Debian LTS and ELTS - August 2021

2021-10-01 Thread Sylvain Beucler
Here is my public monthly report. Thanks to our sponsors for making this possible, and to Freexian for handling the offering. https://www.freexian.com/services/debian-lts.html#sponsors LTS - gnutls28 - non-security upload to better handle expiring root certificates https://lists.debian.or

Re: Accepted krb5 1.15-1+deb9u3 (source) into oldoldstable

2021-10-01 Thread Dameon Wagner
On Fri, Oct 01 2021 at 14:44:25 +0300, Adrian Bunk scribbled in "Re: Accepted krb5 1.15-1+deb9u3 (source) into oldoldstable": > On Fri, Oct 01, 2021 at 11:58:17AM +0100, Dameon Wagner wrote: > > > > Hi, > > Hi Dameon, > > > Apologies if this isn't the correct list to flag this, but it appears >

Re: Accepted krb5 1.15-1+deb9u3 (source) into oldoldstable

2021-10-01 Thread Adrian Bunk
On Fri, Oct 01, 2021 at 11:58:17AM +0100, Dameon Wagner wrote: > > Hi, Hi Dameon, > Apologies if this isn't the correct list to flag this, but it appears > that the upload for this DLA was missing the two all-architecture > binary packages: krb5-doc and krb5-locales. > > Running `apt-cache poli

Re: Accepted krb5 1.15-1+deb9u3 (source) into oldoldstable

2021-10-01 Thread Dameon Wagner
On Thu, Sep 30 2021 at 19:23:22 +0100, Adrian Bunk wrote in "Accepted krb5 1.15-1+deb9u3 (source) into oldoldstable": > Format: 1.8 > Date: Thu, 30 Sep 2021 16:30:13 +0300 > Source: krb5 > Binary: krb5-user krb5-kdc krb5-kdc-ldap krb5-admin-server krb5-kpropd > krb5-multidev libkrb5-dev libkrb5-d

(E)LTS report for September 2021

2021-10-01 Thread Adrian Bunk
LTS Hours worked: 19.5 hours DLA 2770-1 weechat CVE-2020-8955 CVE-2020-9759 CVE-2020-9760 CVE-2021-40516 DLA 2771-1 krb5 CVE-2018-5729 CVE-2018-5730 CVE-2018-20217 CVE-2021-37750 DLA 2772-1 taglib CVE-2017-12678 CVE-2018-11439 ELTS hours worked: 3 hours ELA-489-1 weechat CVE-2021-40516

Debian LRS - September 2021

2021-10-01 Thread Neil Williams
Here is my public monthly report. Thanks to our sponsors for making this possible, and to Freexian for handling the offering. https://www.freexian.com/services/debian-lts.html#sponsors I helped with triage in the security tracker related to Debian bugs 994754 and 994746 (ccextractor and gpac). I

Re: stretch-security buildd builds are now broken (after 2021-10-01; le cert issue?)

2021-10-01 Thread Adrian Bunk
On Fri, Oct 01, 2021 at 01:21:38AM -0400, Boyuan Yang wrote: > (Please cc me when needed) > > Dear LTS folks, > > I'd like to raise the issue that buildd stretch-security builds are now > completely broken after 2021-10-01. For example, see > https://buildd.debian.org/status/architecture.php?a=al