March Report
In March I had 10 hours allocated, and I used all 10 hours on the
following tasks:
Research various packages, including postgresql-9.1 and libreoffice.
Update security tracker entries for various packages.
postgresql-9.1
* Apply patches for CVE-2018-7536 and CVE-2018-7537, both
concerned with DOS attacks in regexps.
* Correspondance concerning postgresql-9.1 status in wheezy.
python-django
* Update debian/wheezy branch with missing security updates.
* Upload fixed version to Debian LTS archive.
* Send DLA 1303-1 advisory.
tiff
* Research tiff CVE-2018-7456.
* Add information http://bugzilla.maptools.org/show_bug.cgi?id=2778#c1
* Reproduce the issue.
* Create patch to fix CVE-2018-7456.
* Debug compiler optimizing bug with proposed fix.
* Sent email concerning above problem to debian-lts.
--
Brian May <bam@debian.org>
Reply to: