This bug was fixed in the package apparmor - 4.1.0~beta5-0ubuntu13
---------------
apparmor (4.1.0~beta5-0ubuntu13) plucky; urgency=medium
* Rename and edit patch to fix lsblk denials on networked file systems
(LP: #2092232):
- d/p/u/lsblk_hyper_v_fixup.patch ->
d/p/u/lsblk_network_disk_fixup.patch
* Add patch to fix kernel feature search with substrings (LP: #2105986):
- d/p/u/libapparmor-feature-match-prefixes.patch
- d/p/u/libapparmor-bump-patch-version-for-features-prefix.patch
* Add patch to align aa-notify userns_special_profiles default to config
default (LP: #2106174):
- d/p/u/utils-add-unprivileged_userns-to-aa-notify-list.patch
* Add patches for aa-notify default config to avoid suggesting
capabilities addition for unprivileged_userns profile (LP: #2106177):
- d/p/u/aa-notify-dont-merge-configs-with-confdir.patch
- d/p/u/aa-notify-userns-filtering.patch
-- Ryan Lee <[email protected]> Wed, 02 Apr 2025 11:01:53 -0700
** Changed in: apparmor (Ubuntu)
Status: New => Fix Released
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/2106177
Title:
aa-notify's default configuration breaks the userns restriction by
suggesting capabilities addition to unprivileged_userns
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/2106177/+subscriptions
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
