-modules-5.34: 5689-2
Revision r6e9d9c6d0c29 (ppc64le; channels: edge, 2.4-22.10_beta, latest)
* libperl5.34: 5689-2
* login: 5745-1
* passwd: 5745-1
* perl: 5689-2
* perl-base: 5689-2
* perl-modules-5.34: 5689-2
Revision r75a32d7014c1 (amd64; channels: 2.4-20.04_beta)
* login: 5745-2
* passwd: 5745-2
Revision r80e6540e8561 (amd64; channels: edge, 2.4-22.10_beta, latest)
* libperl5.34: 5689-2
* login: 5745-1
* passwd: 5745-1
* perl: 5689-2
* perl-base: 5689-2
* perl-modules-5.34: 5689-2
Revision r866e430a8d3d (s390x; channels: edge, 2.4-22.10_beta, latest)
* libperl5.34: 5689-2
* login: 5745-1
* passwd: 5745-1
* perl: 5689-2
* perl-base: 5689-2
* perl-modules-5.34: 5689-2
Revision re738badff2d9 (ppc64le; channels: 2.4-20.04_beta)
* login: 5745-2
* passwd: 5745-2
Revision rfc232da44024 (s390x; channels: 2.4-20.04_beta)
* login: 5745-2
* passwd: 5745-2
Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.
Thank you for your rock and for attending to this matter.
References:
* https://ubuntu.com/security/notices/USN-5689-2/
* https://ubuntu.com/security/notices/USN-5745-1/
* https://ubuntu.com/security/notices/USN-5745-2/
