Debian LTS & ELTS -- June 2024
Hello,
Here is my June 2024 monthly report for the Freexian LTS/ELTS [1] initiative.
Many thanks to Freexian and sponsors [2] for providing this opportunity!
Turns out, this was my first month working on the LTS/ELTS projects, and I would
like to thank Santiago for the assistance, review, support and correction on
several typos and mistakes I made.
LTS:
====
nss
I triaged the status of CVE-2023-6135 [3] for the nss package in Debian Buster.
DId some build tests, reviewed upstream release notes and git repositories, sent
a bunch of emails.
Finally, in talks with upstream, we decided that this CVE will not be fixed for
Debian Buster, and has been marked as ignored [3].
libmojolicious-perl
Released DLA-3846-1 [4] for CVE-2020-36829. See advisory for details.
ELTS:
=====
The above LTS activities required all my available time this month.
[1] https://www.freexian.com/lts/
[2] https://www.freexian.com/lts/debian/#sponsors
[3] https://deb.freexian.com/extended-lts/tracker/CVE-2023-6135
[4] https://lists.debian.org/debian-lts-announce/2024/06/msg00025.html
regards
Reply to: