Debian LTS and ELTS - September 2023
Here is my public monthly report.
Thanks to our sponsors for making this possible, and to Freexian for
handling the offering.
https://www.freexian.com/lts/debian/#sponsors
LTS
- ruby-loofah & ruby-rails-html-sanitizer
- Dual upload, as ruby-loofah needed to be adapted so its new
security functions could used by ruby-rails-html-sanitizer
- Clean-up ruby-rails-html-sanitizer Git history
- DLA 3565-1 for ruby-loofah (3 CVEs)
https://lists.debian.org/debian-lts-announce/2023/09/msg00011.html
- DLA 3566-1 for ruby-rails-html-sanitizer (4 CVEs)
https://lists.debian.org/debian-lts-announce/2023/09/msg00012.html
- glib2.0
- Peer review and testing for Santiago's DLA 3583-1
https://lists.debian.org/debian-lts-announce/2023/09/msg00030.html
- tiff
- Additional triage, update fixed CVEs in past uploads
- Drop from work queue
ELTS
- glib2.0
- Peer review and testing for Santiago's ELA 964-1
https://www.freexian.com/lts/extended/updates/ela-964-1-glib2.0/
- tiff
- Additional triage, vulnerability assessment, update fixed CVEs in
past uploads
- Drop from work queue
- libvpx
- Rebuild Git history
- ELA-973-1 (1 CVE, stretch & jessie)
https://www.freexian.com/lts/extended/updates/ela-973-1-libvpx/
Documentation and tooling
- LTS Documentation
- TestSuites: rails buster update
https://lts-team.pages.debian.net/wiki/TestSuites/rails.html
- Tooling:
- find-work: display old package in the queue in red
(following weekly report)
- Team discussions (private GitLab issues)
- Experimental GitLab issue-based workflow:
Clean-up and unify my LTS/ELTS check-list
- Help clarify linux-5.10 status in current tooling
- Monthly report guidelines comment
- IRC team meeting
--
Sylvain Beucler
Debian LTS Team
Reply to: