[16:31] hello [16:31] #startmeeting [16:31] Meeting started Mon Oct 16 16:31:48 2017 UTC. The chair is tyhicks. Information about MeetBot at http://wiki.ubuntu.com/meetingology. [16:31] Available commands: action commands idea info link nick [16:31] \o [16:32] The meeting agenda can be found at: [16:32] [LINK] https://wiki.ubuntu.com/SecurityTeam/Meeting [16:32] [TOPIC] Announcements === meetingology changed the topic of #ubuntu-meeting to: Announcements [16:32] Simon Quigley (tsimonq2) provided debdiffs for trusty-artful for git (LP: #1719740) [16:32] Launchpad bug 1719740 in git (Ubuntu Artful) "[CVE] Git cvsserver OS Command Injection" [High,Fix released] https://launchpad.net/bugs/1719740 [16:32] Thank you for your assistance in keeping Ubuntu users secure! :) [16:32] [TOPIC] Weekly stand-up report === meetingology changed the topic of #ubuntu-meeting to: Weekly stand-up report [16:32] mdeslaur: you're up [16:32] I'm in the happy place this week [16:33] I'm currently publishing wpa updates [16:33] and I have some xorg updates to test and publish after that [16:33] I'll be picking something off the list after [16:33] that's about it [16:33] sbeattie: you're up [16:34] I'm in the happy place this week [16:34] i am helping with some Ubuntu ISO testing :p [16:34] I'm working on a perl update, and have another update to finish testing [16:35] I need to look at some apparmor tasks [16:35] and I'll pick up another update off the list. [16:35] that's it for me. tyhicks? [16:36] I'll be doing SRU verifications this week for libseccomp and seccomp kernel changes [16:36] oh, I'm on community this week [16:36] I'm in the process of going back through the ecryptfs kernel queue and getting certain fixes headed to 4.14 and others to 4.15 [16:37] I'll have a bit more work to do upstream for libseccomp and libseccomp-golang this week once a couple PR reviews are completed but the hard work is already done there [16:37] finally, I need to get back on top of my email inbox after falling behind while traveling lately [16:38] I suspect that there will be some items that fall out of that [16:38] jjohansen: you're up [16:38] I am ignoring everyone this week until I can the unix socket RFC out [16:39] good idea [16:39] feel free to leave it at that :) [16:39] after which I have a back log of bugs to investigate, and possibly 2.9, and 2.10 point releases [16:40] sarnold: you're up [16:41] I'm on cve triage this week, but I think ratliff is going to help out in the mornings :) otherwise it'll be running down the MIRs.. spice-vdagent is in progress atm [16:41] also reviewing whatever it is john prepares for aa upstreaming [16:42] and maybe this is the week I finally bid farewell to my beloved pentadactyl and waste an entire day trying webbrowsers :( [16:42] that's it for me, chrisccoulson? [16:42] I need to update rust to 1.20 everywhere [16:43] I'll also need to sync up with will at some point to discuss the startpage in firefox [16:44] Fingers crossed, after that I'll be able to focus on the stuff I discussed with tyhicks at the sprint [16:44] That's me done [16:44] I'm on bug triage this week. [16:44] I hope you'll be able to get to that [16:44] chrisccoulson: oh! can we vote what it should be? I vote for beesbeesbees.com [16:44] mdeslaur, haha :) [16:45] sarnold covered for me on CVE triage last week while I was sprinting, so I am going to return the favor this week :) [16:45] I have a number of tasks resulting from last's weeks sprint to focus on for this week. [16:45] on to you, leosilva [16:45] I'm in the happy place this week. [16:46] I'll do the usual pkg hunting [16:46] also have some reads and investigations to do in snap packaging. [16:47] also have some readings in sssd (it's hard to test it :() [16:47] that is from me, [16:47] tyhicks: it's back to you! [16:47] thanks [16:47] [TOPIC] Highlighted packages === meetingology changed the topic of #ubuntu-meeting to: Highlighted packages [16:47] The Ubuntu Security team will highlight some community-supported packages that might be good candidates for updating and or triaging. If you would like to help Ubuntu and not sure where to start, this is a great way to do so. [16:48] See https://wiki.ubuntu.com/SecurityTeam/UpdateProcedures for details and if you have any questions, feel free to ask in #ubuntu-security. To find out other ways of helping out, please see https://wiki.ubuntu.com/SecurityTeam/GettingInvolved. [16:48] https://people.canonical.com/~ubuntu-security/cve/pkg/connman.html [16:48] https://people.canonical.com/~ubuntu-security/cve/pkg/libbluray.html [16:48] https://people.canonical.com/~ubuntu-security/cve/pkg/efl.html [16:48] https://people.canonical.com/~ubuntu-security/cve/pkg/tomboy.html [16:48] https://people.canonical.com/~ubuntu-security/cve/pkg/qpid-proton.html [16:48] [TOPIC] Miscellaneous and Questions === meetingology changed the topic of #ubuntu-meeting to: Miscellaneous and Questions [16:48] tyhicks: :D [16:48] Does anyone have any other questions or items to discuss? [16:48] Also, hi everyone :) [16:49] I'll just repeat what was mentioned earlier regarding the wpa updates [16:49] mdeslaur released updates about an hour ago [16:49] see https://usn.ubuntu.com/usn/usn-3455-1/ for details [16:49] mdeslaur: thanks for handling those updates [16:49] np [16:49] hi tsimonq2 [16:49] :) [16:50] mdeslaur, sbeattie, jjohansen, sarnold, ChrisCoulson, ratliff, leosilva: Thanks! [16:50] #endmeeting === meetingology changed the topic of #ubuntu-meeting to: Ubuntu Meeting Grounds: Please leave swords by the door | Calendar/Scheduled meetings: http://fridge.ubuntu.com/calendars | Logs: https://wiki.ubuntu.com/MeetingLogs | Meetingology documentation: https://wiki.ubuntu.com/meetingology [16:50] Meeting ended Mon Oct 16 16:50:35 2017 UTC. [16:50] Minutes: http://ubottu.com/meetingology/logs/ubuntu-meeting/2017/ubuntu-meeting.2017-10-16-16.31.moin.txt [16:50] thanks tyhicks :) [16:50] thank you, tyhicks! [16:50] hey tsimonq2 :) [16:51] thanks tyhicks [16:52] Thanks tyhicks :) [16:53] tyhicks: thanks! === ivan_ is now known as ivan === ghostcube_ is now known as ghostcube === ghostcube_ is now known as ghostcube