Ubuntu
apparmor package

avahi-daemon profile needs sys_chroot (and maybe others)

Bug #139092 reported by Martin Pitt on 2007-09-12

Affects		Status	Importance	Assigned to	Milestone
	apparmor (Ubuntu)	Fix Released	Undecided	Mathias Gug

Bug Description

Binary package hint: apparmor

Latest apparmor package (2.1, manually built binaries from current source) breaks startup of avahi daemon:

audit(1189598587.892:16): operation="capable" name="sys_chroot" pid=28725 profile="/usr/sbin/avahi-daemon"

Related branches

lp:ubuntu/karmic/apparmor

Revision history for this message

Mathias Gug (mathiaz) wrote on 2007-09-12: Re: [Bug 139092] avahi-daemon profile needs sys_chroot (and maybe others)

On Wed, Sep 12, 2007 at 12:05:38PM -0000, Martin Pitt wrote:
> Latest apparmor package (2.1, manually built binaries from current
> source) breaks startup of avahi daemon:
>
> audit(1189598587.892:16): operation="capable" name="sys_chroot"
> pid=28725 profile="/usr/sbin/avahi-daemon"
>
status inprogress
assignee mathiaz

Changed in apparmor:
assignee:	nobody → mathiaz
status:	New → In Progress

Revision history for this message

Kees Cook (kees) wrote on 2007-09-12:

apparmor (2.1+961-0ubuntu2) gutsy; urgency=low

  [ Mathias Gug ]
  * Disable html documentation: Fixes LP: #139091.
    * parser/Makefile, debian/rules: disable html documentation building.
    * debian/control: remove latex2html dependency.
  * profiles/apparmor.d/usr.sbin.avahi-daemon: add sys_chroot capability.
    Fixes LP: #139092.

  [ Kees Cook ]
  * profiles/apparmor.d/abstractions/user-tmp: adjust directory permissions
    for newly unmasked /tmp handling (LP: #138978).
  * utils/SubDomain.pm: disable remote repositories until RPC::XML MIR
    clears (LP: 139091).
  * utils/*.pod: adjust for Ubuntu paths and "aa-" prefixes (LP: #116647).
  * Fix upgrades to not unload profiles, which would cause programs to
    become unconfined:
    - debian/rules: don't stop apparmor on upgrades.
    - debian/apparmor.postinst: reload profiles after a configure.

-- Kees Cook <email address hidden> Wed, 12 Sep 2007 13:14:02 -0700

Changed in apparmor:
status:	In Progress → Fix Released

Report a bug

This report contains Public information

Everyone can see this information.

You are

Subscribing...

Edit bug mail

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.

Ubuntuapparmor package