[Bug 668311] New: AppArmor profile generation can't handle *x (execute permissions) - please release a patch
https://bugzilla.novell.com/show_bug.cgi?id=668311 https://bugzilla.novell.com/show_bug.cgi?id=668311#c0 Summary: AppArmor profile generation can't handle *x (execute permissions) - please release a patch Classification: openSUSE Product: openSUSE 11.3 Version: Final Platform: Other OS/Version: openSUSE 11.3 Status: NEW Severity: Major Priority: P5 - None Component: AppArmor AssignedTo: jeffm@novell.com ReportedBy: suse-beta@cboltz.de QAContact: qa@suse.de CC: security-team@suse.de, maintenance@opensuse.org Found By: Beta-Customer Blocker: --- AppArmor logprof and genprof on openSUSE 11.3 (and IIRC on 11.2 also) can't handle *x (execute) permissions because of a changed audit.log format. Instead, they create a totally useless profile with ^null_xy hats. See bug 546618 for all the technical details, especially comment #2 there. The AppArmor utils in AppArmor 2.5.1 (now in Factory) fix this. I recommend to release a patch that updates AppArmor to 2.5.1 on openSUSE 11.3. I tested the 2.5.1 utils on 11.3 (see bug 546618#c12) and it looks like they are fully backward-compatible to AppArmor 2.3. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c1
Jeff Mahoney
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c2
Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c3
Christian Dengler
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c4
Swamp Workflow Management
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c5
Jeff Mahoney
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c
Swamp Workflow Management
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c6
--- Comment #6 from Bernhard Wiedemann
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c7
Andrej Semen
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c8
Andrej Semen
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c9
Swamp Workflow Management
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c
Michal Kubeček
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c11
Jeff Mahoney
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c12
--- Comment #12 from Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c13
Swamp Workflow Management
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c14
Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=668311
https://bugzilla.novell.com/show_bug.cgi?id=668311#c15
Swamp Workflow Management
participants (1)
-
bugzilla_noreply@novell.com