On Sun, Sep 10, 2023 at 09:22:03PM +0300, Adrian Bunk wrote:
> DLAs released:
>...
> DLA-3552-1 gst-plugins-ugly1.0
> 2 vulnerabilities without CVE numbers assigned
>
>
> ELAs released:
>...
> ELA-941-1 gst-plugins-ugly1.0 (stretch)
> 2 vulnerabilities without CVE numbers assigned
>...
DLAs released:
DLA-3517-1 pdfcrack
CVE-2020-22336
DLA-3519-1 ghostscript
CVE-2023-38559
DLA-3528-1 poppler
CVE-2020-36023 CVE-2020-36024
DLA-3552-1 gst-plugins-ugly1.0
2 vulnerabilities without CVE numbers assigned
ELAs released:
ELA-928-1 poppler (jessie+stretch)
CVE-2020-36023
I've worked during July 2023 on the below listed packages, for Freexian
LTS/ELTS [1]
Many thanks to Freexian and sponsors [2] for providing this opportunity!
LTS:
zabbix - DLA-3538-1 (see advisory for details.)
A noteworthy change is for CVE-2013-7484, which changes the way
the
I've worked during August 2023 on the below listed packages, for Freexian
LTS/ELTS [1]
Many thanks to Freexian and our sponsors [2] for providing this opportunity!
LTS:
===
docker.io:
* Santiago is trying to test my release. Testing is especially complicated due
to lack of integration test
Hi,
in August 2022, on behalf of Freexian and through my company velocitux
UG, I have worked on the following (E)LTS tasks:
ELA-666-1: sqlite3
==
Backported some security fixes to jessie. This was quite
time-consuming while I had to sort out how to properly run the test
suite,
LTS Hours worked:
11 hours
DLA-2734-1 curl
CVE-2021-22898 CVE-2021-22924
Non-DLA LTS work:
- debugged ledger issue that caused non-zero leftover time
in past months
- fixed bin/give-back-hours when run in August/September
ELTS hours worked:
3 hours
ELA-470-1 curl
CVE-2021-22898
hi,
in August 2021 I spent 3h managing (E)LTS contributors:
- dispatch work hours for LTS and ELTS
- prepare the monthly Freexian blog post published on raphaelhertzog.com
- mail and irc communication, incl.
- semi-automatic unclaim packages
- too many claimed packages
- missing DLAs on
hi,
I August I spent 7h managing (E)LTS contributors for:
- dispatching work hours for LTS and ELTS
- mail and irc communication, incl.
- semi-automatic unclaim packages
- too many claimed packages
- missing DLAs on www.d.o
- issues of individual contributors
- preparing and
Hi,
During the month of August, I have spent 21.75h working on:
- clamav security update
- thunderbird 68.11 update
- libx11 security update
- gupnp security update, including finding a UAF (use-after-free) issue that led
to a server crash
- security-tracker improvements in the python3 work
-
Hi,
During the month of August I spent 31 hours on the following tasks:
- php5 update
- ghostscript update
- CVE triaging
- evince update
- atril update
- preparatory work for firefox ESR 68 and thunderbird 68
As for ELTS I spent 8.5h on the following:
- php5 update
- CVE triaging
-
10 matches
Mail list logo