Stefano Rivera LTS & ELTS Report for April & May 2022

To: debian-lts@lists.debian.org
Subject: Stefano Rivera LTS & ELTS Report for April & May 2022
From: stefanor@debian.org
Date: Thu, 2 Jun 2022 12:57:05 +0000
Message-id: <[🔎] 20220602125705.66azq6erqltftgpc@satie.tumbleweed.org.za>
Mail-followup-to: stefanor@debian.org, debian-lts@lists.debian.org

April was my first month contributing Freexian sponsored work to Debian
LTS. I started with ELTS in May. As April was my first month, and I
didn't have any hours allocated, covering both months in one report.

In April, I spent 5 hours doing LTS security updates for:
* twisted, backporting a fix for CVE-2022-24801 to stretch
  (finished in May)

In May, I spent 14 hours doing LTS security updates for:
* completing the twisted update from April.
* kicad, backporting a fix for CVE-2022-23803, CVE-2022-23804,
  CVE-2022-23946, CVE-2022-23947 to stretch.
* waitress, backporting a fix for CVE-2019-16785, CVE-2019-16786,
  CVE-2019-16789, CVE-2019-16792, CVE-2022-24761 to stretch.
* lrzip, backporting a fix for CVE-2022-28044 to stretch.
* openssl, backporting a fix for CVE-2022-1292 to stretch.

In May I spent 4 hours doing ELTS security updates for:
* openssl, backporting a fix for CVE-2022-1292 to jessie.
* openjpeg2, backporting a fix for CVE-2022-1122 to jessie.
* intel-microcode, looking at backporting a newer version. Not uploaded
  due to more updates on the way.

SR

-- 
Stefano Rivera
  http://tumbleweed.org.za/
  +1 415 683 3272

Reply to:

Prev by Date: Taking from backports - icingaweb2
Next by Date: LTS report for May 2022 - Abhijith
Previous by thread: Re: Taking from backports - icingaweb2
Next by thread: LTS report for May 2022 - Abhijith
Index(es):
- Date
- Thread