Hello community, here is the log from the commit of package apparmor-profiles checked in at Fri Jun 2 02:06:54 CEST 2006. -------- --- apparmor-profiles/apparmor-profiles.changes 2006-05-08 19:07:23.000000000 +0200 +++ apparmor-profiles/apparmor-profiles.changes 2006-06-01 01:42:06.000000000 +0200 @@ -1,0 +2,13 @@ +Thu Jun 1 00:44:59 CEST 2006 - srarnold@suse.de + +- Bug 175388 - Profile access allows essentially execute permission when + only read access is granted via usage of mmap system call. +- Bug 172061 - LD_PRELOAD can be exploited to change the execution path + across exec transitions +- Bug 175598 - AppArmor denies postfix chroot +- Bug 177433 - AppArmor missing profile for postfix/cleanup access to + /var/spool/postfix/hold +- Bug 175626 - /var/lib/ntp/etc/ntp.conf.iburst missing from ntpd profile +- Remove /usr/sbin/in.identd profile from usr.sbin.identd + +------------------------------------------------------------------- New: ---- apparmor-profiles-50_61_m_P_U.patch ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Other differences: ------------------ ++++++ apparmor-profiles.spec ++++++ --- /var/tmp/diff_new_pack.O7U2bs/_old 2006-06-02 02:05:59.000000000 +0200 +++ /var/tmp/diff_new_pack.O7U2bs/_new 2006-06-02 02:05:59.000000000 +0200 @@ -16,9 +16,10 @@ %endif Summary: AppArmor profiles that are loaded into the apparmor kernel module Version: 2.0 -Release: 34 +Release: 35 Group: Productivity/Security Source0: %{name}-%{version}-50.tar.gz +Patch0: %{name}-50_61_m_P_U.patch License: Other License(s), see package, GPL BuildRoot: %{_tmppath}/%{name}-%{version}-build URL: http://forge.novell.com/modules/xfmod/project/?apparmor @@ -48,6 +49,7 @@ %prep %setup -q +%patch0 %build [ "${RPM_BUILD_ROOT}" != "/" ] && rm -rf ${RPM_BUILD_ROOT} @@ -77,6 +79,16 @@ %preun %changelog -n apparmor-profiles +* Thu Jun 01 2006 - srarnold@suse.de +- Bug 175388 - Profile access allows essentially execute permission when + only read access is granted via usage of mmap system call. +- Bug 172061 - LD_PRELOAD can be exploited to change the execution path + across exec transitions +- Bug 175598 - AppArmor denies postfix chroot +- Bug 177433 - AppArmor missing profile for postfix/cleanup access to + /var/spool/postfix/hold +- Bug 175626 - /var/lib/ntp/etc/ntp.conf.iburst missing from ntpd profile +- Remove /usr/sbin/in.identd profile from usr.sbin.identd * Mon May 08 2006 - srarnold@suse.de - Bug 168035 - apparmor-profiles: lib.ld-2.2.so takes no care of x86_64 /lib/ld-2.4 -- s390x, ppc, ppc64, too ++++++ apparmor-profiles-50_61_m_P_U.patch ++++++ ++++ 2892 lines (skipped) ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ Remember to have fun... --------------------------------------------------------------------- To unsubscribe, e-mail: opensuse-commit-unsubscribe@opensuse.org For additional commands, e-mail: opensuse-commit-help@opensuse.org