Debian LTS and ELTS report for December 2025 (charles)

To: debian-lts@lists.debian.org
Subject: Debian LTS and ELTS report for December 2025 (charles)
From: Carlos Henrique Lima Melara <charles@debian.org>
Date: Mon, 5 Jan 2026 21:13:02 -0300
Message-id: <[🔎] 3vt4tdxjqs5w3ux6rw7founhq2xkuqlcyoaxcz6kykeq3efyki@25nq7fvwkrvo>

I've worked during December 2025 on the below listed packages, for
Freexian LTS/ELTS [1].

Many thanks to Freexian and sponsors [2] for providing this opportunity!

LTS
===

- Worked on ffmpeg for bullseye to fix CVE-2023-6603, CVE-2024-36615,
  CVE-2025-1594, CVE-2025-7700, CVE-2025-9951, CVE-2025-10256 and
  CVE-2025-63757.
    - Submitted the work upstream and it was merged in the 4.3 lts
      branch! I very much think this could be advertised broadly :-)
      (https://code.ffmpeg.org/FFmpeg/FFmpeg/pulls/21275)
    - DLA incoming shortly.

ELTS
====

- Started to work on ffmpeg for buster to fix pending CVEs.
    - Upstream 4.1 (buster) and 3.2 (stretch) branches are EOL'ed.


Tooling, Documentation  and Misc
==========================

- Attended (E)LTS meeting.
- Prepared the upload of gdk-pixbuf's bookworm-pu to fix CVE-2025-7345.
  (https://bugs.debian.org/1121041)

Best regards,
Charles

[1]  https://www.freexian.com/lts/
[2]  https://www.freexian.com/lts/debian/#sponsors

Reply to:

Prev by Date: Documentation recap - December
Next by Date: Regression update for libvirt in bullseye?
Previous by thread: Documentation recap - December
Next by thread: Regression update for libvirt in bullseye?
Index(es):
- Date
- Thread