[apparmor] [Bug 929531] Re: apparmor denial to /sys/devices/system/cpu/online
Launchpad Bug Tracker
929531 at bugs.launchpad.net
Thu Feb 9 14:20:19 UTC 2012
This bug was fixed in the package apparmor - 2.7.0-0ubuntu5
---------------
apparmor (2.7.0-0ubuntu5) precise; urgency=low
* debian/patches/0036-lp929531.patch: adjust base abstraction to allow read
access to /sys/devices/system/cpu/online (LP: #929531)
-- Jamie Strandboge <jamie at ubuntu.com> Thu, 09 Feb 2012 08:04:13 -0600
** Changed in: apparmor (Ubuntu)
Status: Fix Committed => Fix Released
--
You received this bug notification because you are a member of AppArmor
Developers, which is the registrant for AppArmor.
https://bugs.launchpad.net/bugs/929531
Title:
apparmor denial to /sys/devices/system/cpu/online
Status in AppArmor Linux application security framework:
In Progress
Status in “apparmor” package in Ubuntu:
Fix Released
Bug description:
After upgrading to the latest eglibc today, applications are having
the following apparmor denial:
type=AVC msg=audit(1328794019.772:83): apparmor="DENIED" operation="open" parent=3049 profile="/usr/lib/telepathy/mission-control-5" name="/sys/devices/system/cpu/online" pid=3053 comm="mission-control" requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
type=AVC msg=audit(1328794257.880:94): apparmor="DENIED" operation="open" parent=3886 profile="/usr/lib/telepathy/telepathy-*" name="/sys/devices/system/cpu/online" pid=3894 comm=64636F6E6620776F726B6572 requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
The following should go into the base abstraction:
/sys/devices/system/cpu/online r,
This seems to have been introduced in the following commit:
http://repo.or.cz/w/glibc.git/commitdiff/84e2a551a72c79b020694bb327e33b6d71b09b63
To manage notifications about this bug go to:
https://bugs.launchpad.net/apparmor/+bug/929531/+subscriptions
More information about the AppArmor
mailing list