Security Team Weekly Summary: September 27, 2017



on 28 September 2017

The Security Team weekly reports are intended to be very short summaries of the Security Team’s weekly activities.

If you would like to reach the Security Team, you can find us at the #ubuntu-hardened channel on FreeNode. Alternatively, you can mail the Ubuntu Hardened mailing list at:

During the last week, the Ubuntu Security team:

  • Triaged 296 public security vulnerability reports, retaining the 81 that applied to Ubuntu.
  • Published 16 Ubuntu Security Notices which fixed 37 security issues (CVEs) across 18 supported packages.

Ubuntu Security Notices

Bug Triage

Mainline Inclusion Requests

Updates to Community Supported Packages

  • Simon Quigley (tsimonq2) provided debdiffs for trusty-zesty for jython (LP: #1714728)


  • review
    • udisks2 PR 3931
    • snap-confile calls snap-update-ns PR 3621
    • bind mount relative to snap-confine PR 3956
    • snaps on NFS support
  • completed: create PR 3937 to use only ‘udevadm trigger –action=change’ instead of ‘udevadm control –reload-rules’
  • update snap-confine to unconditional add the nvidia devices to the device cgroup and rely only on apparmor for mediation
  • wrote/tested libseccomp-golang changes to complement the libseccomp changes:

  • uploaded libseccomp, with the most minimal change needed to support snapd, to artful after receiving a Feature Freeze exception

What the Security Team is Reading This Week

Weekly Meeting

More Info

Ubuntu cloud

Ubuntu offers all the training, software infrastructure, tools, services and support you need for your public and private clouds.

Sign up for email updates

Choose the topics you're interested in


Related posts

Ubuntu Server development summary – 20 March 2018

Hello Ubuntu Server The purpose of this communication is to provide a status update and highlights for any interesting subjects from the Ubuntu Server Team. If you would like to reach the server team, you can find us at the #ubuntu-server…

LXD weekly status #39

Introduction The focus for this week was on CEPH and LXD clustering, trying to get the last few remaining pieces to work together properly. We’ve tagged a couple more betas as we went through that. We’ve also spent a good chunk of time…

Firefox Quantum snap now available on Linux-based devices

London, UK, 19 March 2018: Canonical, the company behind Ubuntu, today announced that Mozilla has launched a Firefox snap bringing their latest Quantum browser to multiple Linux distributions, including Ubuntu. Developed by Canonical,…