Actually, it's simpler than that. The following three lines were integrated back to "security/apparmor/domain.c" by error:
/* XXX: no_new_privs is not usable with AppArmor yet */ if (bprm->unsafe & LSM_UNSAFE_NO_NEW_PRIVS) return -EPERM; Technically, these three lines were deprecated by commit c29bceb3. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1202161 Title: seccomp filter: execve(): Operation not permitted To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1202161/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs