UbuntuUpdates.org

Package "apparmor-notify"

Name: apparmor-notify

Description:

AppArmor notification system

Latest version: 2.7.102-0ubuntu3.11
Release: precise (12.04)
Level: updates
Repository: main
Head package: apparmor
Homepage: http://apparmor.net/

Links


Download "apparmor-notify"


Other versions of "apparmor-notify" in Precise

Repository Area Version
base main 2.7.102-0ubuntu3
security main 2.7.102-0ubuntu3.11

Changelog

Version: 2.7.102-0ubuntu3.11 2017-03-28 17:06:53 UTC

  apparmor (2.7.102-0ubuntu3.11) precise-security; urgency=medium

  * SECURITY UPDATE: Don't unload unknown profiles during package
    configuration or when restarting the apparmor init script as this could
    leave processes unconfined (LP: #1668892)
    - debian/apparmor.init: Remove call to unload_obsolete_profiles()
    - debian/patches/0042-utils-add-aa-remove-unknown.patch,
      debian/apparmor.install debian/apparmor.manpages: Include a new utility,
      aa-remove-unknown, which can be used to unload unknown profiles
    - CVE-2017-6507

 -- Tyler Hicks <email address hidden> Wed, 15 Mar 2017 22:07:05 +0000

Source diff to previous version
1668892 CVE-2017-6507: apparmor service restarts and package upgrades unload privately managed profiles
CVE-2017-6507 An issue was discovered in AppArmor before 2.12. Incorrect handling of unknown AppArmor profiles in AppArmor init scripts, upstart jobs, and/or syste

Version: 2.7.102-0ubuntu3.10 2014-08-11 21:06:31 UTC

  apparmor (2.7.102-0ubuntu3.10) precise-security; urgency=medium

  * No change rebuild in the security pocket to ensure compatibility
    with the linux-lts-trusty kernel.
 -- Marc Deslauriers <email address hidden> Mon, 11 Aug 2014 10:16:11 -0400

Source diff to previous version

Version: 2.7.102-0ubuntu3.9 2013-09-04 16:07:31 UTC

  apparmor (2.7.102-0ubuntu3.9) precise-proposed; urgency=low

  * 0041-parser-fix-flags.patch: increase the size of the fixed 'features'
    buffer to support newer kernels with more apparmor features (LP: #1214979)
 -- Seth Arnold <email address hidden> Mon, 26 Aug 2013 11:31:51 -0700

Source diff to previous version
1214979 Feature buffer full in precise with LTS kernel

Version: 2.7.102-0ubuntu3.8 2013-08-27 21:07:01 UTC

  apparmor (2.7.102-0ubuntu3.8) precise-proposed; urgency=low

  * 0022-aa-logprof-PUx_rewrite_fix-lp982619.patch: fix aa-logprof
    rewrite of PUx modes (LP: #982619)
  * 0023-lp1091642-parser-reset_matchflags.patch: prevent reuse of
    matchflags in parser dfa backend and add testcase demonstrating
    the problem (LP: #1091642)
  * 0024-profiles-allow_exo-open-lp987578.patch: allow exo-open to work
    within ubuntu-integration (LP: #987578)
 -- Steve Beattie <email address hidden> Thu, 24 Jan 2013 11:40:48 -0800

Source diff to previous version
982619 aa-logprof wrongly transforms PUx to UPx
1091642 apparmor parser fails due to matchflags not being reset
987578 Evince is not allowed to use exo-open

Version: 2.7.102-0ubuntu3.7 2012-12-20 00:06:58 UTC

  apparmor (2.7.102-0ubuntu3.7) precise-security; urgency=low

  * debian/patches/0001-add-chromium-browser.patch:
    - add access for newer versions of chromium (LP: #1091862)
    - add a child profile for xdgsettings (LP: #1045986)
  * debian/patches/0021-fix-racy-onexec-test.patch: fix race in onexec.sh
    kernel regression test
 -- Jamie Strandboge <email address hidden> Wed, 19 Dec 2012 07:51:38 -0600

1091862 chromium-browser profile is too noisy with chromium-browser 23



About   -   Send Feedback to @ubuntu_updates