16:32 #startmeeting 16:32 Meeting started Mon Jun 26 16:32:27 2017 UTC. The chair is tyhicks. Information about MeetBot at http://wiki.ubuntu.com/meetingology. 16:32 16:32 Available commands: action commands idea info link nick 16:32 The meeting agenda can be found at: 16:32 [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting 16:32 [TOPIC] Weekly stand-up report 16:32 jdstrand: you're up 16:33 hi 16:34 last week I spend a lot of time on store reviews as well as snappy PRs, especially the bpf cache PR (dealing with racy profile generation). I also investigated some new incoming work, then focused on the password-manager-service interface (submitted PR) 16:34 this week I plan to: 16:34 - complete testing/respond to feedback on the password-manager-service interface 16:34 - finish overlayfs/apparmor/snaps investigation (file overlay/apparmor bugs) 16:34 - snappy-debug work (fix to work with journald ) 16:34 - miscellaneous snappy policy updates PR 16:34 - assuming that currently blocked but higher priority work remains blocked, get back to wayland interface 16:34 that's it from me. mdeslaur you're up 16:34 I'm in the happy place this week 16:35 it's a short week for me, I'm off thursday afternoon and friday 16:35 I'm currently testing apache2 updates which I'll be releasing this afternoon 16:35 then I have a few more things to test and release 16:35 that's about it, sbeattie, you're up 16:35 I'm also in the happy place this week 16:36 I'll have kernels to publish USNs for this week 16:36 as well as some triage work to catch up on 16:37 I'm testing my sudo packages, and will work on openssh after that 16:37 I need to do some catching up with apparmor 16:37 And that's probably my week. tyhicks? 16:37 I'm on community this week 16:37 I had a long weekend and it is taking me longer than expected to get caught up on email today 16:38 once that's done, I will start working on the seccomp kernel patches in support of the application-controlled logging design that kees and I discussed Thursday of last week 16:38 I'll also be continuing by fscrypt evaluation for encrypted home 16:39 eCryptfs patch review keeps getting pushed to the back so that's still pending, as well 16:39 jj is out right now 16:39 sarnold: you're up 16:40 he's not here yet 16:40 chrisccoulson: go ahead 16:41 I've got an embargoed update this week 16:41 Also, the thunderbird update got re-spun last week, so I've prepared new builds for that which I need to test again 16:41 I've got a chromium update to test and publish 16:42 In addition to that, I'll be spending a bit more time backporting patches to spidermonkey to get an idea about how supportable it is 16:42 That's me done 16:42 thanks 16:42 ratliff_: go ahead 16:42 I'm on cve triage this week which makes me happy 16:42 I will also work on uc15 updates 16:43 leosilva: it is your turn now 16:43 last week I spent some time in shadow's upate and eglibc 16:43 also dig a bit in cron CVE 16:43 worked in ntp update that is not required for precise 16:43 investigated a bit mysql cves 16:44 this week I'm planning to finish shadow tests and shadowing sarnold in rotational duties. 16:44 that's it from me. 16:44 tyhicks: it's back to you 16:44 great! I was just about to suggest that you shadow sarnold in bug triage this week ;) 16:45 [TOPIC] Highlighted packages 16:45 The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. 16:45 See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. 16:45 http://people.canonical.com/~ubuntu-security/cve/pkg/php-htmlpurifier.html 16:45 http://people.canonical.com/~ubuntu-security/cve/pkg/stalin.html 16:45 http://people.canonical.com/~ubuntu-security/cve/pkg/lame.html 16:45 http://people.canonical.com/~ubuntu-security/cve/pkg/loganalyzer.html 16:45 http://people.canonical.com/~ubuntu-security/cve/pkg/borgbackup.html 16:45 [TOPIC] Miscellaneous and Questions 16:45 Does anyone have any other questions or items to discuss? 16:46 jdstrand, mdeslaur, sbeattie, ChrisCoulson, ratliff, leosilva: Thanks! 16:46 #endmeeting