Hi,
On 13/08/2024 11:54, Moritz Mühlenhoff wrote:
Am Mon, Aug 12, 2024 at 03:10:06PM -0300 schrieb Santiago Ruano Rincón:
El 08/08/24 a las 12:10, Sylvain Beucler escribió:
python2.7 was marked unsupported in bullseye.
We recently noted that pypy[v2] (included up to bullseye) and jython (all
dists) include the python2 stdlib. Unlike pypy3, neither package currently
track the associated CVEs.
Do we want to mark pypy and jython as EOL, or limited-support, in
debian-security-support?
For pypy and jython/bullseye, I would included them in
security-support-limited.deb11, with the same rationale than for
python2.7. Any objection?
Security team, may we have your thoughts, especially about jython (since
it is included also in bookworm and trixie)?
Let's add it to security-support-limited for all suites (until
at some point it gets ported to Py3)
Thanks, MR submitted :)
https://salsa.debian.org/debian/debian-security-support/-/merge_requests/28
Cheers!
Sylvain Beucler
Debian LTS Team
