Am Donnerstag, dem 20.03.2025 um 12:15 -0300 schrieb Santiago Ruano Rincón: > Package: debian-security-support > Version: 1:13+2025.01.30 > Severity: normal > X-Debbugs-Cc: debian-...@lists.debian.org > > Hello there, > > I would like to propose EOL'ing odoo in bullseye, because 14.0 has been > EOL'ed by upstream and the complexity of backporting patches seems to be > too high. > > There is currently one CVE affecting odoo/bullseye: > https://security-tracker.debian.org/tracker/CVE-2024-12368
I was checking out oodo for LTS by the beginning of the month. I couldn't determine the patch that supposedly fixed CVE-2024-12368. IIRC there were multiple thousand commits between main releases. Based on my own observation and FWIW, I would second that proposal. Regards, Daniel
