The Security Team weekly reports are intended to be very short summaries of the Security Team’s weekly activities.
If you would like to reach the Security Team, you can find us at the #ubuntu-hardened channel on FreeNode. Alternatively, you can mail the Ubuntu Hardened mailing list at: firstname.lastname@example.org
During the last week, the Ubuntu Security team:
- Triaged 537 public security vulnerability reports, retaining the 134 that applied to Ubuntu.
- Published 16 Ubuntu Security Notices which fixed 36 security issues (CVEs) across 17 supported packages.
Ubuntu Security Notices
Mainline Inclusion Requests
http-parser completed (LP: #1638957)
python-certifi completed (LP: #1708496)
Updates to Community Supported Packages
Simon Quigley (tsimonq2) provided debdiffs for trusty-zesty for vlc (LP: #1709420)
- review tools updated for 2.27
snapd interfaces documentation updated to include all interfaces
Security policy and sandboxing updated
miscellaneous snapd policy updates for master and 2.27.1
- snapd PR interface reviews for avahi, opengl, optical-drive, physical-memory-observe, spi
What the Security Team is Reading This Week
Almost every household has an unsolved Rubiks Cube but you can esily solve it learning a few algorithms.
Ubuntu offers all the training, software infrastructure, tools, services and support you need for your public and private clouds.