Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1e079878 by Sylvain Beucler at 2022-11-12T16:48:26+01:00
TEMP-000-DD73A0/php-illuminate-database: buster fixed
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4f774c1a by Sylvain Beucler at 2022-11-12T16:21:48+01:00
CVE-2022-3957/gpac: buster end-of-life
- - - - -
e36a7af7 by Sylvain Beucler at 2022-11-12T16:21:48+01:00
dla: add sysstat
- - - - -
2
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0c767c32 by Sylvain Beucler at 2022-11-11T16:04:09+01:00
dla: add libsdl2
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a5ed4a9f by Sylvain Beucler at 2022-11-11T15:56:42+01:00
dla: add libarchive
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
32139bac by Sylvain Beucler at 2022-11-11T15:48:12+01:00
dla: add jqueryui
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a69c0daa by Sylvain Beucler at 2022-11-11T14:30:37+01:00
dla: add nginx
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2ebeb330 by Sylvain Beucler at 2022-11-11T12:55:46+01:00
CVE-2022-32149: fix buster package name
- - - - -
c196c055 by Sylvain Beucler at 2022-11-11T12:56:36+01:00
CVE-2022-3821/systemd: buster
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
af25ae6a by Sylvain Beucler at 2022-11-11T12:20:38+01:00
CVE-2022-21227/node-sqlite3: buster not-affected
- - - - -
cfa302c1 by Sylvain Beucler at 2022-11-11T12:27:46+01:00
CVE-2021-33623/node-trim
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3be1e72c by Sylvain Beucler at 2022-11-11T11:40:45+01:00
CVE-2021-3805/node-object-path: fix wrong patch URL from mitre
- - - - -
ed88d9e4 by Sylvain Beucler at 2022-11-11T11:47:49+01:00
CVE-2021
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
27948f86 by Sylvain Beucler at 2022-11-11T10:43:38+01:00
CVE-2022-32149/golang-golang-x-text: buster postponed
- - - - -
aa2075b8 by Sylvain Beucler at 2022-11-11T10:43:39+01:00
CVE-2022-3275
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
457048bf by Sylvain Beucler at 2022-11-11T08:42:03+01:00
CVE-2022-45061/python3.7: buster postponed
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
768dcc5c by Sylvain Beucler at 2022-11-11T08:18:10+01:00
dla: php-cas: update note
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
69c04ad5 by Sylvain Beucler at 2022-11-09T18:07:33+01:00
golang*: fix a few buster triage
- - - - -
133342c6 by Sylvain Beucler at 2022-11-09T18:07:33+01:00
dla: add golang-github-nats-io-jwt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5b048af4 by Sylvain Beucler at 2022-11-09T16:36:43+01:00
dla: add varnish
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d4683788 by Sylvain Beucler at 2022-11-09T13:42:47+01:00
CVE-2020-22027/ffmpeg: drop stretch triage
so it can be revisited in ELTS
3-4 lines is not particularly invasive, most probably stretch
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2946a3e3 by Sylvain Beucler at 2022-11-09T13:39:55+01:00
lts-cve-triage.py: move down unexpected_nodsa
this sub-report rarely triggers action from front-desk and is of lower priority
- - - - -
1
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a5a10cee by Sylvain Beucler at 2022-11-08T20:08:34+01:00
dla: add qemu
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
7563bbe4 by Sylvain Beucler at 2022-11-08T17:57:30+01:00
qemu: update buster triage 2019-2020 for LTS
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2e85e39d by Sylvain Beucler at 2022-11-08T14:14:18+01:00
qemu: update buster triage 2021-2022 for LTS
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
81631ea8 by Sylvain Beucler at 2022-11-08T12:16:33+01:00
CVE-2022-3872/qemu: buster postponed
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data/CVE
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
00ea0937 by Sylvain Beucler at 2022-11-08T12:01:58+01:00
dla: phpseclib,php-phpseclib: update status
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Hi,
On 07/11/2022 19:08, Anton Gladky wrote:
as you know one of our goals is to keep the git-history of all {E,L}TS
uploads. Some semi-automatic repo creation scripts are in a test phase
to ease this process. I have created some repos and
imported the last available security versions of
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
2e20a81f by Sylvain Beucler at 2022-11-07T16:40:33+01:00
dla: php-cas: add note
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bcd9cc23 by Sylvain Beucler at 2022-11-07T15:36:55+01:00
dla: add puppet-module-puppetlabs-mysql
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1cabfaa4 by Sylvain Beucler at 2022-11-07T13:46:01+01:00
dla: add libde265
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Hi,
I see that a few repositories in salsa.d.o/lts-team/packages/ were
created for packages that haven't been claimed yet.
https://salsa.debian.org/lts-team/packages?sort=created_desc
(I'm not sure who/what did it exactly, there's activity from
"Bot-LTS-package", which may be the
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
159ff561 by Sylvain Beucler at 2022-11-04T17:28:34+01:00
dla: claim phpseclib/php-phpseclib
- - - - -
02cd83d1 by Sylvain Beucler at 2022-11-04T17:28:36+01:00
CVE-2021-30130/phpseclib,php-phpseclib
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
- -
Debian LTS Advisory DLA-3178-1debian-...@lists.debian.org
https://www.debian.org/lts/security/ Sylvain Beucler
November 04, 2022
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
14f929ca by Sylvain Beucler at 2022-11-04T15:04:32+01:00
Reserve DLA-3178-1 for ffmpeg
- - - - -
2 changed files:
- data/DLA/list
- data/dla-needed.txt
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
461da654 by Sylvain Beucler at 2022-11-04T09:23:32+01:00
CVE-2022-2879,CVE-2022-2880,CVE-2022-41715/golang-1.11: buster postponed
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
256dda50 by Sylvain Beucler at 2022-11-03T17:50:51+01:00
DLA-3010-1/ffmpeg: reference 3 CVEs
- - - - -
fd3d2462 by Sylvain Beucler at 2022-11-03T17:55:14+01:00
CVE-2020-20896/ffmpeg: fix stretch
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
38dbe76e by Sylvain Beucler at 2022-11-03T16:54:05+01:00
dla: claim ffmpeg
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
3ec53c92 by Sylvain Beucler at 2022-11-03T16:28:48+01:00
dla: attribute kopanocore status
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
462d2059 by Sylvain Beucler at 2022-11-03T12:48:05+01:00
CVE-2022-42919/python*: clarify notes
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6feed6fc by Sylvain Beucler at 2022-11-03T10:20:17+01:00
dla: android-platform-system-core: contribute additional note
(I registered the CVEs in the tracker this week)
- - - - -
1 changed file
2022/10/msg00022.html
https://lists.debian.org/debian-lts/2022/10/msg00031.html
- Answer LTS Thunderbird user question
https://lists.debian.org/debian-lts/2022/10/msg00021.html
- Monthly meeting (video/Jitsi)
--
Sylvain Beucler
Debian LTS Team
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d51ffb08 by Sylvain Beucler at 2022-11-02T09:45:02+01:00
CVE-2022-20128,CVE-2022-3168 (adb): also register with
android-platform-system-core package (= bullseye)
- - - - -
1 changed file
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
0076ed8e by Sylvain Beucler at 2022-10-31T22:23:20+01:00
CVE-2022-31008/rabbitmq-server: references patches reducing the affected
versions range
not triaging, letting LTS front-desk and/or security
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9fd20b1f by Sylvain Beucler at 2022-10-31T16:36:30+01:00
CVE-2022-3276/puppet-module-puppetlabs-mysql: reference commits following
upstream confirmation
- - - - -
1 changed file:
- data/CVE
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
35eb7223 by Sylvain Beucler at 2022-10-31T15:29:27+01:00
CVE-2022-20128,CVE-2022-3168/android-platform-tools (adb): reference public
disclosure
- - - - -
1 changed file:
- data/CVE/list
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
38f016b3 by Sylvain Beucler at 2022-10-31T14:18:51+01:00
CVE-2022-37454/php*: introduced in 7.2
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
380c2080 by Sylvain Beucler at 2022-10-31T11:10:29+01:00
CVE-2022-37454/python3*: introduced in 3.6
- - - - -
1 changed file:
- data/CVE/list
Changes
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
- -
Debian LTS Advisory DLA-3157-1debian-...@lists.debian.org
https://www.debian.org/lts/security/ Sylvain Beucler
October 24, 2022
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
68ac7208 by Sylvain Beucler at 2022-10-24T12:24:29+02:00
CVE-2022-3637/bluez: buster not-affected
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
58c0d545 by Sylvain Beucler at 2022-10-24T11:39:55+02:00
Reserve DLA-3157-1 for bluez
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cd62ac22 by Sylvain Beucler at 2022-10-22T18:17:20+02:00
CVE-2022-3563/bluez: buster not-affected
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
6fa79b59 by Sylvain Beucler at 2022-10-18T19:50:32+02:00
CVE-2021-3658/bluez: precise buster triage
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c2b134bc by Sylvain Beucler at 2022-10-18T18:51:53+02:00
CVE-2018-10911/bluez: clarify buster triage
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
06a682df by Sylvain Beucler at 2022-10-18T17:23:09+02:00
dla: claim bluez
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Hi,
On 17/10/2022 10:00, Helmut Grohne wrote:
On Wed, Oct 12, 2022 at 03:45:11PM +0200, Sylvain Beucler wrote:
I'll give it some testing on my buster system.
Thank you. I take the absense of a further reponse as "nothing broke".
Right, although I was kinda waiting for your inpu
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
- -
Debian LTS Advisory DLA-3150-1debian-...@lists.debian.org
https://www.debian.org/lts/security/ Sylvain Beucler
October 12, 2022
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
- -
Debian LTS Advisory DLA-3149-1debian-...@lists.debian.org
https://www.debian.org/lts/security/ Sylvain Beucler
October 12, 2022
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9cfd8525 by Sylvain Beucler at 2022-10-12T16:18:19+02:00
Reserve DLA-3150-1 for rexical
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a4b235a9 by Sylvain Beucler at 2022-10-12T16:17:12+02:00
Reserve DLA-3149-1 for ruby-nokogiri
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes
Hi,
I'll give it some testing on my buster system.
A couple things I noticed right now:
- dist in debian/changelog should be 'buster-security' (not 'buster')
- debdiff|diffstat shows spurious '.pc' work files from quilt
(plus a change in a patches/README which maybe adds more noise than it
at the official
Thunderbird contact points.
Cheers!
Sylvain Beucler
Debian LTS Team
On 05/10/2022 15:17, Miroslav Skoric wrote:
After a recent Thunderbird upgrade in Buster (from version 91-something
to 101-something, or like), it stopped handling newsgroups properly
(where the source is News Server (NNTP
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9df7b62f by Sylvain Beucler at 2022-10-08T19:56:28+02:00
CVE-2019-5477/ruby-nokogiri: reference patch
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
f4576e1c by Sylvain Beucler at 2022-10-08T18:55:30+02:00
dla: claim ruby-nokogiri
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
- -
Debian LTS Advisory DLA-3137-1debian-...@lists.debian.org
https://www.debian.org/lts/security/ Sylvain Beucler
October 05, 2022
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
4f5f9af6 by Sylvain Beucler at 2022-10-05T15:46:06+02:00
Reserve DLA-3137-1 for nodejs
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/dla-needed.txt
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
d54a9c94 by Sylvain Beucler at 2022-10-04T19:47:42+02:00
CVE-2021-44531,CVE-2021-44532,CVE-2021-44533/nodejs: buster ignored + add
references
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
ac1e0a17 by Sylvain Beucler at 2022-10-03T13:03:36+02:00
CVE-2022-35255/nodejs: reference patches, buster not-affected
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cc7a7b4d by Sylvain Beucler at 2022-10-03T12:53:56+02:00
CVE-2022-35256/nodejs: reference patches, buster not-affected
- - - - -
1 changed file:
- data/CVE/list
Changes
ons front-desk tooling
- IRC meeting
http://meetbot.debian.net/debian-lts/2022/debian-lts.2022-09-22-13.58.html
--
Sylvain Beucler
Debian LTS Team
Hi,
On 29/09/2022 09:09, Emilio Pozuelo Monfort wrote:
On 28/09/2022 23:54, Ola Lundqvist wrote:
Took me a month to get down here in the email backlog. I think your
reasoning makes sense.
I have added the following to the LTS/Development page.
"If a CVE has been fixed in Debian Stable it
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
47285e9e by Sylvain Beucler at 2022-09-27T15:25:22+02:00
dla: update nodejs notes
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
514877fd by Sylvain Beucler at 2022-09-17T11:58:28+02:00
dla: add e17
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
30f5dc99 by Sylvain Beucler at 2022-09-17T11:44:02+02:00
CVE-2022-3222/gpac: buster end-of-life
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
54339883 by Sylvain Beucler at 2022-09-16T13:53:02+02:00
dla: add wireshark
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e9e59255 by Sylvain Beucler at 2022-09-16T13:08:02+02:00
golang: standardize/clarify buster-lts triage
following discussion with Ola
- - - - -
584817f4 by Sylvain Beucler at 2022-09-16T13:08:44+02
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
28d43909 by Sylvain Beucler at 2022-09-15T14:06:02+02:00
dla: golang-websocket: update note
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
c626c4aa by Sylvain Beucler at 2022-09-15T12:51:57+02:00
dla: add golang-go.crypto
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
Hello,
On 14/09/2022 22:43, Valentin Vidic wrote:
On Wed, Sep 14, 2022 at 06:46:47PM +0200, Sylvain Beucler wrote:
Thank you for claiming 'pcs' in dla-needed.txt and uploading a fixed
version.
LTS uploads follow a procedure which notably involves reserving a DLA in the
security tracker
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
50c4c9b8 by Sylvain Beucler at 2022-09-14T19:42:52+02:00
CVE-2022-30630/golang: introduced in 1.16
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
57672f15 by Sylvain Beucler at 2022-09-14T19:24:02+02:00
CVE-2022-28131/golang: reference patches
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data
, are you waiting for us to check/review something?
Cheers!
Sylvain Beucler
Debian LTS Team
On 12/09/2022 00:50, Debian FTP Masters wrote:
Format: 1.8
Date: Sun, 04 Sep 2022 21:55:16 +0200
Source: pcs
Architecture: source
Version: 0.10.1-2+deb10u1
Distribution: buster-security
Urgency: high
Maintainer
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e5e33f82 by Sylvain Beucler at 2022-09-14T14:37:38+02:00
CVE-2022-38266/leptonlib: buster postponed
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
db27c8b6 by Sylvain Beucler at 2022-09-13T19:16:30+02:00
dla: add notes for rainloop
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e4db1453 by Sylvain Beucler at 2022-09-13T18:59:18+02:00
dla: add rainloop
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
9534dd1f by Sylvain Beucler at 2022-09-13T18:27:55+02:00
dla: add dovecot
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
e0e1200b by Sylvain Beucler at 2022-09-13T17:56:32+02:00
CVE-2021-33193/apache2: link patches from distros with close versions
- - - - -
1 changed file:
- data/CVE/list
Changes
Hi,
IIUC this is about fixing 2 non-security bugs, that were introduced
prior to buster's initial release.
I personally don't think this fits the LTS project scope.
Maybe other LTS members will have a different opinion.
Cheers!
Sylvain Beucler
Debian LTS Team
On 13/09/2022 15:27, Santiago
Hi,
IIUC this is about fixing 2 non-security bugs, that were introduced
prior to buster's initial release.
I personally don't think this fits the LTS project scope.
Maybe other LTS members will have a different opinion.
Cheers!
Sylvain Beucler
Debian LTS Team
On 13/09/2022 15:27, Santiago
Hi,
IIUC this is about fixing 2 non-security bugs, that were introduced
prior to buster's initial release.
I personally don't think this fits the LTS project scope.
Maybe other LTS members will have a different opinion.
Cheers!
Sylvain Beucler
Debian LTS Team
On 13/09/2022 15:27, Santiago
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
469aeac5 by Sylvain Beucler at 2022-09-13T11:10:07+02:00
dla: add glibc
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
cefce46c by Sylvain Beucler at 2022-09-13T11:00:44+02:00
dla: add pluxml
- - - - -
36fe0037 by Sylvain Beucler at 2022-09-13T11:00:46+02:00
nvidia-graphics-drivers: no-dsa-ignored to precise triage
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
43c4475b by Sylvain Beucler at 2022-09-13T10:23:12+02:00
dla: add gdal
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
fdaedd28 by Sylvain Beucler at 2022-09-13T09:57:42+02:00
CVE-2022-1705/golang: buster not-affected
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b60bef9d by Sylvain Beucler at 2022-09-13T08:48:32+02:00
CVE-2020-10735/python3.7: buster postponed
- - - - -
1 changed file:
- data/CVE/list
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
a09bf999 by Sylvain Beucler at 2022-09-12T14:13:12+02:00
dla: add node-thenify
- - - - -
bd463e40 by Sylvain Beucler at 2022-09-12T14:14:19+02:00
dla: update nodejs status
- - - - -
1 changed
Hi,
If sponsored packages are already handled, and we have time to fix this
package, and I think we can fix it.
I think we need to evaluate a package's usage only when fixing is
problematic (time constraints, backport issues, uncooperative
upstream...). Package usage would then be used
Hi Thomas,
To answer the second part of your e-mail:
> How to proceed? Can I simply upload the normal way? IS there a 3rd
> party peer reviewing accepting / rejecting uploads for LTS?
While LTS is mostly handled by members of the LTS Team, any DD can
contribute directly; we have a few
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
bfcda862 by Sylvain Beucler at 2022-09-12T10:26:29+02:00
dla: last buster point release is out, drop conflict caution note
- - - - -
1 changed file:
- data/dla-needed.txt
Changes
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
74328a5a by Sylvain Beucler at 2022-09-06T19:38:57+02:00
CVE-2021-22959,CVE-2021-22960,CVE-2022-32213,CVE-2022-32214,CVE-2022-32215/nodejs:
buster not-affected
- - - - -
1 changed file:
- data
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
1300eaef by Sylvain Beucler at 2022-09-06T19:11:44+02:00
CVE-2021-22939/nodejs: reference patch
- - - - -
1 changed file:
- data/CVE/list
Changes:
=
data
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
b59278eb by Sylvain Beucler at 2022-09-06T19:04:45+02:00
CVE-2021-22930,CVE-2021-22940/nodejs: reference issues and complete patch
- - - - -
1 changed file:
- data/CVE/list
Changes
information
- New weekly information report: internal discussion on how to present
and handle outstanding package updates
- Monthly meeting (using Jitsi)
--
Sylvain Beucler
Debian LTS Team
Hi all,
On 30/08/2022 07:38, Carsten Schoenert wrote:
Hello Anton,
Am 29.08.22 um 22:28 schrieb Anton Gladky:
Hi Carsten,
thanks for update! As the buster is now in LTS hands, would you want
us to release a DLA?
sure, I've somehow forgotten that Buster is now LTS handled.
In the past
Sylvain Beucler pushed to branch master at Debian Security Tracker /
security-tracker
Commits:
5e7fc22a by Sylvain Beucler at 2022-08-29T17:48:25+02:00
dla: claim nodejs
- - - - -
1 changed file:
- data/dla-needed.txt
Changes:
=
data/dla-needed.txt
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA512
- -
Debian LTS Advisory DLA-3082-1debian-...@lists.debian.org
https://www.debian.org/lts/security/ Sylvain Beucler
August 27, 2022
501 - 600 of 8893 matches
Mail list logo