On Montag, 2. Oktober 2023 19:18:49 CET Santiago Ruano Rincón wrote: > El 30/09/23 a las 00:09, Hans van Kranenburg escribió: > > Package: debian-security-support > > Version: 1:11+2023.05.04 > > Severity: normal > > > > Hi, > > > > Upstream security support for Xen 4.14 has ended recently. This also > > means that security support for Debian Bullseye has ended. > > > > The complexity of the software involved does not really allow for anyone > > else than the upstream developers, with a deep understanding of the > > inner workings of the hypervisor code, to apply/backport new patches. > > > > For security-support-ended.deb11, this could be a line like: > > > > xen 4.14.6-1 2023-09-21 > > https://xenbits.xen.org/docs/4.14-testing/SUPPORT.html#release-support > > > > Note: This 4.14.6-1 package version is not visible for bullseye yet, > > right now, in the archive. It was submitted for the bullseye point > > release, and has just been accepted into it: > > https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=1053177 > > > > Thanks, > > Hans > > Hello, > > Could you please wait a little bit before moving forward. In the Debian > bullseye LTS context, we would like to know if there are interest from > LTS users, and look for help to maintain it. At least, partially. > > Thank you, > > -- Santiago
Hi Santiago, Any update on this? As upstream security support for xen 4.14 has ended, the Debian xen team doesn't have the knowledge and resources to provide further security support. So if there are people with the resources and knowledge to further provide security support for xen in bullseye it would be good to know this is happening. But if not, it would also be good to inform our users that there is no longer security support for xen in bullseye. Thanks, Maxi
signature.asc
Description: This is a digitally signed message part.