20180209

Differences between revisions 3 and 4
Revision 3 as of 2018-02-10 00:01:09
Size: 4412
Editor: emilyr
Comment:
Revision 4 as of 2018-02-16 04:06:17
Size: 4474
Editor: emilyr
Comment: moving the report into the correct year
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
## page was renamed from SecurityTeam/WeeklyReports/20170209

Security Team Weekly Summary for 09 February 2018

After an extended absence the Security Team Weekly Report returns this week. You can read about what we (and many other people in and around Canonical) were up to during its absence at the Spectre and Meltdown KnowledgeBase page.

The Security Team weekly reports are intended to be very short summaries of the Security Team's weekly activities.

If you would like to reach the Security Team, you can find us at the #ubuntu-hardened channel on FreeNode. Alternatively, you can mail the Ubuntu Hardened mailing list at: ubuntu-hardened@lists.ubuntu.com

During the last week, the Ubuntu Security team:

  • Triaged 239 public security vulnerability reports, retaining the 56 that applied to Ubuntu.
  • Published 9 Ubuntu Security Notices which fixed 21 security issues (CVEs) across 11 supported packages.

Ubuntu Security Notices

Bug Triage

Mainline Inclusion Requests

Updates to Community Supported Packages

  • Jeremy Bicha provided a debdiff for xenial for brotli (LP: #1737364)

  • Many thanks to the many people who provided community support during the past month and to those who tested beta kernels and other updates for Meltdown and Spectre.

Development

  • 4.16 AppArmor pull request

  • ubuntu-security-status fix in bionic, and sru uploads
  • Reviews
    • PR 3963 - add support for per-user mounts
    • PR 4572 - mir: software clients need access to shared memory
    • PR 4590 - allow constructing layouts (phase 1)
    • PR 4608 - allow snap-update-ns to chown things
    • PR 4610 - interfaces/apparmor: early support for snap-update-ns snippets
    • PR 4632 - fixing denial for when using avahi-observe slot
    • PR 4545 - allow X11 slot implementations
    • PR 4640 - allow using bind-file layouts
    • PR 4643 - disallow layouts in various special directories
    • PR 4644 - add spread test for layouts
  • submit PR 4591 and 4592 to update desktop-legacy and unity7 for gtk_show_uri()
  • prepare review-tools 0.47 for release

What the Security Team is Reading This Week

Weekly Meeting

More Info

SecurityTeam/WeeklyReports/20180209 (last edited 2018-02-16 04:06:17 by emilyr)