On Sun, Dec 07, 2025 at 07:49:25AM +0530, Utkarsh Gupta wrote: > Hi LTS team, > > Whilst triaging packages for LTS, the report also shows us issues > fixed in bullseye but not in bookworm. > > This is a gentle reminder: **if** you've worked on any of the packages > below and issued a DLA for them, please consider fixing them in > bullseye via a pu or DSA (modulo the security team wants to do that). > > --- > > * log4cxx > https://deb.freexian.com/extended-lts/tracker/source-package/log4cxx > - CVE-2025-54813 > https://deb.freexian.com/extended-lts/tracker/CVE-2025-54813 > - CVE-2025-54812 > https://deb.freexian.com/extended-lts/tracker/CVE-2025-54812
I'll take care of log4cxx (as agreed with Lucas) -- tobi
