20150720
3001
Comment:
|
2870
|
Deletions are marked like this. | Additions are marked like this. |
Line 3: | Line 3: |
== Meeting (DRAFT) == | == Meeting == |
Line 5: | Line 5: |
* '''When''': Mon June 15th 2015 16:30 UTC | * '''When''': Mon June 15th 2015 16:33 UTC |
Line 27: | Line 27: |
* snappy review tools upload * embargoed item |
* embargoed items (2) * work planning |
Line 30: | Line 30: |
* defining security update processes for system image based systems | |
Line 32: | Line 33: |
* embargoed issues * other updates |
* embargoed issue * wpa updates * other security updates |
Line 36: | Line 38: |
* !AppArmor patch review * testing the apparmor 14.04 SRU * prepare another apparmor SRU for bug 1460152 {{{#!wiki comment |
* followups to push the apparmor 14.04 SRU through |
Line 41: | Line 40: |
}}} | |
Line 44: | Line 42: |
* ubuntu-core-launcher merge proposal reviews * return to the patch updates * add kernel keyring mediation support to !AppArmor parser * !AppArmor patch review and revise one of my patches so we can wrap up the 2.10 release * embargoed items (2) |
* embargoed item * test and publish patch updates * !AppArmor patch revisions so we can wrap up the 2.10 release |
Line 50: | Line 46: |
* Advising on the work to add dconf mediation to !AppArmor | |
Line 51: | Line 48: |
* !AppArmor monthly meeting * put together the pull requests for bug 1430546 * kernel updates * Continue work to upstream the Ubuntu !AppArmor kernel delta * Advising on the work to add dconf mediation to !AppArmor |
* prepare for next kernel update cycle * finish backport and test the fix for bug 1460152 * put together the Ubuntu kernel pull requests for AppArmor fixes (such as bug 1430546) * put together an upstream kernel pull request for some of the !AppArmor kernel delta |
Line 59: | Line 55: |
* !OpenStack security updates * !AppArmor patch reviews and/or SRU testing {{{#!wiki comment |
|
Line 63: | Line 56: |
}}} | * !AppArmor patch reviews |
Line 65: | Line 58: |
* sponsoring chromium-browser updates | |
Line 67: | Line 59: |
* finish changes for bug 1428754 | |
Line 69: | Line 60: |
* working on ubufox to meet Mozilla's requirements for add-on signing | |
Line 76: | Line 68: |
Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2015/ubuntu-meeting.2015-06-08-16.59.moin.txt | Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2015/ubuntu-meeting.2015-06-15-16.33.moin.txt |
Meeting
Who: SecurityTeam
When: Mon June 15th 2015 16:33 UTC
End: 17:00 UTC
Where: #ubuntu-meeting on irc.freenode.net
Chaired By: Tyler Hicks (tyhicks)
Attendance
- jdstrand
- mdeslaur
- sbeattie
- tyhicks
- jjohansen
- sarnold
- chrisccoulson
Not present
- None
Agenda
- Announcements
Gianfranco Costamagna (LocutusOfBorg) provided a 14.04 debdiff for gnutls28 (LP: #1326779)
- Weekly stand-up report (each member discusses any pending and planned future work for the week)
- jdstrand
- embargoed items (2)
- work planning
- properly handle seccomp policy upgrades on snappy
- defining security update processes for system image based systems
- mdeslaur
- weekly role: bug triage
- embargoed issue
- wpa updates
- other security updates
- sbeattie
- weekly role: cve triage
- followups to push the apparmor 14.04 SRU through
- gcc pie testing (few more test rebuilds, then can proceed with benchmarking)
- tyhicks
- weekly role: happy place
- embargoed item
- test and publish patch updates
AppArmor patch revisions so we can wrap up the 2.10 release
- jjohansen
Advising on the work to add dconf mediation to AppArmor
finish AppArmor 2.10 patch reviews/responses
- prepare for next kernel update cycle
- finish backport and test the fix for bug 1460152
put together the Ubuntu kernel pull requests for AppArmor fixes (such as bug 1430546)
put together an upstream kernel pull request for some of the AppArmor kernel delta
- sarnold
- weekly role: community
determining the OpenStack CVE status after the server team uploads landed
- ppc64-diag MIR (and depends)
AppArmor patch reviews
- chriscoulson
- oxide merge reviews
- working on oxide 1.9 milestones
- working on ubufox to meet Mozilla's requirements for add-on signing
- jdstrand
- Highlighted packages
The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. The highlighted packages for this week are:
The Ubuntu Security team suggests that contributors look into merging Debian security updates in community-supported packages. If you would like to help Ubuntu but are not sure where to start, this is a great way to do so. See the available merges and SecurityTeam/UpdateProcedures for details on preparing Ubuntu security updates. If you have any questions, feel free to ask in #ubuntu-hardened. To find out other ways of helping out, please see SecurityTeam/GettingInvolved.
- Miscellaneous and Questions
- None
Log
Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2015/ubuntu-meeting.2015-06-15-16.33.moin.txt
MeetingLogs/Security/20150720 (last edited 2015-07-20 17:00:40 by tyhicks)