Right here’s my (thirty-fifth) month-to-month however transient replace in regards to the actions I’ve executed within the F/L/OSS world.
Debian
This was my forty fourth month of actively contributing to Debian.
I grew to become a DM in late March 2019 and a DD on Christmas ‘19! o/
There’s a bunch of issues I do, each, technical and non-technical. Listed below are the issues I did this month:
Debian Uploads
Different $issues:
- Being an AM for Arun Kumar, course of #1024.
- Sponsoring stuff for non-DDs.
- Mentoring for newcomers.
- Moderation of -project mailing listing.
Ubuntu
This was my nineteenth month of actively contributing to Ubuntu.
Now that I joined Canonical to work on Ubuntu full-time, there’s a bunch of issues I do! o/
I largely labored on various things, I suppose.
I used to be too lazy to keep up an inventory of issues I labored on so there’s
no concrete listing atm. Possibly I’ll get again to this part later or
will begin to listing stuff from the autumn, as I used to be doing earlier than. 😀
Debian (E)LTS
Debian Lengthy Time period Assist (LTS) is a challenge to increase the lifetime of all Debian steady releases to (a minimum of) 5 years. Debian LTS will not be dealt with by the Debian safety workforce, however by a separate group of volunteers and corporations enthusiastic about making it successful.
And Debian Prolonged LTS (ELTS) is its sister challenge, extending help to the Jessie launch (+2 years after LTS help).
This was my thirty-fifth month as a Debian LTS and twenty-sixth month as a Debian ELTS paid contributor.
I labored for 14.00 hours for LTS and 19.00 hours for ELTS.
LTS CVE Fixes and Bulletins:
- Issued DLA 3094-1, fixing CVE-2021-0561, for flac.
For Debian 10 buster, these issues have been mounted in model 1.3.2-3+deb10u2. - Issued DLA 3095-1, fixing CVE-2022-30122 and CVE-2022-30123, for ruby-rack.
For Debian 10 buster, these issues have been mounted in model 2.0.6-3+deb10u1. - Uploaded rails/2:6.1.6.1+dfsg-1 to unstable for fixing CVE-2022-22577, CVE-2022-27777, and CVE-2022-32224 and thereby, bug #1011941, #1016982, and #1016140.
- Additionally checked out src:samba and the way Ubuntu is taking a look at it. It’s a multitude, actually. And it’s completely different for each, LTS and ELTS. Worse for LTS with 36 opened points. 🙂
ELTS CVE Fixes and Bulletins:
- Issued ELA 671-1, fixing CVE-2022-31163, for ruby-tzinfo.
For Debian 9 stretch, these issues have been mounted in model 1.2.2-2+deb9u1. - Issued ELA 672-1, fixing CVE-2022-0436, for grunt.
For Debian 9 stretch, these issues have been mounted in model 1.0.1-5+deb9u2. - Began to have a look at src:tiff once more. There are plenty of open CVEs piled up now. Drafted some fixes however halted the method to have a look at src:tiff in buster first – which I’ll do subsequent month.
I would do the replace in two cycles. However extra on that later. - Additionally checked out src:samba and the way Ubuntu is taking a look at it. It’s a multitude, actually. Most likely ought to write to the listing. :/
Different (E)LTS Work:
- Triaged grunt,
flac,
ruby-rack,
ruby-tzinfo, and
mbedtls. - Helped and assisted new (and fellow) contributors becoming a member of Freexian (LTS/ELTS).
- Answered questions (& discussions) on IRC (#debian-lts and #debian-elts) and Matrix.
- Normal and different discussions on LTS personal and public mailing listing.
Till subsequent time.:wq for right this moment.
