Hi, - python-git (LTS):
In October, I worked on python-git for Bullseye and its test-suite, eventually publishing DLA 3939-1, fixing CVE-2022-24439 and its follow- up CVE-2023-40267, and CVE-2023-41040. - unbound (LTS/ELTS): I also worked on the update for unbound in Bullseye, targetting CVE- 2024-8508. To ease future work, I eventually enabled the upstream test- suite and fixed all issues that came up. The DLA can be expected by the beginning of November. I continued my work on the update for unbound in Stretch and Buster fixing the open CVEs and testing its functionality. While the enabled test-suite also runs fine on Buster, there is an issue with enabling the tests on Stretch. An ELA for Buster can be expected by the beginning of November as well. For Stretch, the ELA will have to be delayed. - python-aiohttp (LTS): Furthermore, I started looking into python-aiohttp and its open CVEs. For this, I also enabled the test-suite to check the changes. I'll continue working on this in November. Thanks to Freexian and Freexian's sponsors for making these projects possible: https://www.freexian.com/lts/debian/#sponsors). Regards, Daniel
signature.asc
Description: This is a digitally signed message part
