16:36 <tyhicks> #startmeeting 16:36 <meetingology> Meeting started Mon Feb 23 16:36:48 2015 UTC. The chair is tyhicks. Information about MeetBot at http://wiki.ubuntu.com/meetingology. 16:36 <meetingology> 16:36 <meetingology> Available commands: action commands idea info link nick 16:36 <tyhicks> The meeting agenda can be found at: 16:36 <tyhicks> [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting 16:37 <tyhicks> [TOPIC] Announcements 16:37 <tyhicks> Chris Pollock provided a debdiff for lucid for ClamAV (LP: #1420819). Your work is very much appreciated and will keep Ubuntu users secure. Great job! Smile :) 16:37 <ubottu> Launchpad bug 1420819 in clamav (Ubuntu) "ClamAV 0.98.6 security update for Lucid" [Medium,Fix released] https://launchpad.net/bugs/1420819 16:37 <tyhicks> [TOPIC] Weekly stand-up report 16:37 <tyhicks> jdstrand: you're up 16:38 <jdstrand> hi! 16:39 <jdstrand> I plan on focusing on snappy this week. specifically, hw access 16:39 <jdstrand> I need to also update the SnappyConfinement spec since it is out of date 16:39 <jdstrand> tyhicks: we need to discuss overlayfs with slangasek sometime soon 16:40 <jdstrand> tyhicks: we don't have to plan that now, but let's discuss after the meeting 16:40 * tyhicks nods 16:40 <jdstrand> I also need to get to some review tools changes 16:41 <jdstrand> I'll move on to other bits after that (frameworks, fingerprint, etc) 16:41 <jdstrand> I think that's it from me 16:42 <tyhicks> thanks 16:42 <tyhicks> mdeslaur: your turn 16:43 <mdeslaur> I'm currently testing the samba updates 16:43 <mdeslaur> I plan on publishing samba and e2fsprogs updates today 16:44 <mdeslaur> and some ca-certificates updates with a new bundle in them 16:44 <mdeslaur> after that, I'm going to work on freetype updates 16:44 <mdeslaur> that's it for me, sbeattie, you're up 16:44 <sbeattie> I'm on cve triage this week, so relearning that. 16:45 <tyhicks> :) 16:45 <sbeattie> I need to push for sponsorship of apparmor and apparmor-easyprof-ubuntu into vivid, after completing testing of that last week 16:46 <sbeattie> I've uploaded gcc-5 packages with pie by default and set as the default compiler to https://launchpad.net/~sbeattie/+archive/ubuntu/gcc-pie-amd64/, and will be testing those. 16:46 <sbeattie> (gcc-5 is the planned compiler for vivid+1) 16:46 <sbeattie> that's pretty much it for me. 16:46 <chrisccoulson> fantastic, I look forward to fixing the fall out of that in oxide :) 16:47 <tyhicks> sbeattie: nice! 16:47 <sbeattie> chrisccoulson: it will be awesome, I assure, based on some of the gcc-5 breakage I've seen already. 16:47 <chrisccoulson> sbeattie, I'll just assign all bugs to doko 16:47 <sbeattie> hehe 16:47 <sbeattie> tyhicks: you're up. 16:48 <tyhicks> I will retest and publish ecryptfs-utils security updates after the changes get acked for merging upstream 16:48 <tyhicks> I need to review and test an ecryptfs kernel fix from cking (thanks!) 16:49 <tyhicks> I need to dig into an ecryptfs data loss issue on btrfs 16:49 <tyhicks> I'll propose a v2 of the libapparmor API changes this week 16:50 <tyhicks> and I need to review some overlayfs related changes that went into 4.0-rc1 over the weekend 16:51 <tyhicks> they look like they might be related to a patch set that jjohansen and I thought may fix some of the issues that we are seeing with overlayfs and apparmor 16:51 <tyhicks> that'll feed into the discussion that jdstrand mentioned above 16:51 <tyhicks> that's it for me 16:51 <tyhicks> jjohansen: you're up 16:52 <jjohansen> I need to dig into why the fd inheritance tests are dying on krillin bug 1423810 16:52 <jjohansen> poke someone again to verify the fix for bug 1408833 works for them, so I can push it to the kt. 16:52 <jjohansen> Hopefully get a discussion of v2 libapparmor aa_features API in 16:52 <ubottu> bug 1423810 in apparmor (Ubuntu) "[krillin] apparmor fd_inheritance regression test causes kernel to crash" [Undecided,New] https://launchpad.net/bugs/1423810 16:52 <ubottu> bug 1408833 in AppArmor "broken postinst test for uvtool-libvirt on utopic" [Undecided,Confirmed] https://launchpad.net/bugs/1408833 16:53 <jjohansen> It looks like I might need to possibly poke at some overlayfs changes 16:54 <jjohansen> and of course I have apparmor kernel cleanups for upstream to continue working 16:54 <jjohansen> on 16:54 <jjohansen> I think that is it for me, sarnold you're up 16:54 <tyhicks> jjohansen: are you making much progress on the upstreaming work or has there been too many other distractions popping up? 16:55 <jjohansen> tyhicks: less progress than I would like, there have been a fair few distractions, but it depends on the week 16:55 <tyhicks> ok 16:56 <jjohansen> I need to focus on getting a first set of patches together to push this next cycle 16:56 <tyhicks> that'd be great 16:56 <jjohansen> yeah 16:56 <tyhicks> especially now that AA mediation landed in upstream D-Bus 16:56 <tyhicks> folks will want to start using that soon :) 16:56 <tyhicks> go ahead, sarnold 16:57 <jjohansen> oh yes, and a big congratulations to tyhicks on pushing that through 16:57 <sbeattie> +1 16:57 <sarnold> I'm on community this week; I'm working on several MIRs for the server team, horizon security update, and talking with ibm about the ppc64-diag mir review from a few weeks ago 16:57 <sarnold> tyhicks: hehe, yes, congratulations :) 16:57 <tyhicks> thanks! :) 16:58 <sarnold> I might get an apparmor patch or two reviewed in the meantime for some variety, but I'm not likely to make it through an entire patch series. 16:58 <sarnold> that's it for me, chrisccoulson? 16:58 <chrisccoulson> I should be back to a normal working routine this week 16:58 <chrisccoulson> I've got Firefox + Thunderbird updates to do 16:59 <chrisccoulson> And other than that, I'll be working on embargoed stuff 16:59 <chrisccoulson> that's me done 17:01 <tyhicks> [TOPIC] Highlighted packages 17:01 <tyhicks> The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. 17:01 <tyhicks> See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. 17:01 <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/ckeditor.html 17:01 <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/obby.html 17:01 <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/zookeeper.html 17:02 <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/davfs2.html 17:02 <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/gambas3.html 17:02 <tyhicks> [TOPIC] Miscellaneous and Questions 17:02 <tyhicks> Does anyone have any other questions or items to discuss? 17:04 <tyhicks> jdstrand, mdeslaur, sbeattie, jjohansen, chrisccoulson: Thanks! 17:04 <tyhicks> #endmeeting