== Meeting information == * #ubuntu-meeting Meeting, 10 Jul at 16:29 — 16:42 UTC * Full logs at [[http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-07-10-16.29.log.html]] == Meeting summary == ''LINK:'' https://wiki.ubuntu.com/SecurityTeam/Meeting === Announcements === The discussion about "Announcements" started at 16:30. === Weekly stand-up report === The discussion about "Weekly stand-up report" started at 16:30. === Highlighted packages === The discussion about "Highlighted packages" started at 16:39. * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/pytables.html * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/fwknop.html * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/linux-mako.html * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/tweepy.html * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/qbittorrent.html === Miscellaneous and Questions === The discussion about "Miscellaneous and Questions" started at 16:39. == Vote results == == Done items == * (none) == People present (lines said) == * tyhicks (33) * jdstrand (8) * leosilva (5) * ratliff (5) * sbeattie (5) * chrisccoulson (4) * meetingology (3) * ubottu (1) == Full Log == 16:29 #startmeeting 16:29 Meeting started Mon Jul 10 16:29:52 2017 UTC. The chair is tyhicks. Information about MeetBot at http://wiki.ubuntu.com/meetingology. 16:29 16:29 Available commands: action commands idea info link nick 16:29 The meeting agenda can be found at: 16:30 [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting 16:30 [TOPIC] Announcements 16:30 Otto Kekäläinen (otto) provided updates for trusty for mariadb-5.5 (LP: #1698689) 16:30 Launchpad bug 1698689 in mariadb-10.0 (Ubuntu Yakkety) "USN-3269-1: partially applies to MariaDB too" [Undecided,In progress] https://launchpad.net/bugs/1698689 16:30 Thank you for your assistance in keeping Ubuntu users secure! :) 16:30 [TOPIC] Weekly stand-up report 16:30 jdstrand: you're up 16:30 hi 16:30 last week was a short week for me. I focused on the ubuntu-image CVE coordination and update, lots of store reviews, various snappy PRs, help with snap-seccomp issue on 14.04 LTS, advising zyga on how to debug snap-confine apparmor profile issue, and followups for password-manager-service PR. 16:30 this week I plan to: 16:31 * be responsive to several in flight snappy PRs and feature discussions 16:31 that's it from me. sbeattie, you're up 16:31 * work on finishing the overlayfs bug filing 16:31 * sprint prep as required 16:31 * getting back to wayland (as have time) 16:31 I'm on cve triage this week 16:31 I'll pick up some updates, given that Marc is out this week 16:32 I need to poke at a few apparmor things. 16:32 and there's a couple of things I need to look at on the kernel cve triage side of things. 16:32 that's it for me. tyhicks? 16:33 I'm in the happy place this week 16:33 I'm continuing my work on fscrypt evaluation in regards to its usage as a pam module 16:33 s/as a pam module/in a pam module/ 16:33 I have sprint prep 16:33 will spend some time thinking through CVE tracking in snaps 16:34 may get some time to work on seccomp kernel patches 16:34 probably won't be able to get to ecryptfs patch review 16:34 that's it for me 16:34 jj is out today 16:34 sarnold: you're up 16:35 I don't see him around yet 16:35 chrisccoulson: go ahead 16:35 I've got a chromium update to do this week 16:36 I also need to do a rust transition for future firefox updates 16:37 other than that, I'll continue to work through the old firefox security bugs to backport some fixes to our current spidermonkey package 16:37 that's me done 16:37 I'm on community this week 16:37 I have already started working on the debdiffs for vlc from tsimonq2 16:38 I have some sprint prep, a sizing effort, and a few small internal tasks 16:38 Then I will look into updates. 16:38 leosilva: you are up 16:38 * worked in some updates for precise: libgcrypt,expat, libtiff, bind9 16:38 * this week I'm planning to continue to search and update for precise and finish jbig2 update and openldap 16:38 * I'm also want to shadow sarnold in bug triate this 16:38 that's it from me. 16:38 tyhicks: it's back to you 16:39 thanks 16:39 [TOPIC] Highlighted packages 16:39 The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. 16:39 See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. 16:39 http://people.canonical.com/~ubuntu-security/cve/pkg/pytables.html 16:39 http://people.canonical.com/~ubuntu-security/cve/pkg/fwknop.html 16:39 http://people.canonical.com/~ubuntu-security/cve/pkg/linux-mako.html 16:39 http://people.canonical.com/~ubuntu-security/cve/pkg/tweepy.html 16:39 http://people.canonical.com/~ubuntu-security/cve/pkg/qbittorrent.html 16:39 [TOPIC] Miscellaneous and Questions 16:39 Does anyone have any other questions or items to discuss? 16:41 jdstrand, sbeattie, sarnold, ChrisCoulson, ratliff, leosilva: Thanks! 16:42 #endmeeting Generated by MeetBot 0.1.5 (http://wiki.ubuntu.com/meetingology)