## page was copied from MeetingLogs/Security/20170130 == Meeting == * '''Who''': SecurityTeam * '''When''': Mon Feb 6th 2017 16:30 UTC * '''End''': 16:44 UTC * '''Where''': #ubuntu-meeting on irc.freenode.net * '''Chaired By''': Tyler Hicks (tyhicks) == Attendance == * jdstrand * mdeslaur * sbeattie * tyhicks * sarnold * chrisccoulson * ratliff == Not present == * jjohansen == Agenda == * Announcements * none * Weekly stand-up report (each member discusses any pending and planned future work for the week) * jdstrand * snappy PR reviews * many for Personal * better leverage seccomp arg filtering in snappy confinement policy * 6 PRs already submitted but more coming * various other Snappy policy updates * some misc review tools changes * mdeslaur * weekly role: happy place * security updates * sbeattie * weekly role: happy place * security updates * tyhicks * weekly role: community * prepare !AppArmor SRU for bug 1661406 * upload !AppArmor 2.11.0 to zesty * must workaround an !AppArmor utils bug (LP: #Bug:1628286) first * followup on seccomp kernel patches * possibly finish off the work for libseccomp support * libvirt !AppArmor research around what it would take to dynamically update policy as disk image path changes {{{#!wiki comment * jjohansen * !AppArmor bugs * flock not mediated with 'k' (LP: #Bug:1658219) * disconnected path when using filesystem namespaces (LP: #Bug:1656121) * clean up and send xenial/yakkety !AppArmor patches to the kernel team * revise dconf/gsettings mediation patches after sync with desktop team * reply to tetsuo and finish kernel patch around !AppArmor data for a task * preparing next batch of !AppArmor kernel patches to upstream * maybe the changes to securityfs }}} * sarnold * weekly role: bug triage * finish up libapache2-mod-auth-mellon MIR * pick up another MIR * !ChrisCoulson * oxide updates * firefox update * includes regression fix (LP: #Bug:1659922) * sponsor chromium-browser updates * firefox crashing on arm is causing FTBFS * firefox/gcc-4.9 on trusty isn't working * https://blueprints.launchpad.net/oxide/+spec/ubuntu-webview-implementation * Add JS dialogs to !UbuntuWebView (LP: #Bug:1637195) * Add touch selection handles and quick menu to UbuntuWebView (LP: #Bug:1638852) * ratliff * weekly role: CVE triage * security updates for ubuntu-core 15.04 and Touch * Highlighted packages The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. The highlighted packages for this week are: <> * Miscellaneous and Questions * none == Log == Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-02-06-16.30.moin.txt