20170605
2948
Comment:
|
2727
|
Deletions are marked like this. | Additions are marked like this. |
Line 2: | Line 2: |
== Meeting (DRAFT) == | == Meeting == |
Line 4: | Line 4: |
* '''When''': Mon Apr 10th 2017 16:34 UTC | * '''When''': Mon Apr 10th 2017 16:54 UTC |
Line 27: | Line 27: |
* followup on snappy PR reviews and store reviews * console interface PR will be a big one * k8s interface is blocked for now * followup on unity7 update PR * snappy profile fix |
* snapd policy updates for zesty * start looking at wayland/gnome3 interfaces * review tools updates * prod the k8s snaps developers to get the k8s interfaces PR moving again |
Line 34: | Line 33: |
* nagios3 updates | |
Line 36: | Line 34: |
* qemu updates | * webkit2gtk updates |
Line 39: | Line 37: |
* embargoed issue * discussion catch up from being off last week * security update * apparmor/QRT issues to straighten out |
* kernel signoffs * security updates * apparmor mailing list responses |
Line 45: | Line 42: |
* embargoed issue | * start work on seccomp v5 patch set after hashing out a few more details on lkml |
Line 47: | Line 44: |
* propose design change for seccomp kernel patches and get out v5 | |
Line 50: | Line 46: |
* catch up from being off last week * unravel AppArmor kernel patch reverts in Ubuntu kernel |
* !AppArmor bugs * rlimit issue in zesty (LP: #1679704) * ptrace issue (possibly confusion on the reporter's part) |
Line 53: | Line 50: |
* dconf/gsettings mediation * write additional regression tests |
|
Line 58: | Line 53: |
* finish mellon/lasso MIR * !AppArmor patch review * pick up another MIR {{{#!wiki comment |
* finish lasso MIR |
Line 63: | Line 55: |
* Thunderbird update * Oxide updates |
* embargoed update * firefox crash investigation |
Line 66: | Line 58: |
* oxide development/reviews }}} |
* reach out to Mozilla to discuss |
Line 70: | Line 61: |
* internal tasks | * prepare for webinar |
Line 72: | Line 63: |
* update ubuntu-table to query by CRD date | * update flavors CVE pages |
Line 81: | Line 72: |
Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-04-03-16.29.moin.txt | Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-04-10-16.37.moin.txt |
Meeting
Who: SecurityTeam
When: Mon Apr 10th 2017 16:54 UTC
End: 16:50 UTC
Where: #ubuntu-meeting on irc.freenode.net
Chaired By: Tyler Hicks (tyhicks)
Attendance
- jdstrand
- mdeslaur
- sbeattie
- tyhicks
- jjohansen
- sarnold
- chrisccoulson
- ratliff
Not present
- None
Agenda
- Announcements
- None
- Weekly stand-up report (each member discusses any pending and planned future work for the week)
- jdstrand
- snapd policy updates for zesty
- start looking at wayland/gnome3 interfaces
- review tools updates
- prod the k8s snaps developers to get the k8s interfaces PR moving again
- mdeslaur
- weekly role: happy place
- embargoed issue
- webkit2gtk updates
- sbeattie
- weekly role: community
- kernel signoffs
- security updates
- apparmor mailing list responses
- tyhicks
- weekly role: bug triage
- start work on seccomp v5 patch set after hashing out a few more details on lkml
- 12.04 ESM preparation
- eCryptfs upstream work for PR review and bug triage
- jjohansen
AppArmor bugs
- rlimit issue in zesty (LP: #1679704)
- ptrace issue (possibly confusion on the reporter's part)
try to get another batch of AppArmor kernel patches to upstream for 4.12
- sarnold
- weekly role: cve triage
- shadow update
- finish lasso MIR
ChrisCoulson
- embargoed update
- firefox crash investigation
- determine what to do with ubufox and start page once Firefox drops legacy extension support
- reach out to Mozilla to discuss
- ratliff
- weekly role: happy place
- prepare for webinar
- CVE notifications
- update flavors CVE pages
- security update for ubuntu-core 15.04 and Touch
- jdstrand
- Highlighted packages
The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. The highlighted packages for this week are:
The Ubuntu Security team suggests that contributors look into merging Debian security updates in community-supported packages. If you would like to help Ubuntu but are not sure where to start, this is a great way to do so. See the available merges and SecurityTeam/UpdateProcedures for details on preparing Ubuntu security updates. If you have any questions, feel free to ask in #ubuntu-hardened. To find out other ways of helping out, please see SecurityTeam/GettingInvolved.
- Miscellaneous and Questions
- none
Log
Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-04-10-16.37.moin.txt
MeetingLogs/Security/20170605 (last edited 2017-06-05 16:49:47 by tyhicks)