#ubuntu-meeting log

16:31 <tyhicks> #startmeeting
16:31 <meetingology> Meeting started Mon Jun 22 16:31:04 2015 UTC.  The chair is tyhicks. Information about MeetBot at http://wiki.ubuntu.com/meetingology.
16:31 <meetingology> 
16:31 <meetingology> Available commands: action commands idea info link nick
16:31 <jdstrand_> hi!
16:31 <mdeslaur> hi!
16:31 <tyhicks> The meeting agenda can be found at:
16:31 <tyhicks> [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting
16:31 <tyhicks> [TOPIC] Announcements
16:31 <tyhicks> Thanks to Otto Kekaelaeinen (otto) for help on security updates (14.04 and 14.10) for the community supported mariadb-5.5 (LP: #1464895) last week. Your work is very much appreciated and will keep Ubuntu users secure. Great job! :)
16:31 <ubottu> Launchpad bug 1464895 in mariadb-5.5 (Ubuntu) "CVE-2015-3152: MySQL SSL/TLS downgrade vulnerability" [Undecided,Fix released] https://launchpad.net/bugs/1464895
16:31 <tyhicks> [TOPIC] Weekly stand-up report
16:31 <tyhicks> jdstrand: you're up
16:32 <jdstrand_> I'm working with tyhicks on work planning/tracking
16:33 <jdstrand> I'm also working on two embargoed issues
16:34 <jdstrand> I hope to also get back to system-image update procedures
16:34 <jdstrand> that's it from me
16:35 <tyhicks> mdeslaur: you're up
16:35 <mdeslaur> I'm working on updates
16:35 <mdeslaur> I need to resping some of the python2.7 updates I worked on last week because I missed a CVE
16:35 <mdeslaur> and will test them and publish them this week
16:35 <mdeslaur> I also have some tomcat updates that are ready for testing
16:36 <mdeslaur> besides that, I have an embargoed issue I'm working on
16:36 <mdeslaur> and this week is a short week for me because of a national holiday on wednesday
16:36 <mdeslaur> that's it, sbeattie, you're up
16:36 <sbeattie> I'm on security bug triage this week
16:36 <sbeattie> I'm also revisiting my gcc-pie patches
16:37 <sbeattie> I'm also looking at some of the outstanding apparmor patches to try to release 2.10
16:38 <sbeattie> and if no one gets to it before me, I'll verify the trusty apparmor sru.
16:38 <sbeattie> that's it for me.
16:38 <sbeattie> tyhicks: you're up
16:38 <tyhicks> I'm on CVE triage this week
16:38 <tyhicks> I'll be working on an embargoed issue
16:39 <tyhicks> publishing patch updates this afternoon
16:39 <tyhicks> some work tracking improvements
16:39 <tyhicks> and AppArmor userspace support for kernel keyring mediation
16:40 <tyhicks> that's it for me
16:40 <tyhicks> jjohansen: you're up
16:40 <jjohansen> Its a short week for me (off Tuesday and Wednesday).
16:40 <jjohansen> I will be finishing up my dconf review and doing what ever sync is needed there to unblock there
16:40 <jjohansen> I have some revision to do on a couple of my outstanding patches for 2.10, the rest are going to hit the time out and I will just commit them (hint, hint)
16:40 <jjohansen> :)
16:40 <jjohansen> I'll do what I can to help get 2.10 out of the door this week
16:40 <jjohansen> and then get back to upstreaming work
16:41 <tyhicks> I'll pitch in on AppArmor 2.10 patch review this week, as well
16:42 <jjohansen> tyhicks: thanks
16:42 <jjohansen> that is it for me sarnold you are up
16:43 <sarnold> I'm in the happy place this week, I'll be working on finishing the serverstack braindump I started last week, working on the pcc64-diag-related MIRs, and perhaps sneaking an apparmor patch review or two along the way
16:44 <tyhicks> chrisccoulson: you're up
16:45 <chrisccoulson> I've got an embargoed update this week
16:45 <chrisccoulson> I shall also be spending some time getting our firefox extension through Mozilla's review process
16:45 <chrisccoulson> Other than that, I'll be working through Oxide bugs as usual and getting some more reviews done
16:45 <chrisccoulson> that's me done
16:47 <tyhicks> thanks
16:47 <tyhicks> [TOPIC] Highlighted packages
16:48 <tyhicks> The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so.
16:48 <tyhicks> See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved.
16:48 <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/parcimonie.html
16:48 <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/python-restkit.html
16:48 <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/maven.html
16:48 <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/libapache2-mod-nss.html
16:48 <tyhicks> http://people.canonical.com/~ubuntu-security/cve/pkg/putty.html
16:48 <tyhicks> [TOPIC] Miscellaneous and Questions
16:48 <tyhicks> Does anyone have any other questions or items to discuss?
16:50 <tyhicks> jdstrand, mdeslaur, sbeattie, jjohansen, sarnold, ChrisCoulson: Thanks!
16:50 <tyhicks> #endmeeting