Attached you can find an updated debdiff. I had forgotten to add
epiphany-browser with limited support in my previous update proposal.

And the Debusine workflow for this one:
https://debusine.debian.net/debian/developers/work-request/902663/

Cheers,

Santiago
diff -Nru debian-security-support-12+2026.01.04/debian/changelog 
debian-security-support-12+2026.06.30/debian/changelog
--- debian-security-support-12+2026.01.04/debian/changelog      2026-01-04 
09:20:51.000000000 -0300
+++ debian-security-support-12+2026.06.30/debian/changelog      2026-06-30 
14:21:59.000000000 -0300
@@ -1,3 +1,18 @@
+debian-security-support (1:12+2026.06.30) bookworm; urgency=medium
+
+  * Add myself to Uploaders
+  * Mark suricata as non-supported in bookworm. Thanks to Andreas Dolp
+    (Closes: #1134367)
+  * Set qt6-webengine as limited support. Thanks to Jeremy Bícha.
+  * Mark webkit2gtk in bookworm with limited support. Thanks to Emilio
+    Pozuelo. (Closes: #1135152)
+  * Mark some packages as non supported in bookworm LTS. Thanks to the
+    Security Team. (Closes: #1138294)
+  * Mark epiphany-browser with limited support in bookworm. Thanks to Emilio
+    Pozuelo. (Closes: #1135666)
+
+ -- Santiago Ruano Rincón <[email protected]>  Tue, 30 Jun 2026 14:21:59 
-0300
+
 debian-security-support (1:12+2026.01.04) bookworm; urgency=medium
 
   [ Holger Levsen ]
diff -Nru debian-security-support-12+2026.01.04/debian/control 
debian-security-support-12+2026.06.30/debian/control
--- debian-security-support-12+2026.01.04/debian/control        2026-01-04 
09:20:28.000000000 -0300
+++ debian-security-support-12+2026.06.30/debian/control        2026-06-30 
14:21:15.000000000 -0300
@@ -4,6 +4,7 @@
 Maintainer: Debian Security Team <[email protected]>
 Uploaders: Holger Levsen <[email protected]>,
            Utkarsh Gupta <[email protected]>,
+           Santiago Ruano Rincón <[email protected]>,
 Build-Depends: debhelper-compat (= 13),
     asciidoc,
     gettext,
diff -Nru debian-security-support-12+2026.01.04/security-support-ended.deb12 
debian-security-support-12+2026.06.30/security-support-ended.deb12
--- debian-security-support-12+2026.01.04/security-support-ended.deb12  
2026-01-04 09:20:28.000000000 -0300
+++ debian-security-support-12+2026.06.30/security-support-ended.deb12  
2026-06-30 14:21:15.000000000 -0300
@@ -18,3 +18,11 @@
 dnsdist         1.7.3-2                 2025-10-01      No security support 
upstream and backports not feasible, only for use on private and trusted network
 pdns            4.7.3-2                 2025-10-01      No security support 
upstream and backports not feasible, only for use on private and trusted network
 pdns-recursor   4.8.8-1+deb12u1         2025-10-01      No security support 
upstream and backports not feasible, only for use on private and trusted network
+suricata        1:6.0.10-1              2026-04-30      Upstream security 
support ended in Aug 2024 and backporting fixes is now unfeasible. See: 
https://bugs.debian.org/1134367
+lxd             5.0.2-5+deb12u6         2026-06-12      Security fixes for 
open vulnerabilities are too complex to be backported; see: 
https://bugs.debian.org/1138294
+mbedtls         2.16.9-0.1+deb11u4      2026-06-12      Crypto library 
difficult to support in the long term; see: https://bugs.debian.org/1138294
+mimetex         1.76-2                  2026-06-12      Upstream project no 
longer exists; see: https://bugs.debian.org/1138294
+opennds         9.10.0-1                2026-06-12      Security fixes for 
open vulnerabilities are too complex to be backported; see: 
https://bugs.debian.org/1138294
+ruby-saml       1.13.0-1+deb12u1        2026-06-12      Old gitlab dependency; 
no reverse dependencies remain in bookworm; see: https://bugs.debian.org/1138294
+smb4k           3.1.7-1                 2026-06-12      Security fixes for 
open vulnerabilities are too complex to be backported; see: 
https://bugs.debian.org/1136949, https://bugs.debian.org/1138294
+wolfssl         5.5.4-2+deb12u2         2026-06-12      Crypto library 
difficult to support in the longterm; see: https://bugs.debian.org/1138294
diff -Nru debian-security-support-12+2026.01.04/security-support-limited 
debian-security-support-12+2026.06.30/security-support-limited
--- debian-security-support-12+2026.01.04/security-support-limited      
2026-01-04 09:20:51.000000000 -0300
+++ debian-security-support-12+2026.06.30/security-support-limited      
2026-06-30 14:21:15.000000000 -0300
@@ -9,6 +9,7 @@
 adns            Stub resolver that should only be used with trusted recursors
 binutils        Only suitable for trusted content; see 
https://lists.debian.org/msgid-search/[email protected]
 cython          Only included for building packages, not running them, #975058
+epiphany-browser Heavily relies on webkit2gtk that has been EOL'ed; see: 
https://bugs.debian.org/1135666; only for use on trusted content
 ganglia         See README.Debian.security, only supported behind an 
authenticated HTTP zone, #702775
 ganglia-web     See README.Debian.security, only supported behind an 
authenticated HTTP zone, #702776
 golang.*        See 
https://www.debian.org/releases/bookworm/amd64/release-notes/ch-information.en.html#golang-static-linking
@@ -26,6 +27,7 @@
 musescore2      Only supported with trusted files, see README.Debian shipped 
in package and #1070860
 musescore3      Only supported with trusted files, see README.Debian shipped 
in package and #1070860
 ocsinventory-server Only supported behind an authenticated HTTP zone
+qt6-webengine   No security support upstream and backports not feasible, only 
for use on trusted content
 qtwebengine-opensource-src No security support upstream and backports not 
feasible, only for use on trusted content
 qtwebkit        No security support upstream and backports not feasible, only 
for use on trusted content
 qtwebkit-opensource-src No security support upstream and backports not 
feasible, only for use on trusted content
@@ -33,5 +35,6 @@
 sql-ledger      Only supported behind an authenticated HTTP zone
 tiles           Only supported for building packages, #1057343
 vte             Not covered by security support, only used by 
debian-installer, #1082885
+webkit2gtk      Can no longer be backported to bookworm; see 
https://lists.debian.org/debian-security-announce/2026/msg00142.html; only for 
use on trusted content
 zabbix          The WEB UI is only supported for access by trusted users, no 
security updates issued for it, #1124558
 zoneminder      See README.Debian.security, only supported behind an 
authenticated HTTP zone, #922724

Attachment: signature.asc
Description: PGP signature

Reply via email to