January 2019 was my 12th month as a Debian LTS paid contributor. I was assigned 12 hours and I spend all of them for the following:
* libraw: There are 29 vulnerabilities reported against libraw. Almost all of them are results of fuzz testing. Marked CVE-2017-14348, CVE-2018-20337, CVE-2018-20363, CVE-2018-20364 and CVE-2018-20365 as no DSA for jessie. * mxml: Fixed CVE-2016-4570, CVE-2016-4571, CVE-2018-20004. Uploaded and released DLA[1] * drupal7: Fixed CVE-2019-6339. Tested, uploaded and released DLA[2] CVE-2019-6338 will be fixed after CVE-2018-1000888. Regards Abhijith PA [1] - https://lists.debian.org/debian-lts-announce/2019/01/msg00018.html [2] - https://lists.debian.org/debian-lts-announce/2019/02/msg00004.html
