20180730

Differences between revisions 108 and 109
Revision 108 as of 2018-07-30 17:31:57
Size: 2763
Editor: emilyr
Comment:
Revision 109 as of 2018-07-30 17:52:47
Size: 2447
Editor: emilyr
Comment:
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
## page was copied from MeetingLogs/Security/20180723
## page was copied from MeetingLogs/Security/20180625
Line 5: Line 3:
 * '''When''': Mon Jul 23 16:31:43 2018 UTC
 * '''End''': 16:56:41		  * '''When''': Mon Jul 30 16:32:11 2018 UTC
 * '''End''': 16:45:40
Line 11: Line 9:

 * jdstrand
 * mdeslaur
Line 12: Line 13:
 * jdstrand
 }}}
 * mdeslaur
Line 16: Line 14:
 {{{#!wiki comment
Line 31: Line 28:
 * jdstrand  * sbeattie
Line 36: Line 33:
  * Thanks to Thinh Hoang Quoc (g4mm4) for reporting a subdomain takeover issue with the discourse.ubuntu.com domain.
Line 37: Line 35:
   * CVE Triage: amurray, Bug Triage: mdeslaur, Community: leosilva, Happy Place: barretto, msalvatore, sarnold, ratliff, sbeattie
  * We welcome Mike Salvatore and Eduardo Barretto to the Ubuntu Security Team today! Welcome Mike and Eduardo! We are thrilled that you are joining us to help continue improving security for Ubuntu users!		    * CVE Triage: mdeslaur, Bug Triage: amurray, Community: mdeslaur, Happy Place: leosilva, ebarretto, msalvatore, sarnold, ratliff
Line 41: Line 38:
  * jdstrand
   * miscellaneous snapd reviews (notably, anbox, but also a few others)
   * brand store snap declarations
   * various followups for Debian !AppArmor MR reviews
   * an embargoed item
   * kubernetes interface as have time
  * mdeslaur
   * mysql updates to publish
   * embargoed issue
   * security updates
Line 42: Line 49:
  * jdstrand
   * snapd PR reviews
   * adjust snap-confine to always use a device cgroup
   * follow up on unsquashfs issue (ie, work on re-enabling resquashfs enforcement
   * pick up review-tools snap USNs phase1/part ii work as have time
 }}}
  * mdeslaur
   * clamav update
   * if possible, mysql update
   * security updates
Line 55: Line 52:
 {{{#!wiki comment
Line 58: Line 54:
   * LSS-EU program committee duties    * !AppArmor bug work LP: #Bug:1780227 and LP: #Bug:1783922
   * report regression around bind mounts on 4.18
Line 60: Line 57:
   * !AppArmor feature work    * review David's mount patches
   * review sarnold's !DebConf presentation
Line 62: Line 60:
   * MIRs
    * xdg-desktop-portal
   * !DebConf presentaton		    * [[https://debconf18.debconf.org/talks/106-apparmor-30/|DebConf presentation]]
Line 67: Line 63:
   * !AppArmor audit    * Chromium updates
Line 72: Line 68:
   * mutt update publication
   * python-cryptography updates		    * mysql-5.5 update for precise
Line 76: Line 71:
   * ant update    * Network Manager VPNC plugin update
   * tooling work
Line 78: Line 74:
   * update publication for libonig for trusty and xenial
   * capnproto update
Line 82: Line 80:
  * tsimonq2 asked where the highlighted packages went. A: We stopped publishing a list of highlighted packages because Debian merges were seen as more likely to succeed and known to be needed.
  * tsimonq2 commented that !QtWebEngine needs an update for its embedded Chromium. Discussion deferred to #ubuntu-hardened.		   * None
Line 86: Line 83:
http://ubottu.com/meetingology/logs/ubuntu-meeting/2018/ubuntu-meeting.2018-07-23-16.31.moin.txt http://ubottu.com/meetingology/logs/ubuntu-meeting/2018/ubuntu-meeting.2018-07-30-16.32.moin.txt

Meeting

  • Who: SecurityTeam

  • When: Mon Jul 30 16:32:11 2018 UTC

  • End: 16:45:40

  • Where: #ubuntu-meeting on irc.freenode.net

  • Chaired By: Emily Ratliff (ratliff)

Attendance

  • jdstrand
  • mdeslaur
  • jjohansen
  • sarnold
  • chrisccoulson
  • leosilva
  • ratliff
  • msalvatore
  • ebarretto

Not present

  • sbeattie
  • amurray

Agenda

  • Announcements
    • Thanks to Thinh Hoang Quoc (g4mm4) for reporting a subdomain takeover issue with the discourse.ubuntu.com domain.
    • Generalist role rotation
      • CVE Triage: mdeslaur, Bug Triage: amurray, Community: mdeslaur, Happy Place: leosilva, ebarretto, msalvatore, sarnold, ratliff

    • Ubuntu Security Team is hiring

  • Weekly stand-up report (each member discusses any pending and planned future work for the week)
    • jdstrand
      • miscellaneous snapd reviews (notably, anbox, but also a few others)
      • brand store snap declarations

      • various followups for Debian AppArmor MR reviews

      • an embargoed item
      • kubernetes interface as have time
    • mdeslaur
      • mysql updates to publish
      • embargoed issue
      • security updates
    • jjohansen

      • AppArmor bug work LP: #1780227 and LP: #1783922

      • report regression around bind mounts on 4.18
      • review mjg's network labeling patch
      • review David's mount patches

      • review sarnold's DebConf presentation

    • sarnold

    • ChrisCoulson

      • thunderbird 60 updates
      • Chromium updates
      • embargoed issue
    • ratliff
      • embargoed and internal work
    • leosilva
      • mysql-5.5 update for precise
      • security updates
    • msalvatore
      • Network Manager VPNC plugin update
      • tooling work
    • ebarretto
      • update publication for libonig for trusty and xenial
      • capnproto update
      • onboarding tasks
  • Highlighted packages

    The Ubuntu Security team suggests that contributors look into merging Debian security updates in community-supported packages. If you would like to help Ubuntu but are not sure where to start, this is a great way to do so. See the available merges and SecurityTeam/UpdateProcedures for details on preparing Ubuntu security updates. If you have any questions, feel free to ask in #ubuntu-hardened. To find out other ways of helping out, please see SecurityTeam/GettingInvolved.

  • Miscellaneous and Questions
    • None

Log

http://ubottu.com/meetingology/logs/ubuntu-meeting/2018/ubuntu-meeting.2018-07-30-16.32.moin.txt

MeetingLogs/Security/20180730 (last edited 2018-07-30 17:52:47 by emilyr)