Hi,
Here is my LTS report for December.
I was allocated 20 hours. I have spent all of them in the following
tasks:
* libsndfile:
+ investigate CVE-2018-19432 and show it is a duplicate of
CVE-2018-13139. Do not ask for CVE rejection though since
issues have different symptoms/paths an
Hi,
December 2017 was my 16th month as a payed Debian LTS contributor.
I was allocated 14 hours. I have spent all of them doing the following
tasks:
* Finish to debug ming CVE-2017-11732 and write a patch addressing this
issue.
https://github.com/libming/libming/issues/80
Merged upstream.
In December I spent my 10 hours continuing working on CVE-2017-9935 /
tiff / tiff3.
Fixing this was made difficult, because it is possible this code has
never been tested against an image containing an actual transfer
function.
I submitted a patch upstream, and it was accepted.
https://gitlab.co
Hi,
December 2016 was my fourth month as a payed Debian LTS contributor.
I was allocated 13.5 hours. I spent 11 hours doing the following tasks:
* Review ffmpeg patches for libav:
https://lists.debian.org/debian-lts/2016/12/msg00058.html
* Prepare, test and upload a security update for qemu
