Hi,
ELTS in September: I worked on CVE-2019-2435, CVE-2024-21090, and CVE-2024-21170 in mysql- connector-python for Stretch. The ELA can be expected next month if the identified patches can be verified by upstream. I also prepared patches for CVE-2024-43167 and CVE-2024-43168 for unbound in Stretch and Buster, which are currently tested. The ELA can be expected next month if the tests don't reveal any issues. LTS in September: I've published DLA 3874-1 (nsis) and DLA 3876-1 (setuptools) after the upload queue had been opened by the beginning of the month, fixing 3 CVEs. Furthermore, DLA 3899-1 has been released for python-asyncssh, fixing CVE-2023-46445, CVE-2023-46446, and CVE-2023-48795. For unbound, DLA 3903-1 has been published, fixing CVE-2024-43167 and CVE-2024-43168. For python-git, a version has been prepared that will attempt to fix CVE-2022-24439 (CVE-2023-40267) and CVE-2023-41040. A DLA can be expected in the next month. Thanks to Freexian and Freexian's sponsors for making these projects possible: https://www.freexian.com/lts/debian/#sponsors). Regards, Daniel
signature.asc
Description: This is a digitally signed message part
