In May 2019, I have worked on the Debian LTS project for 23.75 hours (as planned) and on the Debian ELTS project for another 10 hours (as planned) as a paid contributor.
LTS Work
- Upload to jessie-security: 389-ds-base (DLA 1779-1), 1 CVE [1]
- Upload to jessie-security: qt4-x11 (DLA 1786-1), 5 CVEs [2]
- Upload to jessie-security: libav (DLA 1809-1), 2 CVEs [3]
- Prepare a test-build for qemu [4]. Testing still pending.
- Prepare a test-build for mupdf [5]. Testing still pending.
- Triaging of open CVEs for 12 packages
ELTS Work
- Dive deeply into questionable issues that were open for pacemaker.
- CVE-2018-16877/pacemaker -> not affected
- CVE-2018-16878/pacemaker -> ignored -> not affected
- Upload to wheezy-lts: sqlite3 (ELA 123-1), 1 CVE [6]
- Upload to wheezy-lts: glib2.0 (ELA 125-1), 1 CVE [7]
References
- [1] https://lists.debian.org/debian-lts-announce/2019/05/msg00008.html
- [2] https://lists.debian.org/debian-lts-announce/2019/05/msg00014.html
- [3] https://lists.debian.org/debian-lts-announce/2019/05/msg00043.html
- [4] http://packages.sunweavers.net/debian/pool/main/q/qemu/
- [5] http://packages.sunweavers.net/debian/pool/main/m/mupdf/
- [6] https://deb.freexian.com/extended-lts/updates/ela-123-1-sqlite3/
- [7] https://deb.freexian.com/extended-lts/updates/ela-125-1-glib2.0/