TSC 2022-11-03 (Thursday) 7:00 am Pacific
Meeting Time: 07:00 AM PT / 03:00 PM UTC (See call time in different zones)
BRIDGE: https://zoom.us/j/184289009?pwd=aWRuMUs2dW5kUTNodS95UTZpTWh6QT09
Meeting Recording: TBA
(Example of collaborative meeting minutes, using Presos/Notes/Links : https://wiki.onap.org/display/DW/TSC+2020-03-12)
Attendance
Attended | Proxy (w/ @name) | Gov. Holiday | Did Not Attend |
---|
Attendance is taken purely upon #info in Zoom Chat (Extended TSC)
Fujitsu | Ampere Computing | |||
Alicon | Alibaba Cloud | |||
Zenlayer | China Unicom | |||
Signalogic | Coredge.io | |||
Baidu | PGTalk | |||
Tencent | Socnoc AI Inc. | |||
IEEE Future Networks | Arm | |||
沈建发 (Jianfa Shen) | ByteDance | Salesforce | ||
China Mobile Research Institute | ||||
AnyLog | Ysemi Computing |
Time | Agenda Items | Presented By | Presos/Note /Links/ | Meeting Minutes |
---|---|---|---|---|
TAC Meeting | ||||
10 | Release 7 Planning | thorking Yanjun Chen About the BluVal testing. Whether use local deployment env. or shared infra. to complete the testing. Bluval User Guide thorking Bart Dong Update TARS upstream repo integrated into AR/VR IEC BP. | ||
15 | PTLs and Subcommittee Chair Update | Peter Pouliot promote with OCP Daniil Egranov Updates on OpenSSL. This vulnerability affects the 3.0.x series. Version 1.1.1 is unaffected and will be supported until September 2023. Earlier versions than 1.1.1 are not supported and should be upgraded. The OpenSSL team plans to disclose the vulnerability at the time they release the 3.0.7 fix tomorrow, November 1 between 1300 and 1700 UTC. Details will be made public at that time. Daniil Egranov There is a possibility that blueprints using applications with dependencies on the OpenSSL are affected by the issues (CVE-2022-3786 and CVE-2202-3602). All blueprint owners including the OpenSSL in their solutions must update them with OpenSSL 3.0.7 (once the OS vendors release updates or manually). Vuls scanning tool shall identify these CVE issues and report them as critical. | ||
Whether to group different BPs sharing under Cloud Category | Open for comments and suggestion. |
Action Items (Open Action Item Tracker)
- thorkingTo share and check the BluVal local testing URL
- Jim Xu (Deactivated) Daniil Egranov Collect data and prepare one page update about OpenSSL critical Vulnerability.
- Peter Pouliot Presentation in the next TSC call
Votes (template below)
Zoom Chat Log
Voting
SL No. | Voting Member | Member Company | Y/N/A |
1 | Fujitsu | ||
2 | Alicon | ||
3 | Zenlayer | ||
4 | Signalogic | ||
5 | IEEE Future Networks | ||
6 | Baidu | ||
7 | Tencent | ||
8 | Ysemi Computing | ||
9 | AnyLog | ||
10 | |||
11 | Ampere Computing | ||
12 | Alibaba Cloud | ||
13 | China Unicom | ||
14 | Coredge.io | ||
15 | 沈建发 (Jianfa Shen) | ByteDance | |
16 | PGTalk | ||
17 | Socnoc AI Inc. | ||
18 | Arm | ||
19 | Salesforce | ||
20 | China Mobile Research Institute |