April was my first month contributing Freexian sponsored work to Debian LTS. I started with ELTS in May. As April was my first month, and I didn't have any hours allocated, covering both months in one report.
In April, I spent 5 hours doing LTS security updates for: * twisted, backporting a fix for CVE-2022-24801 to stretch (finished in May) In May, I spent 14 hours doing LTS security updates for: * completing the twisted update from April. * kicad, backporting a fix for CVE-2022-23803, CVE-2022-23804, CVE-2022-23946, CVE-2022-23947 to stretch. * waitress, backporting a fix for CVE-2019-16785, CVE-2019-16786, CVE-2019-16789, CVE-2019-16792, CVE-2022-24761 to stretch. * lrzip, backporting a fix for CVE-2022-28044 to stretch. * openssl, backporting a fix for CVE-2022-1292 to stretch. In May I spent 4 hours doing ELTS security updates for: * openssl, backporting a fix for CVE-2022-1292 to jessie. * openjpeg2, backporting a fix for CVE-2022-1122 to jessie. * intel-microcode, looking at backporting a newer version. Not uploaded due to more updates on the way. SR -- Stefano Rivera http://tumbleweed.org.za/ +1 415 683 3272