March was my 3rd month as a Debian LTS paid contributor, a Freexian’s initiative. I was assigned 6 hours and I spent all of them for the following:


  • Finish the fix for CVE-2017-9831 and CVE-2017-9832, then I asked on the LTS mailing list for testing. If no regression is reported, I will upload the fix on the 4th of April.


The majority of these CVE was fixed in Wheezy through DLA-1029-1, DLA-811-1, DLA-840-1 and DLA-870-1, but not in Jessie! Now, it’s fixed.

It was not easy to find free time to work on LTS, because of the lockdown due to the SARS-CoV-2.

Stay safe!

– Dylan