== Meeting information == * #ubuntu-meeting Meeting, 26 Jan at 17:08 — 17:28 UTC * Full logs at [[http://ubottu.com/meetingology/logs/ubuntu-meeting/2015/ubuntu-meeting.2015-01-26-17.08.log.html]] == Meeting summary == ''LINK:'' https://wiki.ubuntu.com/SecurityTeam/Meeting === Weekly stand-up report === The discussion about "Weekly stand-up report" started at 17:09. === Highlighted packages === The discussion about "Highlighted packages" started at 17:24. * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/eet.html * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/batmand.html * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/heirloom-mailx.html * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/gksu-polkit.html * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/libcgi-pm-perl.html === Miscellaneous and Questions === The discussion about "Miscellaneous and Questions" started at 17:26. == Vote results == == Done items == * (none) == People present (lines said) == * tyhicks (32) * jdstrand (9) * chrisccoulson (6) * sarnold (5) * mdeslaur (5) * sbeattie (5) * meetingology (3) * ubottu (2) == Full Log == 17:08 #startmeeting 17:08 Meeting started Mon Jan 26 17:08:42 2015 UTC. The chair is tyhicks. Information about MeetBot at http://wiki.ubuntu.com/meetingology. 17:08 17:08 Available commands: action commands idea info link nick 17:08 hi! :) 17:08 The meeting agenda can be found at: 17:09 [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting 17:09 [TOPIC] Weekly stand-up report 17:09 jdstrand: you're up 17:12 today I am in the happy place 17:12 err, this week 17:12 today I am helping people address some phone bugs 17:13 hopefully I'll be done with that soon, and I will be working on some snappy designs and planning 17:13 I'm also working on an embargoed issue 17:13 that's it from me 17:13 mdeslaur: you're up 17:14 I'm on triage this week 17:14 I just published some updates 17:14 and plan on working on some more 17:14 that's about it from me, sbeattie, you're up 17:15 I have an embargoed issue that I need to finish testing, and am also working on a binutils update. 17:15 I need to get back on the gcc pie stuff (was looking at HJ Lu's upstream patches) 17:16 And I think I have some apparmor review work outstanding. 17:16 That's it for me. tyhicks, you're it. 17:16 sbeattie: do you think you'll get to the gcc pie stuff with the reactive work you have planned? 17:16 tyhicks: yes, I think so. 17:16 good 17:17 I'm focusing on bug #1362469 today 17:17 bug 1362469 in dbus (Ubuntu) "AppArmor unrequested reply protection generates unallowable denials" [Medium,In progress] https://launchpad.net/bugs/1362469 17:17 it will probably take 2 or 3 days out of my week 17:18 I also need to propose a new API for the libapparmor aa_features interface after talking with jj and others in #apparmor 17:18 I have taken the security updates for patch 17:18 but I plan on waiting for some of the dust to settle there 17:19 there are pending CVE assignments on oss-security 17:19 * jdstrand forgot to mention he'd work on openjdk security updates 17:19 and then I will transition to User Data Encryption work items but that'll be late this week at best 17:19 that's it for me 17:19 jj is away today 17:20 so it is sarnold's turn 17:20 I'm on community this week; it's a short week for me, off thursday and friday 17:20 I'm working on a horizon security update that appears to require more backporting effort to precise than is usual for me, though I suspect it's business as usual for openstack updates 17:21 so wihle I will probably have trusty-and-newer updates ready to go before I leave, probably not trusty. 17:21 s/probably not trusty/probably not precise/ 17:21 that's it for me, chrisccoulson? 17:22 I'm hoping for no flash updates this week :) 17:22 hehe 17:22 :) 17:22 There will be a firefox update to address a couple of regressions, in particular, https://bugzilla.mozilla.org/show_bug.cgi?id=1122445 17:22 Mozilla bug 1122445 in DOM: Security "CSP change in behavior regards case sensitivity loading resources" [Major,Resolved: fixed] 17:22 I'm also planning to get oxide 1.4 out (today, hopefully) 17:23 and then I'll be making a start on https://launchpad.net/oxide/+milestone/branch-1.6 17:24 chrisccoulson: does 1.4 contain the media-hub bits? 17:24 I think that's me done 17:24 tyhicks, it doesn't - that's in 1.5 17:24 ack 17:24 [TOPIC] Highlighted packages 17:24 The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. 17:25 See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. 17:25 http://people.canonical.com/~ubuntu-security/cve/pkg/eet.html 17:25 http://people.canonical.com/~ubuntu-security/cve/pkg/batmand.html 17:26 http://people.canonical.com/~ubuntu-security/cve/pkg/heirloom-mailx.html 17:26 http://people.canonical.com/~ubuntu-security/cve/pkg/gksu-polkit.html 17:26 http://people.canonical.com/~ubuntu-security/cve/pkg/libcgi-pm-perl.html 17:26 [TOPIC] Miscellaneous and Questions 17:26 Does anyone have any other questions or items to discuss? 17:28 jdstrand, mdeslaur, sbeattie, sarnold, chrisccoulson: Thanks! 17:28 #endmeeting Generated by MeetBot 0.1.5 (http://wiki.ubuntu.com/meetingology)