I've worked during november on the below listed packages, for Freexian LTS/ELTS [1] Many thanks to Freexian and our sponsors [2] for providing this opportunity! LTS === netty ------- Try to update sid version blocked by brotli Backport patches Made a first partial release Pach CVE-2025-58057 made a second partial release Review work of Edwin Jiang about CVE-2025-58056 made final sid release Prepare a bookworm/trixie and bullseye release. Waiting review/green light by security team libarchive -------------- Upload a version to sid Fix d/watch that is broken Determine that CVE-2025-5915 is not present before bookworm Release DLA-4368-1 fixing CVE-2025-5914 CVE-2025-5916 CVE-2025-5917 CVE-2025-5918 squid -------- Fix problems found by santiago Release DLA 4369-1 fixing CVE-2025-59362 CVE-2025-62168 Propose PU 5.7-2+deb12u5 fixing remaining CVEs for bookworm rails ------- import security version to git Determined that fix of CVE-2022-32224 should not be applied because it break if ruby-psych is < 4 Fix CVE-2023-38037, CVE-2024-26144, CVE-2024-28103, CVE-2024-41128, CVE-2024-47887, CVE-2024-47888, CVE-2024-47889, CVE-2024-54133 ELTS ==== libarchive -------------- Release ELA-1575-1 fixing CVE-2025-5914 CVE-2025-5916 CVE-2025-5917 CVE-2025-5918 gst-plugins-good ------------------------- Fix CVE-2025-47183 CVE-2025-47219 and release ELA-1576-1 Fix CVE-2024-47543, CVE-2024-47545, CVE-2024-47546, CVE-2024-47597, CVE-2025-47219 and release ELA-1577-1 squid -------- fix CVE-2023-5824 CVE-2023-46728 CVE-2025-54574 CVE-2025-59362 CVE-2025-62168 Release ELA bind9 -------- Try to backport to buster last 9.11 git tree from upstream (6h) Analyse CVE-2025-40780 Document regression risk for last 9.11 Other ===== I attend monthly meeting I was FD Cheers
Attachment:
signature.asc
Description: This is a digitally signed message part.