Here is my public monthly report.
Thanks to our sponsors for making this possible, and to Freexian for
handling the offering.
https://www.freexian.com/services/debian-lts.html#sponsors
LTS
- zabbix
- Finish work started in January
- Triage not-affected CVEs
- DLA 2914-1
https://lists.debian.org/debian-lts-announce/2022/02/msg00008.html
- twisted
- DLA-2927-1
https://lists.debian.org/debian-lts-announce/2022/02/msg00021.html
- CVEs triage
- Add 8 packages for update
- Assess stretch vulnerability status for 10-15 CVEs
- cacti: clarify CVE-2021-26247 double fix
- spotweb: clarify CVE-2021-3286 upstream status
https://github.com/spotweb/spotweb/issues/653#issuecomment-1029066938
- flatpak: drop from queue following secteam triage for buster
ELTS
- zabbix
- Common work with LTS
- ELA-562-1
https://deb.freexian.com/extended-lts/updates/ela-562-1-zabbix/
- twisted
- Common work with LTS
- ELA-566-1
https://deb.freexian.com/extended-lts/updates/ela-566-1-twisted/
- CVEs triage
- common work with LTS
- dojo: fix upload reference
- varnish: fix CVE-2022-23959 prior triage
Documentation and tooling
- LTS documentation
- twisted: design test procedures
https://wiki.debian.org/LTS/TestSuites/twisted
- Team feedback
- guacamole-client stretch support
https://lists.debian.org/debian-lts/2022/02/msg00001.html
- tomcat7 jessie support
https://deb.freexian.com/extended-lts/#debian-8-jessie-support
--
Sylvain Beucler
Debian LTS Team
