20110214

Meeting

Attendance

  • kees
  • mdeslaur
  • sbeattie
  • micahg
  • jjohansen
  • jdstrand

Not present

  • None

Agenda

  • Review of any previous action items
    • ia32-libs
      • mdeslaur on hardy
      • sbeattie on the rest of the stable releases
      • don't need to bring up every week
  • Weekly stand-up report (each member discusses any pending and planned future work for the week)
    • jdstrand
      • Weekly role: community
      • pending security updates
      • dbus bindings update/qrt/apparmor
    • kees
      • Weekly role: happy place
      • pending security updates
      • gcc testsuite change upstreaming (very time consuming)
      • some more %pK patchreview ACTION itemses to LKML as time allows
      • looking for people to fix the firefox and chromium hardening stuff
        • firefox is still not PIE in natty. chriscoulson is aware
        • chromium not PIE on armel for any release
    • mdeslaur
      • Weekly role: triage
      • pending security updates
      • continue apparmor profiles contribution work
      • gnome-screensaver fixes to natty, with possible SRU
    • sbeattie
      • Weekly role: happy place
      • pending security updates
      • made progress on AppArmor upstream releases. More to do

    • micahg
      • Weekly role: happy place
      • get setup with new role
      • investigate webkit 1.2.7
  • Miscellaneous and Questions
    • vendor-sec tracking for the triager
      • triager role:
        • ignore unsupported stuff
        • if has CVE, add to embargoed bzr tree
        • if no CVE but is high priority, add to embargoed bzr tree (as CVE-yyyy-NNNs)
        • update any changes to CRDs
      • everyone else:
        • read vendor-sec daily, like normal
        • follow-up with triager as necessary

Log

Logs available at http://www.novarata.net/mootbot/

MeetingLogs/Security/20110214 (last edited 2011-02-14 19:16:48 by pool-71-114-231-156)