=== aaron is now known as ahoneybun
=== doko__ is now known as doko
=== dholbach_ is now known as dholbach
=== howefield is now known as howefield_afk
meetingologyMeeting started Mon Jun  1 16:33:48 2015 UTC.  The chair is tyhicks. Information about MeetBot at http://wiki.ubuntu.com/meetingology.16:33
meetingologyAvailable commands: action commands idea info link nick16:33
tyhicksThe meeting agenda can be found at:16:34
tyhicks[LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting16:34
tyhicks[TOPIC] Announcements16:34
=== meetingology changed the topic of #ubuntu-meeting to: Announcements
tyhicksWe had a number of contributions over the last two weeks16:34
tyhicksStefan Bader (smb) provided debdiffs for trusty-vivid for xen16:34
tyhicksOtto Kekäläinen (otto) provided debdiffs for trusty-utopic for mariadb-5.5 (LP: #1451677)16:34
ubottuLaunchpad bug 1451677 in mariadb-5.5 (Ubuntu) "USN-2575-1: MySQL vulnerabilities partially also applies to MariaDB" [Undecided,Fix released] https://launchpad.net/bugs/145167716:34
tyhicksGianfranco Costamagna (LocutusOfBorg) provided debdiffs for precise-utopic for virtualbox (LP: #1456553)16:34
ubottuLaunchpad bug 1456553 in virtualbox (Ubuntu) "CVE-2015-3456" [Undecided,Fix released] https://launchpad.net/bugs/145655316:34
tyhicksAndreas Cadhalpun (andreas-cadhalpun) provided a debdiff for vivid for ffmpeg (LP: #1458171)16:34
ubottuLaunchpad bug 1458171 in ffmpeg (Ubuntu) "FFmpeg security fixes May 2015" [Undecided,Fix released] https://launchpad.net/bugs/145817116:34
tyhicksFelipe Reyes (freyes) provided debdiffs for precise-vivid for openldap (LP: #1446809)16:34
ubottuLaunchpad bug 1446809 in openldap (Ubuntu Precise) "[SRU] denial of service via an LDAP search query (CVE-2012-1164, CVE-2013-4449, CVE-2015-1545)" [High,Fix released] https://launchpad.net/bugs/144680916:34
tyhicksThanks to you all for your assistance in keeping Ubuntu secure! :)16:34
tyhicks[TOPIC] Weekly stand-up report16:35
=== meetingology changed the topic of #ubuntu-meeting to: Weekly stand-up report
tyhicksjdstrand: you're up16:35
jdstrandhopefully today I will finish the big review tools update that will make the store and packages work as well for snappy apps and frameworks as for clicks16:36
jdstrandthat got delayed a bit last week due to store api changes and LP being down (I wanted to pull down everything from the store and compare existing tools with trunk)16:36
jdstrandthat's all resolved, just need to go through the output now16:36
jdstrandI've been working quite a bit on processes surrounding security support for system-image variants of Ubuntu (eg, touch and core)16:38
jdstrandthat will continue16:38
jdstrandthere is work planning with tyhicks16:38
jdstrandand I hope to at least start if not finish (for wily) handling seccomp policy upgrades on snappy16:39
jdstrandwhich will then need an SRU, at which point I will also do an SRU for ubuntu-core-security. that SRU work is likely next week16:39
jdstrandI have two embargoed items16:39
jdstrandthat's it from me16:41
mdeslaurI guess I'm up16:41
mdeslaurI'm about to publish an ipsec-tools update for precise16:41
mdeslaurand I have some openssl updates that will be going out today that disable export ciphers16:41
mdeslaurafter that, I'll be working on testing an apache2 update for precise that backports ecc support and better dh handling16:42
mdeslaurI also have some qt updates to test16:42
mdeslaurI am also looking into a glibc tzdata regression that is causing mercurial to FTBFS on 32 bit platforms16:42
mdeslaurthat's it from me, sbeattie, you're up16:42
sbeattieI'm on community this week16:42
sbeattieI'm working through the backlog of outstanding apparmor patch reviews.16:43
sbeattieI'm also working on testing for the apparmor trusty SRU16:43
sbeattieI still have the gcc pie work on my plate.16:44
mdeslaur(that joke never gets old)16:44
sbeattieand I have an nbd updtae simmering on the back burner.16:44
* sbeattie takes a note to use cooking analogies for all his future status reports)16:45
sbeattiethat's it for me. tyhicks?16:45
tyhickssbeattie: is it still possible to land the PIE change for wily?16:45
sbeattieI think so, yes.16:46
tyhicksI'm handling bug triage this week16:46
mdeslauroh, I have something else I forgot to mention16:46
tyhicksgo for it16:46
mdeslaurI plan on uploading bash to wily today with the setuid privilege dropping re-enabled, and I plan on looking at taviso's patch for dash to do the same16:47
tyhicksoh cool16:47
sarnoldyay :)16:48
tyhicksI plan on helping out with security updates this week16:48
tyhicksI will return to working on adding kernel keyring mediation support to AppArmor parser16:48
tyhickshopefully wrap up work planning tasks16:49
tyhicksand I have a few embargoed items16:49
tyhicksthat's it for me16:50
tyhicksjjohansen: you're up16:50
jjohansen I need to finish up dealing with 2.10 patch review and replies, so we can get 2.10 out the door.16:50
jjohansenFinish up with the kernel security sign-offs16:51
jjohansenFigure out what we are doing for LSS (if anything)16:51
jjohansenSync up on dconf mediation16:51
jjohansenContinue with the kernel patch cleanup16:52
jjohansenand I have an embargoed item or two16:52
tyhicksjjohansen: can you send your fix for bug #1430546 to the kteam this week? (I'm assuming it is just a git send-email away)16:53
ubottubug 1430546 in linux (Ubuntu) "apparmor kernel BUG kills firefox" [Medium,Triaged] https://launchpad.net/bugs/143054616:53
jjohansentyhicks: yes16:54
tyhickssarnold: you're up16:54
sarnoldI'm on cve triage this week; I'm also going to continue going through open openstack issues and figuring out which ones are still needing attention; I'll also try to handle a few apparmor patch reviews.16:54
sarnoldI think that's it for me16:54
chrisccoulsonI'm hoping for chromium updates this week16:55
chrisccoulsonAlso, I need to spend some time on Firefox - a recent change upstream has broken the way we handle localized search plugins in our packaging16:55
chrisccoulsonI got an email last week (I think it got sent to everyone with an account on addons.mozilla.org) with details of addon signing in Firefox16:57
chrisccoulsonIt had a link to https://wiki.mozilla.org/Addons/Extension_Signing16:57
tyhicksI was about to ask if you have heard anything about that :)16:57
chrisccoulson(the tl;dr version - we need to get our addons reviewed and signed)16:57
chrisccoulsonIn Firefox 40, unsigned addons will be disabled (but there'll be a pref to override)16:57
chrisccoulsonin Firefox 41, there'll be no override16:58
chrisccoulsonI tried getting ubufox reviewed, but the automatic part of the process compains that we override the startpage (something which is prohibited in addons, but is the whole point of our customizations)16:59
chrisccoulsonSo I'm not confident we'll get that through a manual review16:59
chrisccoulsonand then, webapps.....16:59
chrisccoulsonOther than that, I'll be working on stuff from https://launchpad.net/oxide/+milestone/branch-1.917:00
chrisccoulsonI think that's me done17:00
tyhickschrisccoulson: dbarth's team will handle the webapps reviews?17:01
tyhickschrisccoulson: who should handle the "Ubuntu Online Accounts" review?17:02
chrisccoulsontyhicks, I'm not sure. The experience with that addon is so bad currently, I wonder whether it's worth the effort (but I guess that's up to dbarth's team)17:02
chrisccoulsontyhicks, that would be dbarth too17:02
tyhickschrisccoulson: lets make sure they're aware of the newly released details in tomorrow's oxide meeting17:03
tyhicks[TOPIC] Highlighted packages17:03
=== meetingology changed the topic of #ubuntu-meeting to: Highlighted packages
tyhicksThe Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so.17:03
tyhicksSee https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved.17:03
tyhicks[TOPIC] Miscellaneous and Questions17:03
=== meetingology changed the topic of #ubuntu-meeting to: Miscellaneous and Questions
tyhicksDoes anyone have any other questions or items to discuss?17:04
tyhicksjdstrand, mdeslaur, sbeattie, jjohansen, sarnold, ChrisCoulson: Thanks!17:06
=== meetingology changed the topic of #ubuntu-meeting to: Ubuntu Meeting Grounds | Calendar/Scheduled meetings: http://fridge.ubuntu.com/calendar | Logs: https://wiki.ubuntu.com/MeetingLogs | Meetingology documentation: https://wiki.ubuntu.com/meetingology
meetingologyMeeting ended Mon Jun  1 17:06:07 2015 UTC.17:06
meetingologyMinutes:        http://ubottu.com/meetingology/logs/ubuntu-meeting/2015/ubuntu-meeting.2015-06-01-16.33.moin.txt17:06
jjohansenthanks tyhicks17:06
sarnoldthanks tyhicks!17:06
sbeattietyhicks: thanks!17:06
mdeslaurthanks tyhicks17:06
=== Joel is now known as Guest62210
=== howefield_afk is now known as howefield
=== howefield is now known as howefield_afk

Generated by irclog2html.py 2.7 by Marius Gedminas - find it at mg.pov.lt!