[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Changed in: signon (Ubuntu RTM) Status: In Progress = Fix Released ** Changed in: signon (Ubuntu Utopic) Importance: Critical = Undecided ** Changed in: signon (Ubuntu Utopic) Status: Confirmed = Won't Fix -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in Canonical System Image: Fix Released Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Won't Fix Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: Fix Released Status in ubuntu-touch-meta package in Ubuntu RTM: Fix Released Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Changed in: canonical-devices-system-image Status: In Progress = Fix Released -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: Fix Released Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Status in ubuntu-touch-meta package in Ubuntu RTM: Fix Released Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
This bug was fixed in the package ubuntu-touch-meta - 1.202 --- ubuntu-touch-meta (1.202) 14.09; urgency=medium * Refreshed dependencies (LP: #1392380) * Added signon-apparmor-extension -- Ricardo Salveti de Araujo ricardo.salv...@canonical.com Tue, 17 Feb 2015 19:04:51 -0200 ** Changed in: ubuntu-touch-meta (Ubuntu RTM) Status: New = Fix Released -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: In Progress Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Status in ubuntu-touch-meta package in Ubuntu RTM: Fix Released Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
FYI, after talking with David Barth, it looks like all the pieces landed in ubuntu-rtm, but signon-apparmor-extension is not installed yet on the images so the bug isn't quite fixed yet. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: In Progress Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Status in ubuntu-touch-meta package in Ubuntu RTM: New Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Changed in: canonical-devices-system-image Milestone: ww07-2015 = ww09-2015 ** Changed in: canonical-devices-system-image Assignee: (unassigned) = David Barth (dbarth) -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: In Progress Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Status in ubuntu-touch-meta package in Ubuntu RTM: New Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Changed in: canonical-devices-system-image Status: Confirmed = In Progress ** Changed in: canonical-devices-system-image Milestone: ww05-2015 = ww07-2015 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: In Progress Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Status in ubuntu-touch-meta package in Ubuntu RTM: New Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Branch unlinked: lp:~online-accounts/signon/packaging -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: In Progress Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Status in ubuntu-touch-meta package in Ubuntu RTM: New Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Changed in: ubuntu-touch-meta (Ubuntu RTM) Status: Fix Released = New -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: Confirmed Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Status in ubuntu-touch-meta package in Ubuntu RTM: New Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
This bug was fixed in the package ubuntu-touch-meta - 1.200 --- ubuntu-touch-meta (1.200) 14.09; urgency=medium * Refreshed dependencies (LP: #1413622), (LP: #1392380) * Added signon-apparmor-extension * Added ubuntu-keyboard-azerbaijani * Added ubuntu-keyboard-bosnian * Added ubuntu-keyboard-catalan * Added ubuntu-keyboard-croatian * Added ubuntu-keyboard-emoji -- Oliver Grawert o...@ubuntu.com Fri, 23 Jan 2015 22:04:23 +0100 ** Changed in: ubuntu-touch-meta (Ubuntu RTM) Status: New = Fix Released -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: Confirmed Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Status in ubuntu-touch-meta package in Ubuntu RTM: Fix Released Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Also affects: ubuntu-touch-meta (Ubuntu RTM) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: Confirmed Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Status in ubuntu-touch-meta package in Ubuntu RTM: Fix Released Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Branch linked: lp:~dbarth/ubuntu-seeds/ubuntu-touch.utopic-signon- apparmor-extension -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: Confirmed Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Changed in: canonical-devices-system-image Milestone: ww51-2014 = ww05-2015 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: Confirmed Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
To finish the landing of the fix, I think we need : - a backport of signon-apparmor-extension to rtm-14.09 - the addition of the package to the corresponding touch seed Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: Confirmed Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
Confirming as this security issue was agreed to be fixed in first update ** Changed in: canonical-devices-system-image Importance: Undecided = High ** Changed in: canonical-devices-system-image Status: New = Confirmed ** Changed in: canonical-devices-system-image Milestone: None = ww51-2014 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: Confirmed Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Branch linked: lp:~mardy/signon/rtm-fixes -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/signon/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Changed in: signon (Ubuntu Vivid) Status: Confirmed = Fix Released ** Changed in: signon (Ubuntu RTM) Assignee: (unassigned) = Alberto Mardegan (mardy) ** Changed in: signon (Ubuntu RTM) Status: New = In Progress -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/signon/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Also affects: canonical-devices-system-image Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in the base for Ubuntu mobile products: New Status in signon package in Ubuntu: Fix Released Status in signon source package in Utopic: Confirmed Status in signon source package in Vivid: Fix Released Status in signon package in Ubuntu RTM: In Progress Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/canonical-devices-system-image/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Tags added: application-confinement -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in “signon” package in Ubuntu: Confirmed Status in “signon” source package in Utopic: Confirmed Status in “signon” source package in Vivid: Confirmed Status in “signon” package in Ubuntu RTM: New Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/signon/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in “signon” package in Ubuntu: Confirmed Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/signon/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
Just to add some more information in order to have a more clear idea of the seriousness of this bug: accounts which are created when the signon- apparmor-extension is installed will work fine: apps won't be able to abuse them. This bug only affects the accounts which were created when the extension was not installed: even if the extension gets installed later on, the ACL checks will be bypassed and any app can get access to any account. Fixing this bug will make all accounts (regardless of when they were created) be protected by the ACL once the signon-apparmor-extension is installed. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in “signon” package in Ubuntu: Confirmed Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/signon/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1392380] Re: OA gives out all tokens to any app
Adding rtm14 ota-1 touch-2014-11-27. This needs to be fixed for RTM branch when bug #1376445 is fixed, but bug #1376445 is targeted for ota-1. ** Also affects: signon (Ubuntu Utopic) Importance: Undecided Status: New ** Also affects: signon (Ubuntu Vivid) Importance: Critical Assignee: Alberto Mardegan (mardy) Status: Confirmed ** Changed in: signon (Ubuntu Utopic) Status: New = Confirmed ** Changed in: signon (Ubuntu Utopic) Importance: Undecided = Critical ** Also affects: signon (Ubuntu RTM) Importance: Undecided Status: New ** Tags added: ota-1 rtm14 touch-2014-11-27 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to signon in Ubuntu. https://bugs.launchpad.net/bugs/1392380 Title: OA gives out all tokens to any app Status in “signon” package in Ubuntu: Confirmed Status in “signon” source package in Utopic: Confirmed Status in “signon” source package in Vivid: Confirmed Status in “signon” package in Ubuntu RTM: New Bug description: The attached app will steal all your tokens. All it takes is the accounts permission in the apparmor file. Here's the code: https://pastebin.canonical.com/120398/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/signon/+bug/1392380/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp