Ubuntu
evince package

Permission denied reading pdf.xz files

Bug #1252771 reported by Martin Thornton on 2013-11-19

10

This bug affects 1 person

Affects		Status	Importance	Assigned to	Milestone
	apparmor (Ubuntu)	Invalid	Undecided	Unassigned
	evince (Ubuntu)	Fix Released	Low	Unassigned

Bug Description

Ubuntu 13.10
evince-3.10.0

Apparmour does not give permission to read xz compressed pdf files, however evince is otherwise capable of doing so.

Error in /var/syslog/:
kernel: [36640.816592] type=1400 audit(1384870022.949:59): apparmor="DENIED" operation="exec" parent=9632 profile="/usr/bin/evince" name="/usr/bin/xz" pid=9633 comm="EvJobScheduler" requested_mask="x" denied_mask="x" fsuid=1000 ouid=0

Added the following to /etc/apparmor.d/abstractions/evince:

in section # supported archivers
/usr/bin/xz ixr,

in section # from http://live.gnome.org/Evince/SupportedDocumentFormats. Allow read for all supported file formats /**.[xX][zZ] r,

Tags:

Related branches

lp:ubuntu/trusty-proposed/evince

Revision history for this message

Martin Thornton (thornton-ma) wrote on 2013-11-19:

#1

Patch to apply to file in debian subdirectory of Evince source package Edit (641 bytes, text/plain)

Revision history for this message

Martin Thornton (thornton-ma) wrote on 2013-11-19:

#2

Additional patch to allow saving in .xz.pdf format Edit (385 bytes, text/plain)

Additional patch to allow saving copies of files from Evince in pdf.xz format.

source package file: debian/apparmor-profile
installed file: /etc/apparmor.d/usr.bin.evince

Again, apply patch to debian subdirectory of source package.

Revision history for this message

Ubuntu Foundations Team Bug Bot (crichton) wrote on 2013-11-19:

#3

The attachment "Patch to apply to file in debian subdirectory of Evince source package" seems to be a patch. If it isn't, please remove the "patch" flag from the attachment, remove the "patch" tag, and if you are a member of the ~ubuntu-reviewers, unsubscribe the team.

[This is an automated message performed by a Launchpad user owned by ~brian-murray, for any issues please contact him.]

tags:

added: patch

Revision history for this message

Sebastien Bacher (seb128) wrote on 2014-01-08:

#4

Thanks for your work Martin, I've merged that into the packaging vcs and I'm going to upload those fixes soon

Changed in apparmor (Ubuntu):
status:	New → Invalid
Changed in evince (Ubuntu):
importance:	Undecided → Low
status:	New → Fix Committed

Revision history for this message

Launchpad Janitor (janitor) wrote on 2014-01-08:

#5

This bug was fixed in the package evince - 3.10.3-0ubuntu2

---------------
evince (3.10.3-0ubuntu2) trusty; urgency=medium

  * debian/apparmor-profile.abstraction, debian/apparmor-profile:
    - let create directories, from the file selector, on devices mounted
      by the user, thanks Jamie Strandboge (lp: #1265491)
    - updated to allow opening/saving pdf.xz files, thanks Martin Thornton
      (lp: #1252771)
  * debian/control.in: Depends on gnome-icon-theme-symbolic (lp: #1246448)
-- Sebastien Bacher <email address hidden> Wed, 08 Jan 2014 18:24:03 +0100

Changed in evince (Ubuntu):
status:	Fix Committed → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Patches

Patch to apply to file in debian subdirectory of Evince source package Edit

Add patch

Bug attachments

Additional patch to allow saving in .xz.pdf format Edit

Add attachment

Remote bug watches

Bug watches keep track of this bug in other bug trackers.