It does work for AppImages, but it is weird in that they don't have an
install location, so that has to be adjusted for where they are placed
on the system, or we have to set a security xattr on the executable at
the time it is chmoded to +x
Admittedly orcaslicer doesn't use unprivileged user
debdiff for Focal attached.
** Patch added: "qt-gstreamer_focal.debdiff"
https://bugs.launchpad.net/ubuntu/+source/qtcreator/+bug/1950959/+attachment/5730799/+files/qt-gstreamer_focal.debdiff
** Description changed:
[ Impact ]
The package libqt5gstreamer-dev is mostly unusable for
Nice! This works with AppImages? If so, I think we have a perfect
solution.
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to digikam in Ubuntu.
https://bugs.launchpad.net/bugs/2046844
Title:
AppArmor user namespace creation restrictions
debdiff attached for Jammy.
** Changed in: qtcreator (Ubuntu)
Status: New => Fix Released
** Changed in: qtcreator (Ubuntu Focal)
Status: New => In Progress
** Changed in: qtcreator (Ubuntu Focal)
Assignee: (unassigned) => Sudip Mukherjee (sudipmuk)
** Changed in: qtcreator
** Also affects: qtcreator (Ubuntu Focal)
Importance: Undecided
Status: New
** Also affects: qtcreator (Ubuntu Jammy)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is subscribed to qtcreator in Ubuntu.
Yes it is known that Electron based apps are broken by this, it is
unfortunate but there is no getting around it if we are going to tighten
security around unprivileged user namespaces.
As for apps that we don't specifically support (Electron or otherwise),
we are still adding profiles for as
Thanks! I'll be on the hunt for any more that act like this and add them
to the report. I'm also happy to help prep uploads (I'm not an MOTU yet
so I can't upload on my own, but I can prep the packaging).
--
You received this bug notification because you are a member of Kubuntu
Bugs, which is
Hey Aaron, yes there are many packages that now require an apparmor
profile. There is a shortcut, in between profile that can be used atm so
that a full profile doesn't need to be developed to get applications
that require unprivileged user namespaces working. I will get a patch
together to add
This bug also breaks Electron-based AppImages, such as Balena Etcher.
While we specifically don't support these apps, I find it very likely
that Ubuntu has potentially hundreds of thousands of users of these
kinds of apps.
--
You received this bug notification because you are a member of Kubuntu
This is affecting Falkon and qutebrowser as well. Just now me and a
couple of the Lubuntu devs did a deep debugging session and found the
issue.
About four days ago, an upload was made in AppArmor that no longer
allows unprivileged programs to create user namespaces. See
10 matches
Mail list logo