A scan of this rock shows that it was built with packages from the Ubuntu
archive that have since received security updates. The following lists new
USNs for affected binary packages in each rock revision:
Revision r0bf29a965039 (amd64; channels: 9.18-22.04_edge, 9.18-22.04_beta)
* libxml2: 6028-1
Revision r22b508c20353 (ppc64le; channels: 9.18-22.04_edge, 9.18-22.04_beta)
* libxml2: 6028-1
Revision r2af5b1d4bf29 (arm64; channels: 9.16-20.04_beta, 9.16-20.04_edge)
* libxml2: 6028-1
Revision r4147cffe2976 (s390x; channels: 9.18-22.04_edge, 9.18-22.04_beta)
* libxml2: 6028-1
Revision r49118509c8ea (amd64; channels: edge, latest, 9.18-22.10_beta, 9.18-22.10_edge)
* libxml2: 6028-1
Revision r5386da70a536 (arm64; channels: edge, latest, 9.18-22.10_beta, 9.18-22.10_edge)
* libxml2: 6028-1
Revision r5a15031c983c (ppc64le; channels: edge, latest, 9.18-22.10_beta, 9.18-22.10_edge)
* libxml2: 6028-1
Revision r6e0017807d2f (amd64; channels: 9.16-20.04_beta, 9.16-20.04_edge)
* libxml2: 6028-1
Revision r8537db5b8bba (s390x; channels: edge, latest, 9.18-22.10_beta, 9.18-22.10_edge)
* libxml2: 6028-1
Revision rbdb67e83888e (ppc64le; channels: 9.16-20.04_beta, 9.16-20.04_edge)
* libxml2: 6028-1
Revision re23419f1d67f (s390x; channels: 9.16-20.04_beta, 9.16-20.04_edge)
* libxml2: 6028-1
Revision ree42768f750c (arm64; channels: 9.18-22.04_edge, 9.18-22.04_beta)
* libxml2: 6028-1
Simply rebuilding the rock will pull in the new security updates and
resolve this. If your rock also contains vendored code, now might be a
good time to review it for any needed updates.
Thank you for your rock and for attending to this matter.
References:
* https://ubuntu.com/security/notices/USN-6028-1/
