LTS report for January 2019 - Abhijith PA

To: Debian LTS <debian-lts@lists.debian.org>
Subject: LTS report for January 2019 - Abhijith PA
From: Abhijith PA <abhijith@disroot.org>
Date: Sat, 2 Feb 2019 19:05:33 +0530
Message-id: <[🔎] 5b03e998-06c9-a77c-c606-e27f07290618@disroot.org>

January 2019 was my 12th month as a Debian LTS paid contributor. I was
assigned 12 hours and I spend all of them for the following:

 * libraw: There are 29 vulnerabilities reported against libraw. Almost
   all of them are results of fuzz testing. Marked CVE-2017-14348,
   CVE-2018-20337, CVE-2018-20363, CVE-2018-20364 and CVE-2018-20365 as
   no DSA for jessie.

 * mxml: Fixed CVE-2016-4570, CVE-2016-4571, CVE-2018-20004. Uploaded
   and released DLA[1]

 * drupal7: Fixed CVE-2019-6339. Tested, uploaded and released DLA[2]
   CVE-2019-6338 will be fixed after CVE-2018-1000888.


Regards
Abhijith PA

[1] - https://lists.debian.org/debian-lts-announce/2019/01/msg00018.html
[2] - https://lists.debian.org/debian-lts-announce/2019/02/msg00004.html

Reply to:

Prev by Date: Re: automating process for publishing DLAs on the website
Next by Date: Re: about 500 DLAs missing from the website
Previous by thread: Re: Review and testing phpmyadmin for Jessie LTS
Next by thread: DLAs not arriving at my mailbox and I think it may be a general issue
Index(es):
- Date
- Thread