Hello,
July was my thirteenth month working on LTS and ELTS. Thank you to
Freexian and Freexian's sponsors for making these projects possible:
<https://www.freexian.com/lts/debian/#sponsors>
LTS
- git
- Started preparing an upload for bullseye fixing
CVE-2023-25652, CVE-2023-25815, CVE-2023-29007, CVE-2024-32002,
CVE-2024-32004, CVE-2024-32021 and CVE-2024-32465,
and with a follow-up fix for CVE-2019-1387.
ELTS
- git
- Started preparing uploads for jessie and stretch fixing
CVE-2023-25652, CVE-2023-25815, CVE-2023-29007, CVE-2024-32002 and
CVE-2024-32021. The upload to stretch also includes a follow-up fix
for CVE-2019-1387.
These updates to git are taking a lot of time. My backporting work
is complete, but there is some testing still to do, both manual and
automated.
One interesting part of the backporting work was translating C into
sh, because this part of git was rewritten from shell into C between
jessie and stretch. Automated testing helps a lot with being
confident about my translation, though I also sought peer review,
and Roberto was able to take a look.
- emacs24
- Released ELA-1122-1 fixing CVE-2024-39331.
- emacs24
- Released ELA-1123-1 fixing CVE-2024-39331.
--
Sean Whitton
Attachment:
signature.asc
Description: PGP signature