==================== #mer-meeting Meeting ==================== Meeting started by Jaymzz at 08:00:49 UTC. The full logs are available at http://merproject.org/meetings/mer-meeting/2018/mer-meeting.2018-05-31-08.00.log.html . Meeting summary --------------- * Meeting information and agenda can be found here: https://lists.sailfishos.org/pipermail/devel/2018-May/008391.html (Jaymzz, 08:01:08) * Brief introduction (5 min). Please prefix your name/handle with # info (Jaymzz, 08:01:39) * lpr, community (lpr, 08:01:55) * James Noori, Sailor @ Jolla (Jaymzz, 08:02:00) * Matt Austin, community (mattaustin, 08:02:12) * elfio/chipiguay/pablo, community member and developer (elfio, 08:02:25) * Martin Kolman, community & modRana developer (M4rtinK_phone_, 08:02:36) * Lewis Rockliffe, community hacker extraordinaire (r0kk3rz, 08:02:44) * Raine Mäkeläinen, developer @ Jolla (rainemak, 08:02:55) * Matti Kosola, Sailor @ Jolla (mkosola, 08:03:36) * John888, community (John888, 08:03:46) * nrde, community lurker, readonly (nrde, 08:04:12) * patches for CVE-2014-4323 and CVE-2016-5696 still not in kernel-adaptation-sbj (15 min – asked by lpr) (Jaymzz, 08:06:06) * LINK: https://together.jolla.com/question/163935/validate-input-arguments-from-user-space-in-kernel-msm-mdp-cve-2014-4323-remote/ (Jaymzz, 08:06:15) * LINK: https://together.jolla.com/question/142161/vulnerability-tcp-rfc-5961-of-linux-kernel-since-v32/ (Jaymzz, 08:06:25) * CVEs mentioned above seem to be forgotten/ignored for jolla1 (Jaymzz, 08:06:33) * We will provide fix for above CVE's for Jolla 1 in 2.2.1 release (Jaymzz, 08:07:07) * upgrade to Linaro 4.8 2015.06 (MER#1899) (15 min – asked by lpr) (Jaymzz, 08:09:00) * We have been discussing to upgrade gcc to latest 4.9, with no ETA to be announced at the moment. (Jaymzz, 08:09:51) * LINK: https://releases.linaro.org/components/toolchain/binaries/4.9-2017.01/ (Jaymzz, 08:22:26) * LINK: https://github.com/r0kk3rz/harbour-matrix/blob/master/harbour-matrix.pro#L17-L19 (Jaymzz, 08:22:34) * General discussion (20 min) (Jaymzz, 08:28:30) * for cve-2016-5696 patch it is important to use the right one for kernel3.4: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/?h=linux-3.4.y&id=d91a2aa46cbc95c9854d4a444fc6acee444ca655 (Jaymzz, 08:29:16) * LINK: https://git.kernel.org/pub/scm/linux/kernel/git/stable/linux-stable.git/commit/?h=linux-3.4.y&id=d91a2aa46cbc95c9854d4a444fc6acee444ca655 (Jaymzz, 08:29:24) * Next meeting time & date (5 min) (Jaymzz, 08:49:36) * Next meeting will be held on June 14th 2018 at 08:00 UTC (Jaymzz, 08:51:08) Meeting ended at 08:51:56 UTC. Action Items ------------ Action Items, by person ----------------------- * **UNASSIGNED** * (none) People Present (lines said) --------------------------- * Jaymzz (67) * r0kk3rz (25) * Piggz_ (19) * M4rtinK_phone_ (17) * lpr (15) * mattaustin (10) * ApBBB (7) * chriadam_ (5) * merbot` (3) * elfio (3) * rainemak (2) * ljo (2) * jwalck (1) * mkosola (1) * John888 (1) * nrde (1) Generated by `MeetBot`_ 0.1.4 .. _`MeetBot`: http://wiki.merproject.org/wiki/Meetings