I've worked during September 2024 on the below listed packages, for Freexian LTS/ELTS [1]
Many thanks to Freexian and sponsors [2] for providing this opportunity! php-horde-turba (DLA-3923-1) ============================ Fixing an arbitrary object deserialization vulnerability in php-horde- turba, an address book component for the Horde groupware suite. (CVE- 2022-30287) php-horde-mime-viewer (DLA-3924-1) ================================== Fixing a potential XSS, CVE-2022-26874. libxml2 (ELA-1227-1) for buster and jessie ========================================== Several CVES, potential DoS and use-after-free. firmware-nonfree ================ Analysis and starting internal discussion regarding how to handle firmware-nonfree. intel-mediasdk ============== Analysis and starting internal discussion regarding how to handle intel-mediasdk, as upstream has ceased developement and the security announcements have no useful information to even identify the details of the vulnerabilties. [1] https://www.freexian.com/lts/ [2] https://www.freexian.com/lts/debian/#sponsors Cheers, -- tobi
signature.asc
Description: PGP signature
