#openstack-security: security

Meeting started by fungi at 15:02:00 UTC (full logs).

Meeting summary

    1. https://etherpad.opendev.org/p/security-agenda Meeting Agenda (fungi, 15:02:33)

  2. Prior Actions (fungi, 15:02:48)
    1. https://meetings.opendev.org/meetings/security/2022/security.2022-07-07-15.00.html Minutes from last meeting (fungi, 15:03:20)
    2. https://lists.openstack.org/pipermail/openstack-discuss/2022-August/029825.html XStatic and JS dependencies (fungi, 15:04:47)
    3. ACTION: fungi propose xstatic discussion topic on horizon ptg agenda (fungi, 15:07:12)
    4. ACTION: fungi add new volunteers to embargo-notice ml (fungi, 15:07:59)
    5. ACTION: fungi update ossn/security-doc members in gerrit and launchpad (fungi, 15:08:10)

  3. Pending Reviews (fungi, 15:10:32)
    1. https://review.opendev.org/q/is:open+project:openstack/ossa Open change reviews for openstack/ossa (fungi, 15:10:42)

  4. Public Bug Reports (fungi, 15:13:26)
    1. https://bugs.launchpad.net/ossa/+bugs?field.information_type%3Alist=PUBLIC&field.information_type%3Alist=PUBLICSECURITY (fungi, 15:13:36)
    2. https://launchpad.net/bugs/1981813 Compute service fails to restart if the vnic_type of a bound port changed from direct to macvtap (CVE-2022-37394) (fungi, 15:15:00)
    3. https://review.opendev.org/850003 Gracefully ERROR in _init_instance if vnic_type changed (fungi, 15:16:03)
    4. ACTION: fungi reach out to nova reviewers about 850003 (fungi, 15:18:23)
    5. https://launchpad.net/bugs/1980954 Resource leak with HTTPBadRequest in StaticLargeObject.get_slo_segments (fungi, 15:18:52)
    6. ACTION: fungi switch bug 1981813 to class b1 for now (fungi, 15:22:28)
    7. ACTION: fungi switch advisory tasks for old public security bugs to won't fix for now (fungi, 15:24:46)

  5. PTG Planning (fungi, 15:25:34)
    1. https://lists.openstack.org/pipermail/openstack-discuss/2022-August/029823.html Any interest in getting together at the PTG? (fungi, 15:26:37)
    2. https://ptg.opendev.org/ptg.html PTG Schedule (fungi, 15:28:37)
    3. ACTION: fungi schedule an hour at the ptg for the security sig (fungi, 15:30:43)

  6. Open Discussion (fungi, 15:34:21)


Meeting ended at 15:38:51 UTC (full logs).

Action items

  1. fungi propose xstatic discussion topic on horizon ptg agenda
  2. fungi add new volunteers to embargo-notice ml
  3. fungi update ossn/security-doc members in gerrit and launchpad
  4. fungi reach out to nova reviewers about 850003
  5. fungi switch bug 1981813 to class b1 for now
  6. fungi switch advisory tasks for old public security bugs to won't fix for now
  7. fungi schedule an hour at the ptg for the security sig


Action items, by person

  1. fungi
    1. fungi propose xstatic discussion topic on horizon ptg agenda
    2. fungi add new volunteers to embargo-notice ml
    3. fungi update ossn/security-doc members in gerrit and launchpad
    4. fungi reach out to nova reviewers about 850003
    5. fungi switch bug 1981813 to class b1 for now
    6. fungi switch advisory tasks for old public security bugs to won't fix for now
    7. fungi schedule an hour at the ptg for the security sig


People present (lines said)

  1. fungi (55)
  2. opendevmeet (3)
  3. prometheanfire (2)


Generated by MeetBot 0.1.4.