20160321
2966
Comment:
|
← Revision 58 as of 2016-03-21 16:57:58 ⇥
2609
|
Deletions are marked like this. | Additions are marked like this. |
Line 1: | Line 1: |
## page was copied from MeetingLogs/Security/20160111 | ## page was copied from MeetingLogs/Security/20160314 |
Line 4: | Line 4: |
* '''When''': Mon Jan 25th 2016 16:35 UTC * '''End''': 16:59 UTC |
* '''When''': Mon Mar 21st 2016 16:36 UTC * '''End''': 16:56 UTC |
Line 13: | Line 13: |
* jjohansen | |
Line 15: | Line 14: |
* chrisccoulson | * !ChrisCoulson |
Line 18: | Line 17: |
* jjohansen | |
Line 22: | Line 22: |
* Felix Geyer (debfx) provided debdiffs for trusty, wily for prosody (LP: #1532943) * Andreas Cadhalpun (andreas-cadhalpun) provided debdiffs for vivid and wily for ffmpeg (LP: #1533367) |
* None |
Line 26: | Line 25: |
* improve security team tooling to track 15.04 overlay PPAs since 15.04 is going EOL soon * Ubuntu Touch will remain on 15.04 for some time * Ubuntu Core will remain on 15.04 until 16.04 is released |
* ubuntu-core-security policy update for !AppArmor stacking kernel * ubuntu-core-launcher update for !AppArmor stacking kernel * ubuntu-core-launcher change for devpts newinstance * start work on seccomp arg filtering in the ubuntu-core-launcher |
Line 30: | Line 30: |
* snappy work items * support squashfs image checks in the review tools |
|
Line 34: | Line 32: |
* mysql updates * embargoed updates |
* webkitgtk updates * uvt changes for new apt versions * security updates |
Line 39: | Line 38: |
* embargoed issue * gcc-pie churn * review test failures from doko's test pie build * finish work to fix the kernel build to disable pie * upstream !AppArmor patch review * QRT test failures for s390x |
* author kernel USNs * work on GCC pie build failures to prepare debdiffs to sponsor * look at !AppArmor stacking work * cut 2.11 !AppArmor release * requires packaging work for new binutils/ directory in upstream !AppArmor |
Line 48: | Line 46: |
* git updates * cve triage left over from last week * apparmor upload for 2.11 beta 1 * eCryptfs kernel maintenance {{{#!wiki comment * jjohansen |
|
Line 49: | Line 53: |
* drive the AppArmor stacking interface designs in libapparmor and securityfs * create easy to use namespace creation APIs and binutils * jjohansen * !AppArmor stacking development |
}}} |
Line 55: | Line 56: |
* contribute to the AppArmor stacking discussion * DPDK MIR * pick up another MIR |
* review jdstrand's ubuntu-core-launcher change * finish fwupd MIR |
Line 59: | Line 59: |
* Firefox update * Oxide drag and drop support (LP: #1459830) * Oxide 1.13 [[https://launchpad.net/oxide/+milestone/branch-1.13|milestones]] |
* thunderbird updates * firefox updates * chromium-browser sponsoring * improving unit tests in oxide |
Line 66: | Line 67: |
* doko asked about current plans for the GCC PIE by default work * tyhicks will follow up with him after syncing with sbeattie |
* None |
Line 70: | Line 70: |
Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2016/ubuntu-meeting.2016-01-25-16.35.moin.txt | Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2016/ubuntu-meeting.2016-03-21-16.36.moin.txt |
Meeting
Who: SecurityTeam
When: Mon Mar 21st 2016 16:36 UTC
End: 16:56 UTC
Where: #ubuntu-meeting on irc.freenode.net
Chaired By: Tyler Hicks (tyhicks)
Attendance
- jdstrand
- mdeslaur
- tyhicks
- sarnold
ChrisCoulson
Not present
- jjohansen
- sbeattie
Agenda
- Announcements
- None
- Weekly stand-up report (each member discusses any pending and planned future work for the week)
- jdstrand
ubuntu-core-security policy update for AppArmor stacking kernel
ubuntu-core-launcher update for AppArmor stacking kernel
- ubuntu-core-launcher change for devpts newinstance
- start work on seccomp arg filtering in the ubuntu-core-launcher
- embargoed issues
- mdeslaur
- weekly role: happy place
- webkitgtk updates
- uvt changes for new apt versions
- security updates
- tyhicks
- weekly role: bug triage
- git updates
- cve triage left over from last week
- apparmor upload for 2.11 beta 1
- eCryptfs kernel maintenance
- sarnold
- weekly role: cve triage
- review jdstrand's ubuntu-core-launcher change
- finish fwupd MIR
ChrisCoulson
- thunderbird updates
- firefox updates
- chromium-browser sponsoring
- improving unit tests in oxide
- jdstrand
- Highlighted packages
The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. The highlighted packages for this week are:
The Ubuntu Security team suggests that contributors look into merging Debian security updates in community-supported packages. If you would like to help Ubuntu but are not sure where to start, this is a great way to do so. See the available merges and SecurityTeam/UpdateProcedures for details on preparing Ubuntu security updates. If you have any questions, feel free to ask in #ubuntu-hardened. To find out other ways of helping out, please see SecurityTeam/GettingInvolved.
- Miscellaneous and Questions
- None
Log
Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2016/ubuntu-meeting.2016-03-21-16.36.moin.txt
MeetingLogs/Security/20160321 (last edited 2016-03-21 16:57:58 by tyhicks)