UbuntuUpdates.org

Package "apparmor-docs"

Name: apparmor-docs

Description:

documentation for AppArmor

Latest version: 2.10.95-0ubuntu2.12
Release: xenial (16.04)
Level: updates
Repository: main
Head package: apparmor
Homepage: http://apparmor.net/

Links


Download "apparmor-docs"


Other versions of "apparmor-docs" in Xenial

Repository Area Version
base main 2.10.95-0ubuntu2
security main 2.10.95-0ubuntu2.12

Changelog

Version: 2.10.95-0ubuntu2.12 2023-07-03 04:07:03 UTC

  apparmor (2.10.95-0ubuntu2.12) xenial-security; urgency=medium

  * debian/lib/apparmor/functions: remove support for loading snapd
    generated profiles in /var/lib/snapd/apparmor/profiles as these are
    handled by snapd.apparmor.service (LP: #2024637)

 -- Alex Murray <email address hidden> Thu, 22 Jun 2023 16:58:05 +0930

Source diff to previous version
2024637 apparmor.service tries to load snapd generated apparmor profiles but fails

Version: 2.10.95-0ubuntu2.11 2019-06-05 20:07:05 UTC

  apparmor (2.10.95-0ubuntu2.11) xenial-security; urgency=medium

  * Make dnsmasq profile and Python utility changes necessary to continue
    working correctly after the Linux kernel change to address CVE-2019-11190.
    Without these changes, some profile transitions may be unintentionally
    denied. (LP: #1830802)
    - 0001-dnsmasq-allow-libvirt_leaseshelper-m-permission-on-i.patch
    - 0001-handle_children-automatically-add-m-permissions-on-i.patch

 -- Tyler Hicks <email address hidden> Tue, 28 May 2019 21:33:21 +0000

Source diff to previous version
1830802 AppArmor profile transition changes required by Linux kernel fix for CVE-2019-11190
CVE-2019-11190 The Linux kernel before 4.8 allows local users to bypass ASLR on setuid programs (such as /bin/su) because install_exec_creds() is called too late in

Version: 2.10.95-0ubuntu2.10 2018-10-04 21:06:59 UTC

  apparmor (2.10.95-0ubuntu2.10) xenial-security; urgency=medium

  * lp1788929+1794848.patch:
    - disallow writes to thumbnailer dir (LP: #1788929)
    - disallow access to the dirs of private files (LP: #1794848)

 -- Jamie Strandboge <email address hidden> Thu, 27 Sep 2018 18:23:46 +0000

Source diff to previous version
1794848 private-files-strict and user-files abstractions should also limit access to directories

Version: 2.10.95-0ubuntu2.9 2018-03-12 12:06:49 UTC

  apparmor (2.10.95-0ubuntu2.9) xenial; urgency=medium

  * debian/patches/base-journald-updates.patch: update base abstraction
    for additional journald sockets (LP: #1670408)
    Backport from 2.11.0-2ubuntu5 by Jamie Strandboge <email address hidden>

 -- Christian Ehrhardt <email address hidden> Tue, 20 Feb 2018 16:04:02 +0100

Source diff to previous version
1670408 apparmor base abstraction needs backport of rev 3658 to fix several denies (tor, ntp, ...)

Version: 2.10.95-0ubuntu2.8 2018-02-08 20:07:18 UTC

  apparmor (2.10.95-0ubuntu2.8) xenial; urgency=medium

  * d/p/0001-Allow-seven-digit-pid.patch:
    On 64bit systems, /proc/sys/kernel/pid_max can be set to PID_MAX_LIMIT,
    (2^22), which results in seven digit pids. Adjust the @{PID} variable in
    tunables/global to accept this. (LP: #1717714)

 -- Seyeong Kim <email address hidden> Mon, 08 Jan 2018 07:43:46 -0800

1717714 @{pid} variable broken on systems with pid_max more than 6 digits



About   -   Send Feedback to @ubuntu_updates