Attached you can find an updated debdiff. I had forgotten to add epiphany-browser with limited support in my previous update proposal.
And the Debusine workflow for this one: https://debusine.debian.net/debian/developers/work-request/902663/ Cheers, Santiago
diff -Nru debian-security-support-12+2026.01.04/debian/changelog debian-security-support-12+2026.06.30/debian/changelog --- debian-security-support-12+2026.01.04/debian/changelog 2026-01-04 09:20:51.000000000 -0300 +++ debian-security-support-12+2026.06.30/debian/changelog 2026-06-30 14:21:59.000000000 -0300 @@ -1,3 +1,18 @@ +debian-security-support (1:12+2026.06.30) bookworm; urgency=medium + + * Add myself to Uploaders + * Mark suricata as non-supported in bookworm. Thanks to Andreas Dolp + (Closes: #1134367) + * Set qt6-webengine as limited support. Thanks to Jeremy Bícha. + * Mark webkit2gtk in bookworm with limited support. Thanks to Emilio + Pozuelo. (Closes: #1135152) + * Mark some packages as non supported in bookworm LTS. Thanks to the + Security Team. (Closes: #1138294) + * Mark epiphany-browser with limited support in bookworm. Thanks to Emilio + Pozuelo. (Closes: #1135666) + + -- Santiago Ruano Rincón <[email protected]> Tue, 30 Jun 2026 14:21:59 -0300 + debian-security-support (1:12+2026.01.04) bookworm; urgency=medium [ Holger Levsen ] diff -Nru debian-security-support-12+2026.01.04/debian/control debian-security-support-12+2026.06.30/debian/control --- debian-security-support-12+2026.01.04/debian/control 2026-01-04 09:20:28.000000000 -0300 +++ debian-security-support-12+2026.06.30/debian/control 2026-06-30 14:21:15.000000000 -0300 @@ -4,6 +4,7 @@ Maintainer: Debian Security Team <[email protected]> Uploaders: Holger Levsen <[email protected]>, Utkarsh Gupta <[email protected]>, + Santiago Ruano Rincón <[email protected]>, Build-Depends: debhelper-compat (= 13), asciidoc, gettext, diff -Nru debian-security-support-12+2026.01.04/security-support-ended.deb12 debian-security-support-12+2026.06.30/security-support-ended.deb12 --- debian-security-support-12+2026.01.04/security-support-ended.deb12 2026-01-04 09:20:28.000000000 -0300 +++ debian-security-support-12+2026.06.30/security-support-ended.deb12 2026-06-30 14:21:15.000000000 -0300 @@ -18,3 +18,11 @@ dnsdist 1.7.3-2 2025-10-01 No security support upstream and backports not feasible, only for use on private and trusted network pdns 4.7.3-2 2025-10-01 No security support upstream and backports not feasible, only for use on private and trusted network pdns-recursor 4.8.8-1+deb12u1 2025-10-01 No security support upstream and backports not feasible, only for use on private and trusted network +suricata 1:6.0.10-1 2026-04-30 Upstream security support ended in Aug 2024 and backporting fixes is now unfeasible. See: https://bugs.debian.org/1134367 +lxd 5.0.2-5+deb12u6 2026-06-12 Security fixes for open vulnerabilities are too complex to be backported; see: https://bugs.debian.org/1138294 +mbedtls 2.16.9-0.1+deb11u4 2026-06-12 Crypto library difficult to support in the long term; see: https://bugs.debian.org/1138294 +mimetex 1.76-2 2026-06-12 Upstream project no longer exists; see: https://bugs.debian.org/1138294 +opennds 9.10.0-1 2026-06-12 Security fixes for open vulnerabilities are too complex to be backported; see: https://bugs.debian.org/1138294 +ruby-saml 1.13.0-1+deb12u1 2026-06-12 Old gitlab dependency; no reverse dependencies remain in bookworm; see: https://bugs.debian.org/1138294 +smb4k 3.1.7-1 2026-06-12 Security fixes for open vulnerabilities are too complex to be backported; see: https://bugs.debian.org/1136949, https://bugs.debian.org/1138294 +wolfssl 5.5.4-2+deb12u2 2026-06-12 Crypto library difficult to support in the longterm; see: https://bugs.debian.org/1138294 diff -Nru debian-security-support-12+2026.01.04/security-support-limited debian-security-support-12+2026.06.30/security-support-limited --- debian-security-support-12+2026.01.04/security-support-limited 2026-01-04 09:20:51.000000000 -0300 +++ debian-security-support-12+2026.06.30/security-support-limited 2026-06-30 14:21:15.000000000 -0300 @@ -9,6 +9,7 @@ adns Stub resolver that should only be used with trusted recursors binutils Only suitable for trusted content; see https://lists.debian.org/msgid-search/[email protected] cython Only included for building packages, not running them, #975058 +epiphany-browser Heavily relies on webkit2gtk that has been EOL'ed; see: https://bugs.debian.org/1135666; only for use on trusted content ganglia See README.Debian.security, only supported behind an authenticated HTTP zone, #702775 ganglia-web See README.Debian.security, only supported behind an authenticated HTTP zone, #702776 golang.* See https://www.debian.org/releases/bookworm/amd64/release-notes/ch-information.en.html#golang-static-linking @@ -26,6 +27,7 @@ musescore2 Only supported with trusted files, see README.Debian shipped in package and #1070860 musescore3 Only supported with trusted files, see README.Debian shipped in package and #1070860 ocsinventory-server Only supported behind an authenticated HTTP zone +qt6-webengine No security support upstream and backports not feasible, only for use on trusted content qtwebengine-opensource-src No security support upstream and backports not feasible, only for use on trusted content qtwebkit No security support upstream and backports not feasible, only for use on trusted content qtwebkit-opensource-src No security support upstream and backports not feasible, only for use on trusted content @@ -33,5 +35,6 @@ sql-ledger Only supported behind an authenticated HTTP zone tiles Only supported for building packages, #1057343 vte Not covered by security support, only used by debian-installer, #1082885 +webkit2gtk Can no longer be backported to bookworm; see https://lists.debian.org/debian-security-announce/2026/msg00142.html; only for use on trusted content zabbix The WEB UI is only supported for access by trusted users, no security updates issued for it, #1124558 zoneminder See README.Debian.security, only supported behind an authenticated HTTP zone, #922724
signature.asc
Description: PGP signature
