Hello,
February was my twentieth month working on LTS and ELTS. Thank you to
Freexian and Freexian's sponsors for making these projects possible:
<https://www.freexian.com/lts/debian/#sponsors>
LTS
- vim
- I started preparing an update to address tens of CVEs last month.
This month I did a lot of bisecting, to determine which of my
patches were causing it not to build. Two of the currently-applied
patches introduce problems; in one case, I think I misbackported a
patch, and in the other I'm not sure yet. It's slow going.
I've been integrating persistent schroot sessions into my workflow
after configuring them to survive reboots. They work more slowly
now they're not all on tmpfs, but it's faster overall because they
persist (my sbuild builds still use tmpfs).
It means I can do things like this after 'gbp pq import':
% git bisect run schroot -rc vim -- dpkg-buildpackage -b
- emacs
- Prepared the upload for DSA-5871-1, addressing CVE-2024-53920 and
CVE-2025-1244.
The first of these is a really nasty vulnerability where an attacker
can achieve arbitrary code execution by simply getting the user to
open a file named, say, README in Emacs.
In total so far I've fixed this in sid, bookworm,
bookworm-backports, bullseye, buster and one of the versions of
Emacs in stretch; the rest of stretch and jessie are in progress.
And trixie will hopefully happen imminently.
- Released DLA-4069-1 addressing CVE-2023-28617, CVE-2024-53920 and
CVE-2025-1244.
- Sponsored upload of Xen 4.20 to experimental
- Correspondence.
ELTS
- emacs
- Released ELA-1334-1 addressing CVE-2024-53920 and CVE-2025-1244.
- emacs25
- Released ELA-1335-1 addressing CVE-2024-53920 and CVE-2025-1244.
- emacs24
- Began work on uploads to address CVE-2022-45939, CVE-2024-53920,
CVE-2025-1244.
--
Sean Whitton
signature.asc
Description: PGP signature
