1. When people use evince, apparmor spams the syslog.
2. This has not been fixed in Oneirc (which isn't open yet)
3. Patch is very small:
- /dev/.udev/db/* r,
+ /dev/.udev/{data,db}/* r,
4. TEST CASE
$ evince /usr/share/doc/shared-mime-info/shared-mime-info-spec.pdf
$ tail /var/log/kern.log
...
Apr 22 13:38:09 sec-natty-amd64 kernel: [ 72.743938] type=1400
audit(1303497489.238:24): apparmor="DENIED" operation="open" parent=1342
profile="/usr/bin/evince" name="/dev/.udev/data/b252:1" pid=1469 comm="evince"
requested_mask="r" denied_mask="r" fsuid=1000 ouid=0
5. Regression potential is very low, we are only adding access, not
taking away.
** Changed in: evince (Ubuntu)
Status: Triaged => In Progress
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/766882
Title:
[apparmor] evince need access to /dev/.udev/data/b
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
