16:31 #startmeeting 16:31 Meeting started Mon Feb 13 16:31:57 2017 UTC. The chair is tyhicks. Information about MeetBot at http://wiki.ubuntu.com/meetingology. 16:31 16:31 Available commands: action commands idea info link nick 16:32 thanks rbasak for leading the discussion about the sru-upload, we appreciated it 16:32 The meeting agenda can be found at: 16:32 [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting 16:32 [TOPIC] Announcements 16:32 James Page (jamespage) provided a debdiff for xenial for nova-lxd (LP: #1656847) 16:32 Launchpad bug 1656847 in nova-lxd (Ubuntu Zesty) "neutron security group rules not applied to nova-lxd containers" [High,Fix released] https://launchpad.net/bugs/1656847 16:32 Jeremy Bicha (jbicha) provided debdiffs for yakkety for bubblewrap and flatpak (LP: #1657357) 16:32 Launchpad bug 1657357 in flatpak (Ubuntu) "bubblewrap escape via TIOCSTI ioctl" [Medium,Fix released] https://launchpad.net/bugs/1657357 16:32 Jeremy Bicha (jbicha) worked to remove jasper from zesty (LP: #1612835) 16:32 Launchpad bug 1612835 in kopete (Ubuntu) "Please remove jasper from Zesty" [High,Fix released] https://launchpad.net/bugs/1612835 16:32 Thank you for your assistance in keeping Ubuntu users secure! :) 16:32 [TOPIC] Weekly stand-up report 16:32 jdstrand: you're up 16:33 hi! 16:33 last week my dev work got preempted by lots and lots of reviews (store, documentation, Personal and other snapd PRs, snap-confine PRs) and helping with the snap-confine system vs core snap out-of-syncness issue on classic 16:33 today, I'm catching up on store reviews, various mailing list and bug discussions from friday/weekend 16:33 this week, I plan to continue with various PR and design reviews/discussions as I'm assigned to them. I know I already need to look at the gsettings patches, console access, 'notion of trust' in snappy, misc snap-confine PRs and lots of Personal PRs (unity8 policy, thumbnailer, media-hub, et al) 16:33 assuming I can get to my non-review assigned dev work after, I plan to work on the next batch of miscellaneous policy updates and continue with more seccomp arg filtering policy 16:34 (quite a bit of the seccomp arg filtering policy I pushed up landed already) 16:34 that's it from me 16:34 mdeslaur: you're up 16:35 I'm on triage this week 16:35 I was about to publish a webkit2gtk update, but the new version has a regression 16:35 I'm still working on php5 updates, should be publishing that this week 16:35 after that, I'll be going down the list, as usual 16:35 sbeattie: you're up 16:39 I'll go and we can circle back 16:39 I'm in the happy place this week 16:39 finish testing and submit seccomp logging kernel patchset v3 16:39 check on AppArmor Zesty upload (blocked by a perl upload) 16:39 assist in landing the dconf/gsettings mediation 16:40 tcpdump updates (bug #1662177) 16:40 bug 1662177 in tcpdump (Ubuntu) "tcpdump multiple CVEs" [Undecided,New] https://launchpad.net/bugs/1662177 16:40 that's it for me 16:40 jjohansen: you're up 16:40 oh, short week for me 16:40 I'm out tomorrow 16:41 I'm finishing up the apparmor policy notification interface, and making any other revisions to the dconf work that might pop up 16:41 once that is done I'll be back to upstreaming work, the next merge window is coming all too fast 16:42 oh hrmm and it goes with out saying that revising the dconf/gsettings work is part of landing it 16:42 which I'll be helping with 16:43 I think that'll be a full week 16:43 yep 16:43 I haven't seen sarnold yet 16:43 he's working on MIRs 16:43 chrisccoulson: you're up 16:43 yeah, I was just checking 16:43 (here) 16:43 oh, go ahead 16:44 This week, I'll be spending some more time getting rustc working everywhere 16:44 I'm community this week 16:44 whatever's not spent on community tasks will be MIRs :) 16:44 Mozilla just bumped the minimum rustc version required to build firefox to 1.15.1, which is newer than we have in zesty, which is totally awesome 16:44 oh 16:44 ow 16:44 :( 16:44 sarnold, carry on :) 16:45 I'm done :/ 16:45 ah, cool 16:45 because waiting a dozen hours for a toolchain before starting work on the browser sounds like such fun :( 16:45 so, other than that, I'll be finishing off bug 1638852, and then a few other cleanups required to make the new UITK webview stable 16:45 bug 1638852 in Oxide "Add touch selection handles and quick menu to UbuntuWebView" [High,In progress] https://launchpad.net/bugs/1638852 16:45 That's me done 16:45 I'm on bug triage this week. 16:46 I am working on updates for core and touch otherwise 16:46 sbeattie: around? if not, back to you tyhicks 16:47 lets move on 16:47 [TOPIC] Highlighted packages 16:47 The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. 16:47 See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. 16:47 http://people.canonical.com/~ubuntu-security/cve/pkg/pinpoint.html 16:47 http://people.canonical.com/~ubuntu-security/cve/pkg/gcc-4.9.html 16:47 http://people.canonical.com/~ubuntu-security/cve/pkg/libcsoap.html 16:47 [TOPIC] Miscellaneous and Questions 16:47 http://people.canonical.com/~ubuntu-security/cve/pkg/gpw.html 16:47 Does anyone have any other questions or items to discuss? 16:47 http://people.canonical.com/~ubuntu-security/cve/pkg/libxml-security-java.html 16:49 jdstrand, mdeslaur, sbeattie, jjohansen, sarnold, ChrisCoulson, ratliff: Thanks! 16:49 #endmeeting