20180212

Differences between revisions 4 and 5
Revision 4 as of 2017-06-19 16:27:40
Size: 3003
Editor: tyhicks
Comment:
Revision 5 as of 2017-06-19 16:46:07
Size: 3404
Editor: tyhicks
Comment:
Deletions are marked like this. Additions are marked like this.
Line 2: Line 2:
== Meeting (DRAFT) == == Meeting ==
Line 4: Line 4:
 * '''When''': Mon June 19th 2017 16:36 UTC
 * '''End''': 16:57 UTC
 * '''When''': Mon June 19th 2017 16:30 UTC
 * '''End''': 16:45 UTC
Line 14: Line 14:
 * sarnold
Line 21: Line 20:
 * sarnold
Line 27: Line 27:
   * respond to greengrass-support interface feedback
    * iterate on the policy once a devmode snap is available
Line 30: Line 32:
   * respond to greengrass-support interface feedback
    * iterate on the policy once a devmode snap is available
Line 40: Line 40:
   * gnutls updates
   * libiberty updates
   * release glibc and exim4 updates
   * ruby updates
Line 53: Line 53:
   * fscrypto evaluation    * fscrypt evaluation
Line 55: Line 55:
   * book upcoming travel
   * help leosilva with the update publishing process and possibly with the bug triage role
Line 56: Line 58:
   * kernel USN publication
Line 59: Line 62:
   * !AppArmor kernel patch upstreaming
    * push out namespacing patch set for review
    * work on an RFC patch set for networking/unix socket mediation
Line 60: Line 66:
   * work with SUSE regarding the AppArmor patches for 4.13 kernel
   * !AppArmor kernel patch upstreaming
    * start preparing patches for 4.14
    * book travel
    * help set the schedule
  {{{#!wiki comment
Line 68: Line 74:
  }}}
Line 69: Line 76:
   * Firefox updates
   * sponsor chromium-browser updates
   * embargoed issues
   * thunderbird update
   * investigate spidermonkey/gjs maintenance plan
   * embargoed issue
Line 75: Line 82:
   * CVE notifications    * technical content and reporting
Line 77: Line 84:
   * new employee tasks    * finished testing a libnl3 update for 12.04 ESM
    * publish it soon
   * pick up another security update
   * train for one of the generalist's roles
Line 85: Line 95:
Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-06-12-16.36.moin.txt  Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-06-19-16.30.moin.txt

Meeting

  • Who: SecurityTeam

  • When: Mon June 19th 2017 16:30 UTC

  • End: 16:45 UTC

  • Where: #ubuntu-meeting on irc.freenode.net

  • Chaired By: Tyler Hicks (tyhicks)

Attendance

  • jdstrand
  • mdeslaur
  • tyhicks
  • jjohansen
  • chrisccoulson
  • ratliff
  • leosilva

Not present

  • sbeattie
  • sarnold

Agenda

  • Announcements
    • None
  • Weekly stand-up report (each member discusses any pending and planned future work for the week)
    • jdstrand
      • respond to greengrass-support interface feedback
        • iterate on the policy once a devmode snap is available
      • PR reviews for fixing racy profile generation
        • bpf caching
        • system-key
      • password-manager-service interface PR
      • finish overlayfs/apparmor/snaps investigation
        • file overlay/apparmor bugs
      • snappy-debug work
        • fix to work with journald
      • miscellaneous snappy policy updates PR
    • mdeslaur
      • weekly role: happy place
      • release glibc and exim4 updates
      • ruby updates
      • additional security updates as time allows
    • tyhicks
      • weekly role: bug triage
      • !eCryptfs patch review (userspace and kernel)
      • fscrypt evaluation
      • seccomp patches
      • book upcoming travel
      • help leosilva with the update publishing process and possibly with the bug triage role
    • jjohansen
      • kernel USN publication
      • upstream linux-security-module reviews
        • new revision of LSM stacking patches
        • path based LSM changes from Tetsuo
      • AppArmor kernel patch upstreaming

        • push out namespacing patch set for review
        • work on an RFC patch set for networking/unix socket mediation
      • LSS program committee duties
        • book travel
        • help set the schedule
    • ChrisCoulson

      • thunderbird update
      • investigate spidermonkey/gjs maintenance plan
      • embargoed issue
    • ratliff
      • weekly role: happy place
      • Ubuntu Core 15 updates
      • technical content and reporting
    • leosilva
      • finished testing a libnl3 update for 12.04 ESM
        • publish it soon
      • pick up another security update
      • train for one of the generalist's roles
  • Highlighted packages

    The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. The highlighted packages for this week are:

    The Ubuntu Security team suggests that contributors look into merging Debian security updates in community-supported packages. If you would like to help Ubuntu but are not sure where to start, this is a great way to do so. See the available merges and SecurityTeam/UpdateProcedures for details on preparing Ubuntu security updates. If you have any questions, feel free to ask in #ubuntu-hardened. To find out other ways of helping out, please see SecurityTeam/GettingInvolved.

  • Miscellaneous and Questions
    • none

Log

Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-06-19-16.30.moin.txt

MeetingLogs/Security/20180212 (last edited 2018-02-12 17:02:24 by tyhicks)