UbuntuUpdates.org

Package "apparmor"




Name: apparmor

Description:

user-space parser utility for AppArmor

Latest version: *DELETED*
Release: focal (20.04)
Level: proposed
Repository: main
Homepage: http://apparmor.net/

Links


Download "apparmor"


Other versions of "apparmor" in Focal

Repository Area Version
base main 2.13.3-7ubuntu5
base universe 2.13.3-7ubuntu5
security main 2.13.3-7ubuntu5.3build2
security universe 2.13.3-7ubuntu5.3build2
updates main 2.13.3-7ubuntu5.4
updates universe 2.13.3-7ubuntu5.4

Packages in group

Deleted packages are displayed in grey.


Changelog

Version: *DELETED* 2024-09-25 06:06:55 UTC
No changelog for deleted or moved packages.

Version: 2.13.3-7ubuntu5.4 2024-04-10 01:06:48 UTC

  apparmor (2.13.3-7ubuntu5.4) focal-security; urgency=medium

  * SECURITY UPDATE: Excessive permissions with mount rules (LP: #1597017)
    - d/p/CVE-2016-1585/parser-Fix-expansion-of-variables-in-unix-rules-addr.patch:
      add calls to filter_slashes() in parser/af_unix.cc, make it external
      in parser/parser.h and change it to void in parser/parser_regex.c.
    - d/p/CVE-2016-1585/parser-enable-variable-expansion-for-mount-type-and-.patch:
      add variable expansion with expand_entry_variables() in
      parser/mount.cc.
    - d/p/CVE-2016-1585/parser-call-filter-slashes-for-mount-conditionals.patch:
      add calls to filter_slashes() in parser/mount.cc.
    - d/p/CVE-2016-1585/Support-rule-qualifiers-in-regression-tests.patch:
      update rule qualifiers in regression tests in
      tests/regression/apparmor/mkprofile.pl and
      tests/regression/apparmor/capabilities.sh.
    - d/p/CVE-2016-1585/Merge-Fix-mount-rules-encoding.patch: fix mount
      rules encoding in parser/mount.cc, parser/mount.h, parser/parser.h
      and fix multiple test cases in parser/tst/simple_tests/mount/*.
    - d/p/CVE-2016-1585/Merge-expand-mount-tests.patch: expand mount
      regression tests in tests/regression/apparmor/Makefile,
      tests/regression/apparmor/mount.c,
      tests/regression/apparmor/mount.sh and
      tests/regression/apparmor/mkprofile.pl.
    - d/p/CVE-2016-1585/Merge-Issue-312-added-missing-kernel-mount-options.patch:
      add missing kernel mount options flag in parser/apparmor.d.pod,
      parser/mount.cc, parser/mount.h, tests/regression/apparmor/mount.sh
      and parser/tst/simple_tests/mount/*.
    - d/p/CVE-2016-1585/Merge-extend-test-profiles-for-mount.patch: update
      test profiles in parser/tst/simple_tests/mount/*.
    - d/p/CVE-2016-1585/Merge-parser-fix-parsing-of-source-as-mount-point-fo.patch:
      update gen_policy_change_mount_type() in parser/mount.cc and also
      updated tests on parser/tst/simple_tests/mount/* and
      tests/regression/apparmor/mount.sh.
    - d/p/CVE-2016-1585/parser-fix-rule-flag-generation-change_mount-type-ru.patch:
      add device checks in gen_flag_rules() in parser/mount.cc and tests
      in parser/tst/simple_tests/mount/*, parser/tst/equality.sh,
      tests/regression/apparmor/mount.sh and
      utils/test/test-parser-simple-tests.py.
    - d/p/CVE-2016-1585/Fix-build-failure-in-df4ed537e-allow-reading-of-etc-.patch:
      remove the WARN_DEPRECATED flag in pwarn call in parser/mount.cc.
    - d/p/CVE-2016-1585/parser-Deprecation-warning-should-not-have-been-back.patch:
      remove deprecation warning message in parser/mount.cc.
    - CVE-2016-1585

 -- Rodrigo Figueiredo Zaiden <email address hidden> Tue, 06 Mar 2024 15:40:00 -0300

1597017 mount rules grant excessive permissions
CVE-2016-1585 In all versions of AppArmor mount rules are accidentally widened when compiled.

Version: *DELETED* 2023-12-03 07:07:02 UTC
No changelog for deleted or moved packages.

Version: 2.13.3-7ubuntu5.3 2023-11-16 20:08:35 UTC

  apparmor (2.13.3-7ubuntu5.3) focal; urgency=medium

  * apparmor.preinst: recursively remove cache directories during a
    upgrade. (LP: #2032851)

 -- Georgia Garcia <email address hidden> Tue, 10 Oct 2023 09:20:12 -0300

2032851 package apparmor 2.12-4ubuntu5.3 failed to install/upgrade: new apparmor package pre-installation script subprocess returned error exit status 1

Version: *DELETED* 2023-03-29 23:06:52 UTC
No changelog for deleted or moved packages.



About   -   Send Feedback to @ubuntu_updates