20160321
2688
Comment:
|
← Revision 58 as of 2016-03-21 16:57:58 ⇥
2609
|
Deletions are marked like this. | Additions are marked like this. |
Line 1: | Line 1: |
## page was copied from MeetingLogs/Security/20160111 == Meeting (DRAFT) == |
## page was copied from MeetingLogs/Security/20160314 == Meeting == |
Line 4: | Line 4: |
* '''When''': Mon Jan 25th 2016 16:35 UTC * '''End''': 16:50 UTC |
* '''When''': Mon Mar 21st 2016 16:36 UTC * '''End''': 16:56 UTC |
Line 12: | Line 12: |
* sbeattie | |
Line 14: | Line 13: |
* jjohansen | |
Line 16: | Line 14: |
* chrisccoulson | * !ChrisCoulson |
Line 19: | Line 17: |
* None | * jjohansen * sbeattie |
Line 23: | Line 22: |
* Felix Geyer (debfx) provided debdiffs for trusty, wily for prosody (LP: #1532943) * Andreas Cadhalpun (andreas-cadhalpun) provided debdiffs for vivid and wily for ffmpeg (LP: #1533367) |
* None |
Line 27: | Line 25: |
* work with zyga on snappy capabilities * review existing snappy frameworks as they pertain to the capabilities work * two embargoed issues |
* ubuntu-core-security policy update for !AppArmor stacking kernel * ubuntu-core-launcher update for !AppArmor stacking kernel * ubuntu-core-launcher change for devpts newinstance * start work on seccomp arg filtering in the ubuntu-core-launcher * embargoed issues |
Line 32: | Line 32: |
* libvirt updates * embargoed update |
* webkitgtk updates * uvt changes for new apt versions * security updates {{{#!wiki comment |
Line 36: | Line 38: |
* embargoed issue * gcc-pie churn * review test failures from doko's test pie build * finish work to fix the kernel build to disable pie * upstream !AppArmor patch review * QRT test failures for s390x |
* author kernel USNs * work on GCC pie build failures to prepare debdiffs to sponsor * look at !AppArmor stacking work * cut 2.11 !AppArmor release * requires packaging work for new binutils/ directory in upstream !AppArmor }}} |
Line 44: | Line 46: |
* embargoed issue | * git updates * cve triage left over from last week * apparmor upload for 2.11 beta 1 * eCryptfs kernel maintenance {{{#!wiki comment * jjohansen |
Line 46: | Line 53: |
* drive the AppArmor stacking interface designs in libapparmor and securityfs * create easy to use namespace creation APIs and binutils * investigate if rngd can be used in Snappy on the Beagle Bone Black to seed /dev/random * jjohansen * email catch up * !AppArmor stacking development * sync with sbeattie and kernel team regarding pending kernel updates |
}}} |
Line 55: | Line 56: |
* DPDK MIR * pick up another MIR |
* review jdstrand's ubuntu-core-launcher change * finish fwupd MIR |
Line 58: | Line 59: |
* Thunderbird updates * Oxide 1.13 [[https://launchpad.net/oxide/+milestone/branch-1.13|milestones]] |
* thunderbird updates * firefox updates * chromium-browser sponsoring * improving unit tests in oxide |
Line 67: | Line 70: |
Logs available at TODO | Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2016/ubuntu-meeting.2016-03-21-16.36.moin.txt |
Meeting
Who: SecurityTeam
When: Mon Mar 21st 2016 16:36 UTC
End: 16:56 UTC
Where: #ubuntu-meeting on irc.freenode.net
Chaired By: Tyler Hicks (tyhicks)
Attendance
- jdstrand
- mdeslaur
- tyhicks
- sarnold
ChrisCoulson
Not present
- jjohansen
- sbeattie
Agenda
- Announcements
- None
- Weekly stand-up report (each member discusses any pending and planned future work for the week)
- jdstrand
ubuntu-core-security policy update for AppArmor stacking kernel
ubuntu-core-launcher update for AppArmor stacking kernel
- ubuntu-core-launcher change for devpts newinstance
- start work on seccomp arg filtering in the ubuntu-core-launcher
- embargoed issues
- mdeslaur
- weekly role: happy place
- webkitgtk updates
- uvt changes for new apt versions
- security updates
- tyhicks
- weekly role: bug triage
- git updates
- cve triage left over from last week
- apparmor upload for 2.11 beta 1
- eCryptfs kernel maintenance
- sarnold
- weekly role: cve triage
- review jdstrand's ubuntu-core-launcher change
- finish fwupd MIR
ChrisCoulson
- thunderbird updates
- firefox updates
- chromium-browser sponsoring
- improving unit tests in oxide
- jdstrand
- Highlighted packages
The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. The highlighted packages for this week are:
The Ubuntu Security team suggests that contributors look into merging Debian security updates in community-supported packages. If you would like to help Ubuntu but are not sure where to start, this is a great way to do so. See the available merges and SecurityTeam/UpdateProcedures for details on preparing Ubuntu security updates. If you have any questions, feel free to ask in #ubuntu-hardened. To find out other ways of helping out, please see SecurityTeam/GettingInvolved.
- Miscellaneous and Questions
- None
Log
Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2016/ubuntu-meeting.2016-03-21-16.36.moin.txt
MeetingLogs/Security/20160321 (last edited 2016-03-21 16:57:58 by tyhicks)