LTS & ELTS Report for April & May 2022
April was my first month contributing Freexian sponsored work to Debian LTS. I started with ELTS in May. As April was my first month, and I didn't have any hours allocated, covering both months in one report.
In April, I spent 5 hours doing LTS security updates for:
- twisted, backporting a fix for CVE-2022-24801 to stretch (finished in May)
In May, I spent 14 hours doing LTS security updates for:
- completing the twisted update from April.
- kicad, backporting a fix for CVE-2022-23803, CVE-2022-23804, CVE-2022-23946, CVE-2022-23947 to stretch.
- waitress, backporting a fix for CVE-2019-16785, CVE-2019-16786, CVE-2019-16789, CVE-2019-16792, CVE-2022-24761 to stretch.
- lrzip, backporting a fix for CVE-2022-28044 to stretch.
- openssl, backporting a fix for CVE-2022-1292 to stretch.
In May I spent 4 hours doing ELTS security updates for:
- openssl, backporting a fix for CVE-2022-1292 to jessie.
- openjpeg2, backporting a fix for CVE-2022-1122 to jessie.
- intel-microcode, looking at backporting a newer version. Not uploaded due to more updates on the way.
In April, I spent 4 hours of Freexian-sponsored Debian time on:
- The DebConf 22 website.
- Preparations for DebConf 22.
- Applying related security updates (from LTS work) to Debian stable.
In May, I spent 12 hours of Freexian-sponsored Debian time on:
- The DebConf 22 website.
- Preparations for DebConf 22.
- Applying related security updates (from LTS work) to Debian stable.
- Fixing the flit support in dh-python.