Debian LTS and ELTS - January 2024

To: debian-lts@lists.debian.org
Subject: Debian LTS and ELTS - January 2024
From: Sylvain Beucler <beuc@beuc.net>
Date: Thu, 1 Feb 2024 14:53:45 +0100
Message-id: <[🔎] 20240201135345.GA4192@mail.beuc.net>

Here is my public monthly report.

Thanks to our sponsors for making this possible, and to Freexian for
handling the offering.
https://www.freexian.com/lts/debian/#sponsors


LTS

- Front Desk (week 4)
  - Mark 1 package for update
  - Triage or precise triage for ~20 CVEs
  - Tidy golang-1.11 buster triage

- cacti
  - Continue triaging and backporting CVEs backlog, for buster
  - Tidy Git repository for buster


ELTS

- Front-Desk (week 4)
  - Associate CVEs from newer, branched Debian packages with different
    names to older ELTS packages (freerdp*, golang*, libidn2*,
    openssl*, python3*, tomcat*)
  - Mark 4 supported packages for update
  - Triage or precise triage for ~15 CVEs
  - Drop 2 unsupported packages

- freerdp [v1]
  - Continue work from last month
  - Fix another regression, in past CVE-2020-11089 fix
  - Clarify incorrect CVE-2023-40188 description with upstream
  - Coordinate Git hosting with Debian Remote team
  - Stress-test new Freexian CI staging
  - ELA-1030-1
    https://www.freexian.com/lts/extended/updates/ela-1030-1-freerdp/


Documentation and tooling

- Report incorrectly supported modsecurity-crs/jessie

- Documentation
  - TestSuites: more freerdp tests
    https://lts-team.pages.debian.net/wiki/TestSuites/freerdp.html
  - Ping lts-coordinator about issues with Front-Desk reminder template

-- 
Sylvain Beucler
Debian LTS Team

Reply to:

Prev by Date: Re: man-db hardening fixes
Next by Date: Debian LTS report for January 2024
Previous by thread: (E)?LTS report for january
Next by thread: Debian LTS report for January 2024
Index(es):
- Date
- Thread