== Security Team Weekly Summary for 23 June 2017 ==

The [[SecurityTeam|Security Team]] weekly reports are intended to be very short summaries of the Security Team's weekly activities. 

If you would like to reach the Security Team, you can find us at the #ubuntu-hardened channel on FreeNode. Alternatively, you can mail the Ubuntu Hardened mailing list at: ubuntu-hardened@lists.ubuntu.com

During the last week, the Ubuntu Security team:
 * Triaged 212 public security vulnerability reports, retaining the 65 that applied to Ubuntu.
 * Published 20 Ubuntu Security Notices which fixed 21 security issues (CVEs) across 15 supported packages.

=== Ubuntu Security Notices ===
 * [[https://www.ubuntu.com/usn/usn-3322-1|[USN-3322-1] Exim vulnerability ]]
 * [[https://www.ubuntu.com/usn/usn-3323-1|[USN-3323-1] GNU C Library vulnerability ]]
 * [[https://www.ubuntu.com/usn/usn-3311-2|[USN-3311-2] libnl vulnerability ]]
 * [[https://www.ubuntu.com/usn/usn-3324-1|[USN-3324-1] Linux kernel vulnerabilities ]]
 * [[https://www.ubuntu.com/usn/usn-3325-1|[USN-3325-1] Linux kernel (Raspberry Pi 2) vulnerabilities ]]
 * [[https://www.ubuntu.com/usn/usn-3326-1|[USN-3326-1] Linux kernel ]]
 * [[https://www.ubuntu.com/usn/usn-3327-1|[USN-3327-1] Linux kernel (Raspberry Pi 2) vulnerabilities ]]
 * [[https://www.ubuntu.com/usn/usn-3328-1|[USN-3328-1] Linux kernel vulnerabilities ]]
 * [[https://www.ubuntu.com/usn/usn-3329-1|[USN-3329-1] Linux kernel vulnerabilities ]]
 * [[https://www.ubuntu.com/usn/usn-3330-1|[USN-3330-1] Linux kernel (Qualcomm Snapdragon) vulnerabilities ]]
 * [[https://www.ubuntu.com/usn/usn-3331-1|[USN-3331-1] Linux kernel (AWS) vulnerabilities ]]
 * [[https://www.ubuntu.com/usn/usn-3332-1|[USN-3332-1] Linux kernel (Raspberry Pi 2) vulnerabilities ]]
 * [[https://www.ubuntu.com/usn/usn-3333-1|[USN-3333-1] Linux kernel (HWE) vulnerabilities ]]
 * [[https://www.ubuntu.com/usn/usn-3334-1|[USN-3334-1] Linux kernel (Xenial HWE) vulnerabilities ]]
 * [[https://www.ubuntu.com/usn/usn-3335-1|[USN-3335-1] Linux kernel vulnerabilities ]]
 * [[https://www.ubuntu.com/usn/usn-3336-1|[USN-3336-1] NSS vulnerability ]]
 * [[https://www.ubuntu.com/usn/usn-3337-1|[USN-3337-1] Valgrind vulnerabilities ]]
 * [[https://www.ubuntu.com/usn/usn-3338-1|[USN-3338-1] Linux kernel vulnerabilities ]]
 * [[https://www.ubuntu.com/usn/usn-3335-2|[USN-3335-2] Linux kernel (Trusty HWE) vulnerability ]]
 * [[https://www.ubuntu.com/usn/usn-3339-1|[USN-3339-1] OpenVPN vulnerabilities ]]

=== Bug Triage ===
 * Backlog: https://bugs.launchpad.net/~ubuntu-security/+subscribedbugs

=== Mainline Inclusion Requests ===
 * gdm3 underway (LP: #Bug:1686393)
 * MIR backlog: https://bugs.launchpad.net/~ubuntu-security/+assignedbugs?field.searchtext=%5BMIR%5D

=== Development ===
 * Updated CRT and review-tools for latest updates to base declaration
 * Investigated snap access to keyring

=== Weekly Meeting ===
 * Log: https://wiki.ubuntu.com/MeetingLogs/Security/20170619
 * Info: https://wiki.ubuntu.com/SecurityTeam/Meeting

=== More Info ===
 * [[http://people.canonical.com/~ubuntu-security/cve/| Ubuntu CVE Tracker]]
 * [[https://www.ubuntu.com/usn/| Ubuntu security notices]]
 * [[https://www.twitter.com/ubuntu_sec| Follow Ubuntu Security on Twitter]]
 * [[https://wiki.ubuntu.com/SecurityTeam/GettingInvolved| How to help improve Ubuntu security ]]