Hi, October 2016 was my second month as a payed Debian LTS contributor. I was allocated 12 hours. I have spent 12 hours doing the following tasks:
* Test and upload a security update for libav (0.8.18-0+deb7u1). Discussion
with upstream to get more point releases.
DLA: 644-1
Closed CVEs: CVE-2015-1872, CVE-2015-5479, CVE-2016-7393
* Finish, test and upload of a security update for qemu (1.1.2+dfsg-6+deb7u16)
and qemu-kvm (1.1.2+dfsg-6+deb7u16).
DLA: 652-1, 653-1
Closed CVEs: CVE-2016-7161, CVE-2016-7170, CVE-2016-7908
* Investigations to develop a patch for CVE-2016-7466[0]. Thanks to Guido
Günther we decided to mark it non-dsa (see security tracker for more
explanations).
* Prepare, test and upload a security update for libxrandr (2:1.3.2-2+deb7u2).
DLA: 660-1
Closed CVEs: CVE-2016-7947, CVE-2016-7948
* Various CVE triaging (e.g. add link to upstream commits for CVE-2016{8678,
8577, 8576, 8669 ... }).
* Prepare, test and upload of a security update for qemu (1.1.2+dfsg-6+deb7u17)
and qemu-kvm (1.1.2+dfsg-6+deb7u17).
DLA: 678-1, 679-1
Closed CVEs: CVE-2016-8578, CVE-2016-8577, CVE-2016-8576, CVE-2016-8669
Cheers,
Hugo
--
Hugo Lefeuvre (hle) | www.owl.eu.com
4096/ ACB7 B67F 197F 9B32 1533 431C AC90 AC3E C524 065E
signature.asc
Description: PGP signature
