[16:31] <jdstrand> hi!
[16:31] <jjohansen> \o
[16:31] <jdstrand> #startmeeting
[16:31] <meetingology> Meeting started Mon Aug 18 16:32:07 2014 UTC.  The chair is jdstrand. Information about MeetBot at http://wiki.ubuntu.com/meetingology.
[16:31] <meetingology> Available commands: action commands idea info link nick
[16:32] <jdstrand> The meeting agenda can be found at:
[16:32] <jdstrand> [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting
[16:32] <jdstrand> [TOPIC] Weekly stand-up report
[16:32] <jdstrand> I'll go first
[16:32] <jdstrand> I'm in the happy place this week
[16:32] <chrisccoulson> hi :)
[16:33] <jdstrand> I plan to focus on apparmor: taking up tyhicks' work, policy updates (abstractions, system, click), testing and ultimately, landing
[16:33] <jdstrand> I'm keeping an eye on the openstack point release for trusty
[16:34] <jdstrand> and I'm working with foundations (eg, bhuey) on the pending openjdk-7 security update
[16:34] <jdstrand> mdeslaur: you're up
[16:34] <mdeslaur> I'm on triae this week....although I'm off on vacation on wednesday, so it's a short week for me...someone will have to take over triage
[16:35] <jdstrand> mdeslaur: sarnold and I will handle that
[16:35] <mdeslaur> I'm currently working on an openssl regression on lucid, that exposed a bug in postfix...postfix is now fixed, and I'm going to publish a regression fix for openssl on lucid this afternoon
[16:35] <mdeslaur> and I'll monitor any last minute updates I can possibly work on before I go on holiday
[16:35] <mdeslaur> that's pretty much it for me, sbeattie you're up
[16:36] <sbeattie> I'm on apparmor this week.
[16:37] <sbeattie> I'm reviewing jjohansen's abstract socket patches and testing the kernel to help out landing that.
[16:37] <sbeattie> That's pretty much it for me. tyhicks is not here...
[16:38] <sbeattie> jjohansen: you're up.
[16:39] <jjohansen> I am working on revising and landing the abstract socket mediation
[16:39] <jjohansen> I will also be helping tyhicks with anything he needs for LSS
[16:40] <jjohansen> I think thats it for me, sarnold you're up
[16:41] <jdstrand> chrisccoulson: why don't you go first
[16:41] <jdstrand> s/first/now/
[16:42] <chrisccoulson> this week, I'm focusing on bug 1214034
[16:43] <jdstrand> oh nice
[16:43] <chrisccoulson> I'm also expecting a chromium update from chad, and I have an oxide update to publish too
[16:43] <jdstrand> securty update?
[16:43] <chrisccoulson> it is
[16:44] <jdstrand> is that 1.1?
[16:44] <chrisccoulson> not yet, it's still 1.0
[16:44] <jdstrand> chrisccoulson: does that mean we are still pulling down new chromium content api into 1.0?
[16:45] <chrisccoulson> the 1.0 update is the one that goes with chromium 36.0.1985.143
[16:45] <chrisccoulson> (see http://omahaproxy.appspot.com/)
[16:46] <jdstrand> so, I guess that is a 'yes' :)
[16:46] <chrisccoulson> yeah :)
[16:46] <jdstrand> chrisccoulson: curious, when do we expect 1.1 in trusty?
[16:46] <chrisccoulson> that was driven by the flash update, but there's other fixes in it too
[16:46] <chrisccoulson> 1.1 is probably in another couple of weeks
[16:46]  * jdstrand is guessing backporting to both is taking some time
[16:47] <jdstrand> ackporting isn't the right word
[16:47] <jdstrand> refreshing for both
[16:47] <jdstrand> cool
[16:47] <chrisccoulson> i think that's me done :)
[16:48] <jdstrand> sarnold doesn't seem to be present, so I'll move along
[16:48] <jdstrand> [TOPIC] Highlighted packages
[16:48] <jdstrand> The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so.
[16:48] <jdstrand> See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved.
[16:48] <jdstrand> http://people.canonical.com/~ubuntu-security/cve/pkg/ibutils.html
[16:48] <jdstrand> http://people.canonical.com/~ubuntu-security/cve/pkg/libmms.html
[16:48] <jdstrand> http://people.canonical.com/~ubuntu-security/cve/pkg/cityhash.html
[16:49] <jdstrand> http://people.canonical.com/~ubuntu-security/cve/pkg/plib.html
[16:49] <jdstrand> http://people.canonical.com/~ubuntu-security/cve/pkg/lightdm-gtk-greeter.html
[16:49] <jdstrand> [TOPIC] Miscellaneous and Questions
[16:49] <jdstrand> Does anyone have any other questions or items to discuss?
[16:51] <sarnold> sorry I'm late. I'm on community this week. I'm finishing a review of some apparmor patches and still have two outstanding MIR audits
[16:52] <jdstrand> sarnold: did you see the new one for bug #1358272?
[16:53] <jdstrand> sarnold: (in backscroll from another channel)
[16:54] <sarnold> jdstrand: just now, thanks :)
[16:54] <jdstrand> np
[16:54] <jdstrand> sarnold: did you have anything else?
[16:55] <sarnold> jdstrand: no, that was it
[16:56] <jdstrand> mdeslaur, sbeattie, jjohansen, chrisccoulson, sarnold: thanks!
[16:56] <jdstrand> #endmeeting
[16:56] <meetingology> Meeting ended Mon Aug 18 16:56:42 2014 UTC.
[16:56] <meetingology> Minutes:        http://ubottu.com/meetingology/logs/ubuntu-meeting/2014/ubuntu-meeting.2014-08-18-16.32.moin.txt
[16:56] <jjohansen> thanks jdstrand
[16:56] <sbeattie> jdstrand: thanks!
[16:56] <sarnold> thanks jdstrand
[16:57] <mdeslaur> thanks jdstrand!