ELTS report March 2022
==========================

1. Frontdesk duties: From 14.03.2022 to 20.03.2022 I was responsible for the
    ELTS frontdesk. I investigated and triaged packages like beep, zabbix,
    apache2, flac, openssl, packagekit, libxml2, netpbm-free, tiff, qemu,
    jackson-databind, bind9, sqlite3 and openvpn.

2. ELA-584-1/ELA-584-2.
    Issued a security update for bind9 fixing 1 CVE. The update introduced a
    regression in the isc-dhcp-client package which is why the change had to be
    reverted. I investigated the problem and tried several options to overcome the
    problem and fixed it by patching the non-exported library only.

3. ELA-595-1.
    Issued a security update for zabbix fixing 2 CVE. I triaged CVE-2022-24918
    as not-affected because the vulnerable code was introduced later and
    CVE-2022-24917 as no-dsa because of the low severity.