-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 June 2019 was my 17th month as a Debian LTS paid contributor. I was assigned 14 hours plus 7 hours carried from last month. I spent 7 hours for the following.
* ansible: Marked CVE-2019-10156 as no-dsa. A small subset of upstream patch can be applied and it can be done in further uploads. * libspring-security-2.0-java: Fixed CVE-2019-11272, tested and uploaded. DLA[1] * tomcat8: Prepared update for CVE-2019-0221 in last month. Marked CVE-2019-10072 as not affected. One of the old security patche is making TestSendFile tests to fail. Using snapshot.debian.org to find the change causing the regression. Regards Abhijith PA [1] - https://lists.debian.org/debian-lts-announce/2019/07/msg00008.html -----BEGIN PGP SIGNATURE----- iQIzBAEBCgAdFiEE7xPqJqaY/zX9fJAuhj1N8u2cKO8FAl0k07gACgkQhj1N8u2c KO9aeQ/8Dbz7ZzAjpzczYE9RAFhy8AMCAcjW6J6DjVuhKpunkMvDvCJeMiEre6T+ pSXLqj3mU3UvHZmG+Y+BlWwgOQazUbn3DAJBvDYb3jBy4Q98Fws+YXqLPZxwN+lB KY3k50+e0/b1a/k1aB/JlmV0zLgj7Nf770FBlu+NU9Q/Jdni/wjMgf3AgNknb4I2 smnlPuDMVmpKRBDijyxJXycwNQNLS+aR3wtQ+i+yTCLK/7tE9oY4lw7oNkG+dBoM ABdi9M9mPmMcSiwGPurp3rCr1fJMxZl9Ebeg453XHR16gO9/I3gFAxgBbSehNKBY quzMEyQs9m56+ckO/XlSF4T6BTw5wM3QjPuAze6oF3FXBbvEK0Hrll51P5RvWrje fUAFtSw4gfM0w2QPDS5E/xZzDEnOQ8xIEZcT9FLA4oWhu5GJx87smKoXoNvKhPfj Rw1fAfs4ggE1+uinEM7xkMuh0ArxiPOLnHAH6zGBUV0ZwoAHIasyuo9kehjKUEvy vrO1+jk9Xgu26QBi0lbiNlZfyJ9CvjmuR8rZ5nFSwt6miRuToSSg9SZNPJQJ+u76 eRxazdBCCpQewIhbI3AqLrjWRzHaC/vFqLdc4YeRZ9poB6P7UeJM3N5Y5XHVIfST WR1EL3KbE1NYdmB2J+r2xfVoBVg70npAWGk2NxSoQKOENvql08k= =3gLO -----END PGP SIGNATURE-----
