Hi,
January 2017 was my fifth month as a payed Debian LTS contributor.
I was allocated 15.25 hours. I spent all of them doing the following tasks:
* CVE triage work, review patches and reproduce security issues for libav.
* Test and upload a security update for libav (0.8.19-0+deb7u1).
* Prepare, test and upload a security update for botan1.10 (botan1.10_1.10.5-1+deb7u2).
* Prepare a security upload for potrace, not uploaded yet.
Fixing the issue turned out to be harder than it seemed to be, because the
Stretch patch doesn't fix the issue (completely). Moreover the issue is
only present with optimization flags, making debugging harder.
* Test and upload a security update for libav (0.8.20-0+deb7u1).
* Pursue my CVE triage work for Xen.
Investigate to find security relevant parts of QEMU in Xen.
This work is not public anymore, I plan to publish it as soon as possible in
the ML.
Cheers,
Hugo
--
Hugo Lefeuvre (hle) | www.owl.eu.com
4096/ ACB7 B67F 197F 9B32 1533 431C AC90 AC3E C524 065E
Attachment:
signature.asc
Description: PGP signature