Ubuntu Wiki

Meeting

• Who: SecurityTeam

• When: Mon Oct 15 17:00:44 2018 UTC

• End: Mon Oct 15 17:18:44 2018 UTC

• Where: #ubuntu-meeting on irc.freenode.net

• Chaired By: Joe McManus (joemcmanus)

Attendance

• jdstrand
• mdeslaur
• sbeattie
• jjohansen
• sarnold
• chrisccoulson
• leosilva
• msalvatore
• ebarretto
• joemcmanus

Not present

• • list people here
• amurray

Agenda

• Announcements

  • SLC Sprint next week, Jamie & Joe out of office
  • Generalist role rotation

    • CVE Triage: leosilva, Bug Triage: ebarreto, Community: msalvatore, Happy Place: the rest

  • The Ubuntu Security Team is hiring!

    • Ubuntu Security engineer: https://boards.greenhouse.io/canonical/jobs/1158266?t=8c0a6c1f1

• Weekly stand-up report (each member discusses any pending and planned future work for the week)
  • jdstrand
    • amurray
  • jdstrand
    • fix bug in snapd wrt system-key and calculating apparmor parser features
    • respond to feedback for recently pushed kubernetes policy updates
    • continue on brand store declarations
    • product roadmap sprint prep
  • mdeslaur
    • short week
    • net-snmp updates
    • test the ppp updates
    • additional updates as time allows
  • sbeattie
    • kernel signoffs and some re-triage
    • investigate toolchain updates for cosmic+1
    • apparmor reviews
  • jjohansen
    • finish the apparmor releases, which includes rolling out a 2.13.2 emergency release because initscripts are broken on suse and debian.
    • more LSM stacking review and work on the ubuntu patchset
    • refresh and get an RFC out for the NS LSM hook patchset this week
    • LSS-EU presentation
    • nnp changes so I can get back to Eric with them
    • audit/prompting work and apparmor 3.0 userspace as time allows
  • sarnold
    • oath-toolkit mir
    • aa patch reviews as jj asks for them
    • additional MIRs as time allows
    • file a few bug reports from the previous MIRs as time allows
  • !chrisccoulson
    • thunderbird 60.2.1 publication. Now ready to hand over to the desktop team
    • firefox sponsored upload from desktop team
    • libssh2 MIR
  • leosilva
    • cve triage this week
    • attend python brasil event
    • moin update.
    • additional cves/pkgs to update as time allows
  • msalvatore
    • community this week
    • wireshark, version 2.6.1 for trusty, xenial, and bionic went out today
    • update look and feel for the ubuntu cve tracker
    • resolve some universe CVEs as time allows
  • ebarretto
    • bug triage this week
    • tomcat6 update (trusty and xenial)
    • tomcat7 as time permits
    • continue retriaging CVEs
  • joemcmanus
    • Plan for SLC
    • Web page update planning
    • 1:1 with team
    • Security role phone screens
• Highlighted packages

  The Ubuntu Security team suggests that contributors look into merging Debian security updates in community-supported packages. If you would like to help Ubuntu but are not sure where to start, this is a great way to do so. See the available merges and SecurityTeam/UpdateProcedures for details on preparing Ubuntu security updates. If you have any questions, feel free to ask in #ubuntu-hardened. To find out other ways of helping out, please see SecurityTeam/GettingInvolved.

• Miscellaneous and Questions