||<>|| == Introduction == Security team development (ie specification work) is done as time allows. This page does not include security updates, audits, investigations, etc. This page only includes information on proactive development work as it pertains to the [[OneiricReleaseSchedule|Ubuntu Release schedule]]. Blueprints that the security team is committed to completing in a development cycle have an 'Essential' priority. == Specifications == === Blueprints === Overview: https://wiki.ubuntu.com/SecurityTeam/UDSProceedings/Oneiric All blueprints involving the security team: * https://blueprints.launchpad.net/ubuntu?searchtext=security-o === Status (for all blueprints) === * http://status.ubuntu.com/ubuntu-oneiric/canonical-security.html * Beta 1: http://people.canonical.com/~platform/workitems/oneiric/canonical-security-ubuntu-11.10-beta-1.html * Entire cycle: http://people.canonical.com/~platform/workitems/oneiric/canonical-security.html {{http://people.canonical.com/~platform/workitems/oneiric/canonical-security.svg}} == Weekly summary == (Updated manually once Beta hits, currently not being updated for Oneiric) We fixed 0 RC bugs, got 0 new ones. == Milestoned Bugs == Fixed last week: * None Triaged problems: * None Bugs which need better understanding/debugging * None === Planned changes for RC 1 === * Upload new NSS for updated root certificates (with corresponding SRUs) === Deferred for SRU === * [[https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/851986|LP: #851986]] - use of Ux in ubuntu-* abstractions and profiles is too lenient and should be improved * [[https://bugs.launchpad.net/ubuntu/+source/evince/+bug/864992|LP: #864992]] - "Show Containing Folder" button failed to execute err (evince) === Deferred to next release === * [[https://launchpad.net/bugs/344878|LP: #344878]] file name too long when creating new file (ecryptfs_lookup: lookup_one_len() returned [-36] on lower_dentry) == Milestoned Bugs/Issues from other Teams == * [[https://launchpad.net/bugs/848456|LP: #848456]] - Switch User Account does not require password entry * [[https://launchpad.net/bugs/863305|LP: #863305]] - Image access control is available (nova) * '''DONE''': [[https://launchpad.net/bugs/772082|LP: #772082]] - certificate chain validation failure (gnutls26) * '''DONE''': [[https://launchpad.net/bugs/792075|LP: #792075]] - oneiric live-cd does not work with qemu-kvm * '''DONE''': [[https://launchpad.net/bugs/834079|LP: #834079]] - files written as root to user-controlled folders * '''DONE''': [[https://launchpad.net/bugs/835996|LP: #835996]] - lightdm.log should not be user readable * '''DONE''': [[https://launchpad.net/bugs/836521|LP: #836521]] - User can access mail client if "Add Event" is selected from Date/Time menu in Unity-Greeter * '''DONE''': [[https://launchpad.net/bugs/844274|LP: #844274]] - creating a guest session does not lock the users session * '''DONE''': [[https://launchpad.net/bugs/849027|LP: #849027]] - lightdm does not provide an equivalent to the gdm guest session AppArmor profile * '''DONE''': [[https://launchpad.net/bugs/745836|LP: #745836]] - encrypted swap corrupts application stack/heap [was: soffice.bin SIGSEGV cppu::throwException()] == Other Oneiric-targeted bugs == * None ---- CategorySecurityTeam