20170313
3695
Comment:
|
2981
|
Deletions are marked like this. | Additions are marked like this. |
Line 2: | Line 2: |
== Meeting (DRAFT) == | == Meeting == |
Line 4: | Line 4: |
* '''When''': Mon Jan 30th 2017 16:30 UTC * '''End''': 16:53 UTC |
* '''When''': Mon Jan 30th 2017 16:31 UTC * '''End''': 16:49 UTC |
Line 24: | Line 24: |
* Ahmed Farag provided notifications for false positive virus identification for files in the archive (pnsnap, ettercap-common, dbacl, and libmail-deliverystatus-bounceparser-perl). * Scott Kitterman (ScottK) provided a debdiff for trusty for pdns-recursor (LP: #Bug:1656931) * Clive Johnston (clivejo) provided a debdiff for xenial for ark (LP: #Bug:1655507) * Vishnu Vardhan Reddy Naini (visred) provided a debdiff for yakkety for ark (LP: #Bug:1655507) |
* none |
Line 31: | Line 28: |
* apparmor policy updates for snappy confinement * prepare a snap for testing confinement policy |
|
Line 36: | Line 31: |
* openssl updates | |
Line 39: | Line 35: |
* openjdk-8 updates to test and sponsor * publish new dependencies of linux-raspi2 kernels |
* publish kernel USNs * openssh update |
Line 46: | Line 42: |
* embargoed issue * pick up a security update |
* must workaround an !AppArmor utils bug (LP: #Bug:1628286) first * two embargoed issues |
Line 53: | Line 49: |
* revise dconf/gsettings mediation patches and sync with desktop team | * revise dconf/gsettings mediation patches after sync with desktop team * reply to tetsuo and finish kernel patch around !AppArmor data for a task |
Line 58: | Line 55: |
* uvp-monitor MIR | * libapache2-mod-auth-mellon MIR |
Line 60: | Line 57: |
* possibly libapache2-mod-auth-mellon | |
Line 62: | Line 58: |
* firefox updates * fix issues in ubunfox extension caused by breaking changes in firefox 53 * removal of the non-standard 'for each' syntax * backport rust, a new build depend of firefox, to stable releases |
* oxide updates * sponsor chromium-browser updates * firefox regression (LP: #Bug:1659922) |
Line 67: | Line 62: |
* Add JS dialogs to !UbuntuWebView (LP: #Bug:1637195) | |
Line 70: | Line 66: |
* notification process for incoming CVEs | |
Line 74: | Line 71: |
* !ChrisCoulson says that Firefox will begin build depending on rustc sometime in early 2017 which then kicks off about a 12-18 week countdown before it'll be required for a Firefox update in Ubuntu | * none |
Line 77: | Line 74: |
Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-01-23-16.30.moin.txt | Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-01-30-16.31.moin.txt |
Meeting
Who: SecurityTeam
When: Mon Jan 30th 2017 16:31 UTC
End: 16:49 UTC
Where: #ubuntu-meeting on irc.freenode.net
Chaired By: Tyler Hicks (tyhicks)
Attendance
- jdstrand
- mdeslaur
- sbeattie
- tyhicks
- jjohansen
- sarnold
- chrisccoulson
- ratliff
Not present
- None
Agenda
- Announcements
- none
- Weekly stand-up report (each member discusses any pending and planned future work for the week)
- jdstrand
- snappy PR reviews
- better leverage seccomp arg filtering in snappy confinement policy
- mdeslaur
- weekly role: happy place
- openssl updates
- security updates
- sbeattie
- weekly role: community
- publish kernel USNs
- openssh update
- pick up a security update
- tyhicks
- weekly role: bug triage
- finish and submit the second revision of seccomp/libseccomp patches to upstream
upload AppArmor 2.11.0 to zesty
must workaround an AppArmor utils bug (LP: #1628286) first
- two embargoed issues
- jjohansen
AppArmor bugs
clean up and send xenial/yakkety AppArmor patches to the kernel team
- revise dconf/gsettings mediation patches after sync with desktop team
reply to tetsuo and finish kernel patch around AppArmor data for a task
preparing next batch of AppArmor kernel patches to upstream
- maybe the changes to securityfs
- sarnold
- weekly role: cve triage
- libapache2-mod-auth-mellon MIR
- pick up another MIR
ChrisCoulson
- oxide updates
- sponsor chromium-browser updates
firefox regression (LP: #1659922)
https://blueprints.launchpad.net/oxide/+spec/ubuntu-webview-implementation
Add JS dialogs to UbuntuWebView (LP: #1637195)
- ratliff
- weekly role: happy place
- security updates for ubuntu-core 15.04
- notification process for incoming CVEs
- jdstrand
- Highlighted packages
The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. The highlighted packages for this week are:
The Ubuntu Security team suggests that contributors look into merging Debian security updates in community-supported packages. If you would like to help Ubuntu but are not sure where to start, this is a great way to do so. See the available merges and SecurityTeam/UpdateProcedures for details on preparing Ubuntu security updates. If you have any questions, feel free to ask in #ubuntu-hardened. To find out other ways of helping out, please see SecurityTeam/GettingInvolved.
- Miscellaneous and Questions
- none
Log
Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-01-30-16.31.moin.txt
MeetingLogs/Security/20170313 (last edited 2017-03-13 16:49:12 by tyhicks)