stretch to be less work. I plan on releasing the packages once the
CVEs are fixed in all ELTS releases.
Thanks to our sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee Garrett,
Debian LTS Team
(resending as I lost the CC on the first reply)
On 13/05/2025 13:55, Adrian Bunk wrote:
On Tue, May 13, 2025 at 01:02:30PM +0200, Lee Garrett wrote:
...
I also prepared an update for Thunderbird fixing the following issues:
- CVE-2025-2817
- CVE-2025-4082
- CVE-2025-4083
- CVE-2025-4087
- CVE
- CVE-2025-4083
- CVE-2025-4087
- CVE-2025-4091
- CVE-2025-4093
- CVE-2025-3523
- CVE-2025-3522
- CVE-2025-2830
Thanks to our sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee Garrett,
Debian LTS Team
ating!
Regards,
Lee Garrett,
Debian LTS Team
E-2024-56326
I also worked on fixing CVE-2024-11079 in ansible/bullseye, that however
introduced regressions and needs more work.
Thanks to our sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee Garrett,
Debian LTS Team
the autopkgtests in the process.
Thanks to our sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee Garrett,
Debian LTS Team
[1]
https://tracker.debian.org/news/1600965/accepted-ansible-core-21418-0deb12u2-source-into-proposed-updates/
[2] https://bugs.debian.org/
lease 2.14.18 (which fixes CVE-2024-8775 and CVE-2024-9902), and also manually
patched CVE-2024-11079. For ansible bullseye I also started patching the latter CVE.
Thanks to our sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee Garrett,
Debian LTS Team
onsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee Garrett,
Debian LTS Team
searchers of the two
vulnerabilities who have provided me with a test environment to verify the
functionality of the backport.
I'm also in the process backporting the last two CVE patches for buster.
Thanks to our sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee Garrett,
Debian LTS Team
o our sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee Garrett,
Debian LTS Team
[0] https://bugs.debian.org/1079941
[1] https://lists.thekelleys.org.uk/pipermail/dnsmasq-discuss/2024q1/017430.html
cornercases when using ftf[1] VMs with autopkgtest,
and found a rather intricate bug in autopkgtest that I reported in [2].
I fixed a bug in the freexian CLI when displaying available packages. [3]
Thanks to our sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee Garrett
Hi Chime,
On 11.07.24 19:18, Chime Hart wrote:
Hi Lee-and-All: I am not a programmer, nor a developer, just an enthusiastic
Linux fan. What I am wondering is how do you decide what packages to work on?
LTS work is mainly sponsored by Freexian, who in turn has customers paying for
long-term s
-4237
Which I will upload once I have fixed the remaining CVEs.
Thanks to our sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee Garrett,
Debian LTS Team
[0] https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1069891
[1] https://bugs.debian.org/cgi-bin/bugreport.cgi
t due to commitments on the Mini-Debconf Berlin [0]. I intend to release the
update in the next week.
Thanks to our sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee Garrett,
Debian LTS Team
[0] https://wiki.debian.org/DebianEvents/de/2024/MiniDebconfBerlin
-14 layout to ease with collaboration. The updates for bullseye and buster
will be released shortly.
Thanks to our sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee Garrett,
Debian LTS Team
Hi everyone,
I spent time on samba, and will hopefully be able to resume work on it beginning
of next week.
Regards,
Lee Garrett,
Debian LTS Team
ng an update for bullseye.
Regards,
Lee Garrett,
Debian LTS Team
]
https://listman.redhat.com/archives/libguestfs/2023-September/thread.html#32556
Regards,
Lee Garrett,
Debian LTS Team
https://lists.debian.org/debian-lts/2023/08/msg00027.html
[1] https://github.com/ansible-collections/community.libvirt/issues/156
https://github.com/ansible-collections/community.libvirt/pull/157
[2] https://tracker.debian.org/news/1460347/
Regards,
Lee Garrett,
Debian LTS Team
Hello everyone,
I'll summarize the status of the recent samba discussion about support, it's
package status, and functional tests in this mail.
==
samba support scope & discussions
==
The
tests that involve multiple VMs (and possibly different OSes)
interacting with each other, as this currently can't be easily achieved in
autopkgtest.
Thanks to the sponsors for financing this work, and to Freexian for
coordinating!
[0] https://tracker.debian.org/pkg/rhsrvany
Regards
Hi,
regarding the netlogon fix for samba in LTS, there's a fix underway. I'm however
asking LTS users to send me info about their setup. This should include:
- their smb.conf (redacting any sensitive info of course)
- role of the samba server (e.g. AD DC, NT4-style DC, just file server, etc.)
In June I worked on samba QA, building a testing framework, implemented with
ansible and libvirt/qemu, to test samba against common Windows systems.
Thanks to the sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee Garrett,
Debian LTS Team
In March I worked on the following issues for samba:
- CVE-2020-10704
- CVE-2020-10730
- CVE-2020-10745
- CVE-2020-10760
- CVE-2020-14303
I have also reviewed a DLA notice written by Bastien.
Thanks to the sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee
In February I worked on the following issues for apache2:
- CVE-2022-37436
- CVE-2021-33193
I have just uploaded the final update 2.4.38-3+deb10u9.
I also worked on samba:
- CVE-2016-2124
- CVE-2019-10218
- CVE-2019-14833
- CVE-2019-14847
- CVE-2019-14861
- CVE-2019-14870
- CVE-2019-14902
- CVE-
In January I worked on the following issues for apache2:
- CVE-2006-20001
- CVE-2022-36760
- CVE-2022-37436 (WIP)
Thanks to the sponsors for financing this work, and to Freexian for
coordinating!
Regards,
Lee
Hi everyone,
In December I worked for 11.45 hours on:
- Fixing a regression introduced by the fix of CVE-2019-10206.
- Updating the patch for CVE-2020-10684, as it was incomplete.
In January I did not work on LTS.
Greetings,
Lee
On 12/12/2021 01:21, Utkarsh Gupta wrote:
> Hiya,
>
> On Sun, Dec 12, 2021 at 3:42 AM Lee Garrett wrote:
>> In November I worked for 9 hours on:
>> - triaging ansible CVEs
>> - fixing CVE-2019-10206, CVE-2019-14856
Hi everyone,
In November I worked for 9 hours on:
- triaging ansible CVEs
- fixing CVE-2019-10206, CVE-2019-14856, CVE-2020-10684 in stretch
Greetings,
Lee
Hi Markus,
On 28/01/2021 00:02, Markus Koschany wrote:
> Hello Lee, hello security team,
>
> I have been working on security updates of ansible in Stretch and my intention
> was to fix the remaining issues in Buster as well. However testing those
> upstream patches proved to be rather difficult i
Hi Mike!
(please don't CC Michael, he is not active on the ansible package
anymore and asked to be removed from uploaders.)
On 30/08/2019 12:09, Mike Gabriel wrote:
> The Debian LTS team recently reviewed the security issue(s) affecting your
> package in Jessie:
> https://security-tracker.debian.
31 matches
Mail list logo
