During the month of September, I worked on the following tasks for LTS:

- CVE triaging
- libxslt security update
- zlib security update
- nova security update
- bzip2 security update
- glib2.0 security update
- bzip2 security update
- mariadb-10.3 security update
- e17 security update
- mako security update
- webkit2gtk (coordinated, prepared patch for buster backport, sent announcement)
- unzip security update
- attended LTS meeting
- firefox-esr security update
- firefox-esr build failures
- thunderbird coordination, testing & announcement
- mariadb-10.3 regression update
- tzdata and libdatetime-timezone-perl new versions

I also worked on the following tasks for ELTS:

- CVE triaging
- linux-5.10 security update
- improving linux test setup
- zlib security update
- glib2.0 security update
- intel-microcode security update
- mako security update
- mako (changelog snippet in patch broke the build on <= stretch, took a while to realise what the problem was)
- webkit* rdep investigation for limiting webkit* security support
- unzip security update
- pdftk security update
- liblouis security update (hard to backport some of the changes)
- openssl security update
- starting work on linux-4.19 4.19.260