This month I had 14.75 hours and I spent my 14.751 hours on the following projects:
* New release of python-django for wheezy. This release did not fix any security issues, but did fix a number of bugs. * Research security issue in twisted, CVE-2016-1000111. I concluded that it wasn't a security risk in twisted as search and applying the upstream patch means breaking functionality that people could be relying on. [Message: 87k2fp83cv....@prune.linuxpenguins.xyz] * Researched security issues in matrixssl (no CVE assigned). Matrixssl bignum issues. This work is ongoing. [Thread: 87inv9821q....@prune.linuxpenguins.xyz] * Investigated another security issue in matrixssl, and submitted patch for peer review on the Debian LTS mailing list. [Message: 8760qt43tm....@prune.linuxpenguins.xyz] * Research security issue CVE-2015-8834 in wordpress. This work is ongoing. [Thread: id:161e564a-9583-bb17-f975-8a53dfcab...@debian.org] * Research security issue CVE-2016-2839 in Firefox, and found the security issue is non-existant in wheezy and has been fixed. [Message: 20160817083426.bc7ltslwjdpma...@glandium.org] * Investigated security issues in Chicken. CVE-2016-6830 and CVE-2016-6831. [Message: 87shu1429n....@prune.linuxpenguins.xyz] -- Brian May <b...@debian.org>
