20180226

Differences between revisions 55 and 81 (spanning 26 versions)
Revision 55 as of 2017-11-27 16:18:24
Size: 2682
Editor: tyhicks
Comment:
Revision 81 as of 2018-02-26 16:57:50
Size: 2742
Editor: tyhicks
Comment: Fix comment indention
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
## page was copied from MeetingLogs/Security/20171120
Line 4: Line 3:
 * '''When''': Mon Nov 27th 2017 16:32 UTC
 * '''End''': 16:49 UTC		  * '''When''': Mon Feb 26th 2018 16:33 UTC
 * '''End''': 16:53 UTC
Line 15: Line 14:
 * chrisccoulson
Line 21: Line 19:
 * chrisccoulson
Line 24: Line 23:
  * Today is Ubuntu Community Appreciation Day!   * Generalist role rotation
   * CVE Triage: mdeslaur, Bug Triage: leosilva, Community: sarnold, Happy Place: ratliff, sbeattie
  * An all new version of the [[https://usn.ubuntu.com|USN website]] will be deployed today
   * Please [[https://github.com/canonical-websites/usn.ubuntu.com/issues/|report a bug]] for any issue that you discover
  * Simon Deziel (sdeziel) provided a debdiff for artful for unbound (LP: #Bug:1723900)
Line 28: Line 31:
   * pickup the ssh/gpg interfaces PR
   * investigate/implement proper fix for hotplugged devices not being added to device cgroup (mir input forum issue)		     * layouts
    * portals
    * steam-support interface
   * stric mode snaps on livecd
   * miscellaneous policy investigations and updates
   * prepare for sprint
   * lxd snap regression wrt confinement
   * create screencast interface
Line 31: Line 40:
   * weekly role: happy place
   * embargoed update
   * imagemagick update
   * additional security updates		    * sensible-utils updates
   * embargoed issue
Line 36: Line 43:
   * weekly role: happy place
   * CVE notifications for snap owners
   * !AppArmor upstream work
   * an apport regression update to publish for Tyler
   * will likely have kernel updates to publish today/tomorrow		    * final testing of enabling retpoline by default in 18.04
    * gcc-8, gcc-7, gcc-6, and gcc-5
   * add the documentation bits to a patch to hardening retpoline options to dpkg, to support hardening=[+-]retpoline and submit to debian
   * gcc retpoline backports for 12.04 ESM
Line 42: Line 48:
   * weekly role: community    * address issues found in the new USN website once it goes live
   * finalize LSM stacking demo
   * embargoed issue
   * involved in the retpoline by default discussions/, uploads, etc.
Line 45: Line 54:
   * !AppArmor bugs
    * target domain name bug
    * stacking bug for px transitions
   * update bionic LSM stacking patches with the latest upstream revision
   * !AppArmor community meeting
Line 47: Line 61:
   * weekly role: CVE triage
   * embargoed issue
   * !AppArmor reviews		    * !AppArmor patch review
   * brotli MIR
   * respond to openjpeg2 bugs stemming from MIR review
  {{{#!wiki comment
Line 51: Line 66:
   * a chromium update to test, and also expecting thunderbird
   * regression to fix in Firefox
   * I added a workaround to our rust package for 1.21 to get it to build, and there's a bug for that opened upstream by other distros (for around 1 month now) with no progress		    * firefox updates
   * ubuntu-drivers-common updates
   * !AppArmor auditing changes
  }}}
Line 55: Line 71:
   * weekly role: bug triage
   * internal work		    * sprint prep
   * KPI improvements
   * improve tutorial
Line 58: Line 75:
   * weekly role: happy place
   * db updates to test
   * python2.7 update and will take a look at python3.* updates too
   * security updates		    * qpdf updates
   * additional security updates
Line 63: Line 78:
 The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. The highlighted packages for this week are:
Line 69: Line 83:
Logs available at  http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-11-20-16.32.moin.txt Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2018/ubuntu-meeting.2018-02-26-16.33.moin.txt

Meeting

  • Who: SecurityTeam

  • When: Mon Feb 26th 2018 16:33 UTC

  • End: 16:53 UTC

  • Where: #ubuntu-meeting on irc.freenode.net

  • Chaired By: Tyler Hicks (tyhicks)

Attendance

  • jdstrand
  • mdeslaur
  • sbeattie
  • tyhicks
  • sarnold
  • ratliff
  • leosilva

Not present

  • jjohansen
  • chrisccoulson

Agenda

  • Announcements
    • Generalist role rotation
      • CVE Triage: mdeslaur, Bug Triage: leosilva, Community: sarnold, Happy Place: ratliff, sbeattie

    • An all new version of the USN website will be deployed today

    • Simon Deziel (sdeziel) provided a debdiff for artful for unbound (LP: #1723900)

  • Weekly stand-up report (each member discusses any pending and planned future work for the week)
    • jdstrand
      • snapd PR reviews
        • layouts
        • portals
        • steam-support interface
      • stric mode snaps on livecd
      • miscellaneous policy investigations and updates
      • prepare for sprint
      • lxd snap regression wrt confinement
      • create screencast interface
    • mdeslaur
      • sensible-utils updates
      • embargoed issue
    • sbeattie
      • final testing of enabling retpoline by default in 18.04
        • gcc-8, gcc-7, gcc-6, and gcc-5
      • add the documentation bits to a patch to hardening retpoline options to dpkg, to support hardening=[+-]retpoline and submit to debian
      • gcc retpoline backports for 12.04 ESM
    • tyhicks
      • address issues found in the new USN website once it goes live
      • finalize LSM stacking demo
      • embargoed issue
      • involved in the retpoline by default discussions/, uploads, etc.
    • sarnold

      • AppArmor patch review

      • brotli MIR
      • respond to openjpeg2 bugs stemming from MIR review
    • ratliff
      • sprint prep
      • KPI improvements
      • improve tutorial
    • leosilva
      • qpdf updates
      • additional security updates
  • Highlighted packages

    The Ubuntu Security team suggests that contributors look into merging Debian security updates in community-supported packages. If you would like to help Ubuntu but are not sure where to start, this is a great way to do so. See the available merges and SecurityTeam/UpdateProcedures for details on preparing Ubuntu security updates. If you have any questions, feel free to ask in #ubuntu-hardened. To find out other ways of helping out, please see SecurityTeam/GettingInvolved.

  • Miscellaneous and Questions
    • None

Log

Logs available at http://ubottu.com/meetingology/logs/ubuntu-meeting/2018/ubuntu-meeting.2018-02-26-16.33.moin.txt

MeetingLogs/Security/20180226 (last edited 2018-02-26 16:57:50 by tyhicks)