Debian LTS and ELTS report for February 2026 (charles)
Hi,
I've worked during February 2026 on the below listed packages, for
Freexian LTS/ELTS [1].
Many thanks to Freexian and sponsors [2] for providing this opportunity!
LTS
===
- Identified both bullseye and bookworm are affected by CVE-2023-6601
and fixed the security tracker.
(https://salsa.debian.org/security-tracker-team/security-tracker/-/merge_requests/264)
- Released DLA-4486-1 for nova.
- Helped zigo investigate build failure in LTS infrastructure and
debusine.
(https://lists.debian.org/debian-lts-announce/2026/02/msg00025.html
ELTS
====
- Fixed elts script used in triaging to work with absolute paths.
- Investigated ffmpeg CVE-2023-6601 and found out they were incorrectly
marked as fixed in oldstable and lts. Cherry-picked commits to fix it
in buster/stretch.
- ffmpeg was put on hold for my first week as FD, but it's already
resumed.
FD
==
- Exchanged mails.
- Triaged the following packages for LTS and ELTS:
- VIPS
- Firefox-esr
- Flask
- diskcache
- nss
- ruby-rack
- golang-github-go-chi-chi
- golang-refraction-networking-utls
- gpac
- thunderbird
- openfoam
- util-linux
- libsixel
- vim
- gvfs
- mumble
- inetutils
- wireshark
- imagemagick
- libapache-sessionx-perl
- node-rollup
- node-dottie
Tooling, Documentation and Misc
================================
- Attended (E)LTS meeting.
- Went over FD documentation.
- Fixed some links and added small improvements to documentation:
- ELTS triage issues (commit b968935).
- LTS documentation.
(https://salsa.debian.org/lts-team/lts-team.pages.debian.net/-/merge_requests/29)
Best regards,
Charles
[1] https://www.freexian.com/lts/
[2] https://www.freexian.com/lts/debian/#sponsors
Reply to: