16:31 #startmeeting 16:31 Meeting started Mon Sep 12 16:31:08 2016 UTC. The chair is tyhicks. Information about MeetBot at http://wiki.ubuntu.com/meetingology. 16:31 16:31 Available commands: action commands idea info link nick 16:31 \o 16:31 The meeting agenda can be found at: 16:31 [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting 16:31 [TOPIC] Weekly stand-up report 16:31 jdstrand: you're up 16:31 hi 16:32 last week I got through several review tools updates 16:33 I helped with various high priority snappy issues: namespace sharing, browser-support updates, snap run/snap-confine/snap-exec failures, discussions on snap declaratons, etc 16:34 this week I plan to pick up the docker interface work, continue helping with namespace sharing and then pickup dbus-app again 16:34 I suspect that will consume my week, but if not, I'll move down the list 16:34 that's it from me 16:35 I'm in the happy place this week 16:35 I have to play email ketchup today 16:35 I'm working on a webkit2gtk update 16:35 since the update I prepared before going on vacation had a regression 16:35 (I didn't have time to release it) 16:36 I'm also working on mysql updates 16:36 and will go down the CVE list, as usual 16:36 that's it, sbeattie, you're up 16:36 I'm on community this week 16:36 I'm finishing up openjdk-6 testing 16:37 I need to comment on the kernel team's proposed livepatch announcement template 16:37 I need to do some apparmor review 16:37 And I'll pick up another update this week 16:38 that's probably my week. tyhicks? 16:38 sbeattie: can we consider the PIE work to be done? 16:38 Yeah, mostly. 16:38 \o/ 16:38 I'm in the happy place this week 16:38 I've been working on some snap-confine PR reviews 16:39 then I need to get back to bringing unix domain socket mediation to 14.04 for snappy 16:39 that's it for me 16:39 jjohansen: you're up 16:39 he may not be around yet 16:39 sarnold: go ahead 16:40 I'm on cve triage this week 16:40 also doing MIR reviews 16:41 it'd be nice to not starve apparmor reviews too, but .. the patch series there is huge. :/ I just got to thinking that cboltz's huge rule patchset cleanujp would be nice to have in yaketty, what with him being our best bet for tools support.. 16:42 it would be a nice thing to have but I don't think it'll end up happening 16:42 but the ffe and so on doesn't really sound like fun either, assuming that the patches look good 16:42 those are a lot of patches to land and, as you point out, the ffe won't be trivial 16:42 is it worth branching off apparmor -now-? 16:43 cutting a release? 16:43 yeah 16:43 tomorrow is the monthly apparmor meeting, right? 16:43 it doesn't have to be decided now, it's mostly hypothetical until we review the 40-ish patches :) 16:44 anyway that's me 16:44 the meeting should be tomorrow so I think we ought to discuss it there 16:44 thanks sarnold 16:44 Chris is out 16:44 go ahead, ratliff 16:45 I prepared updates for gdk-pixbuf and python-imaging last week and got them to the 1 yard line. 16:45 Now I need to push them over the goal. 16:46 I am also doing some sprint planning work and need to follow up on a percona task from the last sprint. 16:46 I'll do bug triage this week. 16:46 and back to you tyhicks 16:46 oh, ha 16:47 I said that I'm in the happy place for some reason 16:47 I'm on bug triage this week 16:47 wishful thinking? :) 16:47 very much so 16:47 I'm fine with swapping if you want 16:47 :) 16:47 ratliff: no need to swap, I think the sprint planning will help me out more than bug triage 16:48 jjohansen: hey - go ahead now 16:48 oky 16:49 so I have a few more revisions for little things on the stacking kernel to make, but its looking good and I haven't heard back any complaints. 16:49 great to hear :) 16:49 I need to finish up with the 4.8 port for the kt 16:49 I then can get back to finishing up with gconf 16:50 sounds like a nice week 16:50 and it seems something to do with an upstream apparmor meeting 16:50 :) 16:50 :) 16:50 that will eat the whole week so I won't even pretend I am going to get to the upstreaming work 16:50 [TOPIC] Highlighted packages 16:50 The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. 16:51 See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. 16:51 http://people.canonical.com/~ubuntu-security/cve/pkg/blueman.html 16:51 http://people.canonical.com/~ubuntu-security/cve/pkg/liblivemedia.html 16:51 http://people.canonical.com/~ubuntu-security/cve/pkg/svn-workbench.html 16:51 [TOPIC] Miscellaneous and Questions 16:51 http://people.canonical.com/~ubuntu-security/cve/pkg/ruby-rest-client.html 16:51 http://people.canonical.com/~ubuntu-security/cve/pkg/efl.html 16:51 Does anyone have any other questions or items to discuss? 16:53 jdstrand, mdeslaur, sbeattie, jjohansen, sarnold, ratliff: Thanks! 16:53 #endmeeting