ELTS report July 2022
==========================

1. ELA-630-1. Issued a security update for maven-shared-utils fixing 1 CVE.

2. ELA-636-1. Issued a security update for gnupg2 fixing 2 CVE in Stretch and
              Jessie.

3. ELA-637-1. Issued a security update for needrestart fixing 1 CVE in Jessie.

4. ELA-639-1. Issued a security update for libjpeg-turbo fixing 1 CVE in
              Stretch and marked CVE-2021-46822 as no-dsa in Jessie because it
              is a minor issue.

5. ELA-641-1. Issued a security update for strongswan fixing 2 CVE in Jessie.
6. ELA-647-1. Issued a security update for request-tracker4 fixing 2 CVE in
              Jessie and 1 CVE in Stretch.
7. ELA-650-1. Issued a security update for jetty8 fixing 3 CVE in Jessie. I
              re-investigated if the status of the remaining 8 no-dsa CVE was
              correct and I marked CVE-2022-2047 as not-affected

8. I triaged jetty9/Stretch CVE-2022-2048 as not affected, and CVE-2022-2047 as postponed
   and pushed a preliminary patch to our team's git repository.

9. I helped to track down a regression in apache2/Jessie due to the fix for
   CVE-2022-31813, reproduced the problem and provided a solution.