20150302
2137
Comment:
|
2720
|
Deletions are marked like this. | Additions are marked like this. |
Line 1: | Line 1: |
## page was copied from MeetingLogs/Security/20150223 | |
Line 3: | Line 4: |
* '''When''': [[http://www.timeanddate.com/worldclock/fixedtime.html?month=02&day=09&year=2015&hour=16&min=32&sec=0&p1=0|Mon Feb 9th 2015 16:30 UTC]] * '''End''': 16:46 UTC |
* '''When''': Mon Mar 2nd 2015 16:30 UTC * '''End''': 17:00 UTC |
Line 23: | Line 24: |
* snappy hardware access * update the SnappyConfinement spec * discuss overlayfs and AppArmor in regards to snappy * review tool changes |
|
Line 24: | Line 29: |
* weekly role: happy place * Security updates |
* weekly role: community * publish Samba updates * publish e2fsprogs updates * publish ca-certificates updates * start on freetype updates |
Line 27: | Line 35: |
* weekly role: community * binutils update * gcc pie work items * AppArmor patch review |
* weekly role: bug triage * request sponsorship of apparmor and apparmor-easyprof-ubuntu updates in Vivid * testing gcc-5 packages that have pie by default set |
Line 32: | Line 39: |
* weekly role: bug triage * Test and propose v4 of the dbus-daemon AppArmor mediation patch set * Propose v2 of the libapparmor aa_features API * Patch update * User Data Encryption work items |
* weekly role: cve triage * retest and publish ecryptfs-utils security updates * review and test an eCryptfs kernel fix * triage an eCryptfs data loss bug on btrfs * propose v2 of the libapparmor API changes * review some overlayfs related changes that went into 4.0-rc1 that may affect AppArmor |
Line 38: | Line 46: |
* Discuss dbus-daemon bug (LP: #1362469) and libapparmor API proposal * Revise fix for deleted socket mediation (LP: #1408833) * Working towards upstreaming our AppArmor kernel delta * sarnold * weekly role: cve triage * OpenStack update testing * chriscoulson |
* triage failing fd inheritance tests on krillin (LP: #1423810) * get verification of the LP: #1408833 fix and push it to the kernel team * v2 libapparmor API review * AppArmor kernel cleanups and upstreaming * sarnold * weekly role: happy place * several MIRs at the server team's request * test and publish Horizon security update * discussions about the ppc64-diag MIR * chriscoulson * Firefox and Thunderbird updates * Embargoed stuff |
Line 52: | Line 65: |
Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2015/ubuntu-meeting.2015-02-02-16.32.moin.txt | Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2015/ubuntu-meeting.2015-02-23-16.36.moin.txt |
Meeting (DRAFT)
Who: SecurityTeam
When: Mon Mar 2nd 2015 16:30 UTC
End: 17:00 UTC
Where: #ubuntu-meeting on irc.freenode.net
Chaired By: Tyler Hicks (tyhicks)
Attendance
- jdstrand
- mdeslaur
- sbeattie
- tyhicks
- jjohansen
- sarnold
- chrisccoulson
Not present
Agenda
- Announcements
- Weekly stand-up report (each member discusses any pending and planned future work for the week)
- jdstrand
- snappy hardware access
update the SnappyConfinement spec
discuss overlayfs and AppArmor in regards to snappy
- review tool changes
- mdeslaur
- weekly role: community
- publish Samba updates
- publish e2fsprogs updates
- publish ca-certificates updates
- start on freetype updates
- sbeattie
- weekly role: bug triage
- request sponsorship of apparmor and apparmor-easyprof-ubuntu updates in Vivid
- testing gcc-5 packages that have pie by default set
- tyhicks
- weekly role: cve triage
- retest and publish ecryptfs-utils security updates
- review and test an eCryptfs kernel fix
- triage an eCryptfs data loss bug on btrfs
- propose v2 of the libapparmor API changes
review some overlayfs related changes that went into 4.0-rc1 that may affect AppArmor
- jjohansen
- triage failing fd inheritance tests on krillin (LP: #1423810)
- get verification of the LP: #1408833 fix and push it to the kernel team
- v2 libapparmor API review
AppArmor kernel cleanups and upstreaming
- sarnold
- weekly role: happy place
- several MIRs at the server team's request
- test and publish Horizon security update
- discussions about the ppc64-diag MIR
- chriscoulson
- Firefox and Thunderbird updates
- Embargoed stuff
- jdstrand
- Highlighted packages
The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. The highlighted packages for this week are:
The Ubuntu Security team suggests that contributors look into merging Debian security updates in community-supported packages. If you would like to help Ubuntu but are not sure where to start, this is a great way to do so. See the available merges and SecurityTeam/UpdateProcedures for details on preparing Ubuntu security updates. If you have any questions, feel free to ask in #ubuntu-hardened. To find out other ways of helping out, please see SecurityTeam/GettingInvolved.
- Miscellaneous and Questions
Log
Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2015/ubuntu-meeting.2015-02-23-16.36.moin.txt
MeetingLogs/Security/20150302 (last edited 2015-03-02 17:02:40 by tyhicks)