[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

LTS report for June 2019 - Abhijith PA

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

June 2019 was my 17th month as a Debian LTS paid contributor. I was
assigned 14 hours plus 7 hours carried from last month. I spent 7 hours
for the following.

* ansible: Marked CVE-2019-10156 as no-dsa. A small subset of upstream
  patch can be applied and it can be done in further uploads.

* libspring-security-2.0-java: Fixed CVE-2019-11272, tested and
  uploaded. DLA[1]

* tomcat8: Prepared update for CVE-2019-0221 in last month. Marked
  CVE-2019-10072 as not affected. One of the old security patche is
  making TestSendFile tests to fail. Using snapshot.debian.org to find
  the change causing the regression.


Regards
Abhijith PA

[1] - https://lists.debian.org/debian-lts-announce/2019/07/msg00008.html
-----BEGIN PGP SIGNATURE-----
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=3gLO
-----END PGP SIGNATURE-----
Reply to: