I've worked during December 2024 on the below listed packages, for
Freexian LTS/ELTS [1]
Many thanks to Freexian and sponsors [2] for providing this opportunity!
intel-microcode (DLA-4002-1, ELA-1276-1)
As reported in Nomveberm additional fixes introduced
Hi everyone,
in December I manually tested CVE-2023-50387 and CVE-2023-50868 ("keytrap" and
"NSEC3" security issues) in dnsmasq buster and released it. For bookworm I
uploaded the package fixing those CVEs to the stable-updates queue. I was able
to validate that dnsmasq stretch is also affecte
During the month of December 2024 and on behalf of Freexian, I worked on the
following:
php7.4, php7.3, php7.0 and php5
---
Uploaded php7.4=7.4.33-1+deb11u7 and issued DLA-3986-1.
https://lists.debian.org/msgid-search/?m=z1wxnl0vw0es6...@debian.org
* CVE-2024-8929:
LTS:
curl:
- Determined that CVE-2022-32207 does not affect <= buster.
- Found and documented a regression in CVE-2023-27534.
- CVE-2022-32207 does not affect <= buster
- Released DLA 3692-1, fixing CVE-2023-28322 and CVE-2023-46218,
also including 2 non-security fixes from contributors.
ELTS:
I've worked during December 2023 on the below listed packages, for
Freexian LTS/ELTS [1]
Many thanks to Freexian and sponsors [2] for providing this opportunity!
opendkim - DLA-3680-1
(This is ELA-1017-1, but for buster)
On mentors.d.n a RFS caught my eyes; the package maintainer has
worked o
Le mardi 2 janvier 2024, 14:53:22 UTC Bastien Roucariès a écrit :
Hi,
Obviously the report should be read for decembre 2023
> I've worked during november 2023 on the below listed packages, for Freexian
> LTS/ELTS [1]
>
> Many thanks to Freexian and our sponsors [2] for providing this opportunity!
After completing on-boarding in November, I've worked during December
on the below listed packages, for Freexian LTS/ELTS [1]
Many thanks to Freexian and our sponsors [2] for providing this opportunity!
LTS:
- virglrenderer -- DLA 3232-1, fixing CVEs: CVE-2019-18388 CVE-2019-18389
CVE-20
Hi,
During December I spent 41.5h on LTS working on:
- security-tracker improvements (looking at issue in 8795311f)
- firefox-esr toolchain updates (cargo, cbindgen, as well as supporting Roberto
with LLVM and rust)
- firefox-esr update
- thunderbird update
- CVE triaging
I also spent 10h on
Hi,
During the month of December, I spent 16.5h on LTS on the following tasks:
- firefox-esr update
- thunderbird update
- spamassasin update
- libssh update
- preparing and testing ibus and glib2.0 (there was a regression update on
stretch so I'm being careful here)
For ELTS I only spent 1h on
Hi,
During the month of December, I spent 44 hours working on LTS on the following
tasks:
- samba security update
- llvm-4.0/gcc-4.9 update for armel support
- firefox-esr security update
- CVE triaging
- reviewed and provided feedback on enigmail and related lib updates
- mysql/mariadb lifecycle
10 matches
Mail list logo
