== Meeting information == * #ubuntu-meeting Meeting, 14 Nov at 16:41 — 16:56 UTC * Full logs at [[http://ubottu.com/meetingology/logs/ubuntu-meeting/2016/ubuntu-meeting.2016-11-14-16.41.log.html]] == Meeting summary == ''LINK:'' https://wiki.ubuntu.com/SecurityTeam/Meeting === Weekly stand-up report === The discussion about "Weekly stand-up report" started at 16:41. === Highlighted packages === The discussion about "Highlighted packages" started at 16:54. * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/node-ws.html * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/tomboy.html * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/wss4j.html * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/jquery-jplayer.html * ''LINK:'' http://people.canonical.com/~ubuntu-security/cve/pkg/flatnuke.html === Miscellaneous and Questions === The discussion about "Miscellaneous and Questions" started at 16:54. == Vote results == == Done items == * (none) == People present (lines said) == * tyhicks (32) * mdeslaur (10) * jdstrand (9) * jjohansen (9) * sbeattie (6) * sarnold (4) * chrisccoulson (3) * meetingology (3) == Full Log == 16:41 #startmeeting 16:41 Meeting started Mon Nov 14 16:41:13 2016 UTC. The chair is tyhicks. Information about MeetBot at http://wiki.ubuntu.com/meetingology. 16:41 16:41 Available commands: action commands idea info link nick 16:41 hello 16:41 The meeting agenda can be found at: 16:41 [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting 16:41 [TOPIC] Weekly stand-up report 16:41 jdstrand: you're up 16:41 this week: 16:41 finalize various snappy interface PR reviews (I'm waiting on feedback) 16:41 address feedback in 32bit binaries on 64bit snap-confine PR 16:41 various snappy policy updates 16:41 pick up dbus-app PR now that the snappy team is back 16:42 start poking at network-namespace interface 16:42 if have time, start implementing seccomp arg filtering policy that uses the arg filtering feature we implemented a long time ago 16:42 that's it from me 16:43 looks like sbeattie isn't here, so I'll go next 16:43 I'm on bug triage this week 16:43 you're always second :) 16:43 oh, hrm, right 16:43 off-by-one 16:43 I'm on bug triage this week 16:43 and I'm still working on ImageMagick 16:44 and I'm off on friday 16:44 and...that's all folks 16:44 err...who's after sbeattie? 16:44 looks like sbeattie isn't here, so I'll go next 16:44 hehehe 16:44 I'm in the happy place this week 16:45 I've got some SRU team followup to do on the apparmor 14.04 SRU 16:45 there's an eCryptfs issue that I need to at least look into 16:45 and hopefully I can get a start on seccomp logging changes for snappy 16:46 that's it for me 16:46 jjohansen: go ahead 16:46 oh, I had one more thing for snaps on 14.04 16:46 I need to backport dbus unrequested reply protections to 14.04's dbus 16:47 that's really it for me this time 16:47 'm working on bugs, 16:47 I have the unix domain socket cross ns issue to do more testing on, 16:47 the noisy logging of apparmor/.null files, 16:47 several memory leaks due to reference counting, 16:47 hopefully I'll have more info on 100026726 16:47 and I also have ADT test failures to look into more 16:49 and if I get time, upstreaming work 16:49 thats it for me 16:49 sarnold: you're up 16:50 I'm in the happy place this week 16:50 and finally things feel back to normal after travels, so I'll probably return to the backlog of MIRs 16:51 that ought to be enough to keep me busy until the next release or sprint, so that's it for me :) 16:51 chrisccoulson? 16:51 good idea before the next wave come in 16:51 I've got a firefox update this week, and I also need to do a new oxide release 16:51 I'll hopefully be carrying on with https://blueprints.launchpad.net/oxide/+spec/ubuntu-webview-implementation, although I'm currently bogged down with investigating a crash at the moment 16:52 I think that's pretty much me done 16:52 thanks chrisccoulson 16:52 sbeattie: go ahead 16:52 I'm on cve triage this week 16:52 I have openjdk-7 updates to test from tdaitx, and I need to finish up the python updates I was working on 16:53 I have kernel signoffs to do, and some tooling work to do around the kernel update process as well 16:53 I need to get back to apparmor stuff, too 16:53 that's probably more than enough for this week 16:53 tyhicks: back to you 16:54 thanks 16:54 [TOPIC] Highlighted packages 16:54 The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. 16:54 See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. 16:54 http://people.canonical.com/~ubuntu-security/cve/pkg/node-ws.html 16:54 http://people.canonical.com/~ubuntu-security/cve/pkg/tomboy.html 16:54 http://people.canonical.com/~ubuntu-security/cve/pkg/wss4j.html 16:54 http://people.canonical.com/~ubuntu-security/cve/pkg/jquery-jplayer.html 16:54 http://people.canonical.com/~ubuntu-security/cve/pkg/flatnuke.html 16:54 [TOPIC] Miscellaneous and Questions 16:54 Does anyone have any other questions or items to discuss? 16:56 jdstrand, mdeslaur, sbeattie, jjohansen, sarnold, ChrisCoulson: Thanks! 16:56 #endmeeting Generated by MeetBot 0.1.5 (http://wiki.ubuntu.com/meetingology)