## page was copied from MeetingLogs/Security/20150518 == Meeting == * '''Who''': SecurityTeam * '''When''': Mon June 1st 2015 16:33 UTC * '''End''': 17:06 UTC * '''Where''': #ubuntu-meeting on irc.freenode.net * '''Chaired By''': Tyler Hicks (tyhicks) == Attendance == * jdstrand * mdeslaur * sbeattie * tyhicks * jjohansen * sarnold * chrisccoulson == Not present == * None == Agenda == * Announcements * Stefan Bader (smb) provided debdiffs for trusty-vivid for xen * Otto Kekäläinen (otto) provided debdiffs for trusty-utopic for mariadb-5.5 (LP: #1451677) * Gianfranco Costamagna (LocutusOfBorg) provided debdiffs for precise-utopic for virtualbox (LP: #1456553) * Andreas Cadhalpun (andreas-cadhalpun) provided a debdiff for vivid for ffmpeg (LP: #1458171) * Felipe Reyes (freyes) provided debdiffs for precise-vivid for openldap (LP: #1446809) * Weekly stand-up report (each member discusses any pending and planned future work for the week) * jdstrand * finish work on the review tools to make them work as well for snappy apps and frameworks as they do for clicks * define system-image security support processes * properly handle seccomp policy upgrades on snappy * embargoed items (2) * mdeslaur * weekly role: happy place * ipsec-tools update * openssl updates to disable export ciphers * apache2 update in 12.04 to address Logjam issues * QT updates * glibc tzdata regression causing mercurial FTBFS on i386 * bash update to wily to re-enable setuid privilege dropping * look into using taviso's patch to do the same in dash * sbeattie * weekly role: community * !AppArmor patch review * testing the apparmor 14.04 SRU * gcc pie testing (few more test rebuilds, then can proceed with benchnmarking) * nbd update * tyhicks * weekly role: bug triage * help out with security updates * add kernel keyring mediation support to !AppArmor parser * wrap up work planning * embargoed items (3) * jjohansen * finish !AppArmor 2.10 patch reviews/responses * kernel security update sign-offs * submit any LSS talk proposals * Continue work to upstream the Ubuntu !AppArmor kernel delta * Advising on the work to add dconf mediation to !AppArmor * embargoed items * sarnold * weekly role: cve triage * determining the !OpenStack CVE status after the server team uploads landed * !OpenStack security updates * !AppArmor patch reviews * chriscoulson * sponsoring chromium-browser updates * fix firefox after an upstream change broke our packaging of localized search plugins * work through the process of getting the ubufox add-on approved and signed by Mozilla * working on oxide 1.9 milestones * Highlighted packages The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. The highlighted packages for this week are: <> * Miscellaneous and Questions * None == Log == Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2015/ubuntu-meeting.2015-06-01-16.33.moin.txt