This month almost the same numbers as last month appeared in the statistics. I accepted 213 packages and rejected 15 uploads. The overall number of packages that got accepted this month was 425.
This month my all in all workload has been 15.75h. During that time I did LTS uploads of:
- [DLA 1109-1] libraw security update for one CVE
- [DLA 1117-1] opencv security update for 13 CVEs
I also took care of libstrusts1.2-java and marked all CVEs as not-affected and I marked all CVEs for jasper as no-dsa. I also started to work on sam2p.
Just as I wanted to upload a new version of libofx, a new CVE was discovered that was not closed in time. I tried to find a patch on my own but had difficulties in reproducing this issue.
This month I made myself familiar with glewlwyd and according to upstream, the Debian packages work out-of-the box. However upstream does not stop working on that software, so I uploaded new versions of hoel, ulfius and glewlwyd.
Does anybody still know the Mayhem-bugs? I could close one by uploading an updated version of siggen.
Last but not least I moved several packages to the debian-mobcom group.