| 2010-12-21 16:52:26 |
John Johansen |
bug |
|
|
added bug |
| 2010-12-21 17:01:44 |
Jamie Strandboge |
bug task added |
|
apparmor (Ubuntu) |
|
| 2010-12-21 17:09:24 |
Jamie Strandboge |
nominated for series |
|
Ubuntu Karmic |
|
| 2010-12-21 17:09:24 |
Jamie Strandboge |
bug task added |
|
apparmor (Ubuntu Karmic) |
|
| 2010-12-21 17:09:24 |
Jamie Strandboge |
nominated for series |
|
Ubuntu Lucid |
|
| 2010-12-21 17:09:24 |
Jamie Strandboge |
bug task added |
|
apparmor (Ubuntu Lucid) |
|
| 2010-12-21 17:09:24 |
Jamie Strandboge |
nominated for series |
|
Ubuntu Maverick |
|
| 2010-12-21 17:09:24 |
Jamie Strandboge |
bug task added |
|
apparmor (Ubuntu Maverick) |
|
| 2010-12-21 17:09:24 |
Jamie Strandboge |
nominated for series |
|
Ubuntu Natty |
|
| 2010-12-21 17:09:24 |
Jamie Strandboge |
bug task added |
|
apparmor (Ubuntu Natty) |
|
| 2010-12-21 17:09:35 |
Jamie Strandboge |
apparmor (Ubuntu Natty): status |
New |
Invalid |
|
| 2010-12-21 17:10:32 |
Jamie Strandboge |
bug |
|
|
added subscriber Ubuntu Security Team |
| 2010-12-21 17:11:12 |
Jamie Strandboge |
apparmor (Ubuntu Lucid): status |
New |
Triaged |
|
| 2010-12-21 17:11:13 |
Jamie Strandboge |
apparmor (Ubuntu Lucid): importance |
Undecided |
Medium |
|
| 2010-12-21 17:11:14 |
Jamie Strandboge |
apparmor (Ubuntu Lucid): assignee |
|
Jamie Strandboge (jdstrand) |
|
| 2010-12-21 17:11:15 |
Jamie Strandboge |
apparmor (Ubuntu Maverick): status |
New |
Triaged |
|
| 2010-12-21 17:11:15 |
Jamie Strandboge |
apparmor (Ubuntu Maverick): importance |
Undecided |
Medium |
|
| 2010-12-21 17:11:16 |
Jamie Strandboge |
apparmor (Ubuntu Maverick): assignee |
|
Jamie Strandboge (jdstrand) |
|
| 2010-12-21 17:11:17 |
Jamie Strandboge |
apparmor (Ubuntu Karmic): status |
New |
Triaged |
|
| 2010-12-21 17:11:19 |
Jamie Strandboge |
apparmor (Ubuntu Karmic): importance |
Undecided |
Medium |
|
| 2010-12-21 17:11:20 |
Jamie Strandboge |
apparmor (Ubuntu Karmic): assignee |
|
Jamie Strandboge (jdstrand) |
|
| 2010-12-21 17:24:31 |
Jamie Strandboge |
apparmor (Ubuntu Natty): status |
Invalid |
Fix Released |
|
| 2010-12-21 17:24:34 |
Jamie Strandboge |
apparmor (Ubuntu Natty): importance |
Undecided |
Medium |
|
| 2010-12-21 17:24:44 |
Jamie Strandboge |
apparmor (Ubuntu Natty): assignee |
|
John Johansen (jjohansen) |
|
| 2010-12-21 17:24:49 |
Jamie Strandboge |
apparmor: status |
New |
Triaged |
|
| 2010-12-21 17:24:51 |
Jamie Strandboge |
apparmor: importance |
Undecided |
Medium |
|
| 2011-01-05 16:50:26 |
John Johansen |
attachment added |
|
Patch for Lucid and Maverick https://bugs.launchpad.net/apparmor/+bug/693082/+attachment/1784221/+files/fix-lp693082.patch |
|
| 2011-01-05 16:51:07 |
John Johansen |
attachment added |
|
Patch for Karmic https://bugs.launchpad.net/apparmor/+bug/693082/+attachment/1784222/+files/fix-lp693082-k.patch |
|
| 2011-01-05 17:12:08 |
John Johansen |
description |
When the combination of px, pux or cx, cux or any of their safe, or named profile transition counterparts appear in a profile together, the transition is handled incorrectly.
If px appears before pux then all pux transitions become px
If pux appears before px then all px transitions become pux transitions
The same thing happens for (Px, Pux). (Cx, Cux), etc. |
SRU Justification:
Impact: This bug can result in tasks becoming unexpectedly unconfined when policy is misconfigured.
Fix: The supplied patches are backported from the upstream fix that is in Natty.
Testcase: This bug can be tested in two ways.
case1: The apparmor_parser merge conflict checker can be used to detect this bug, as the checker will fail to detect the merge conflict. This can be tested with the following profile (and all other combinations).
profile test {
/foo** Px,
/foo*bar Pux,
}
This test and all possible combinations of it are the tests generated by the gen_xtrans.pl script that the attached patch adds to the test suite.
case2: Load profiles into the kernel and test execs follow correct attachment.
When the combination of px, pux or cx, cux or any of their safe, or named profile transition counterparts appear in a profile together, the transition is handled incorrectly.
If px appears before pux then all pux transitions become px
If pux appears before px then all px transitions become pux transitions
The same thing happens for (Px, Pux). (Cx, Cux), etc.
|
|
| 2011-01-05 17:29:51 |
John Johansen |
description |
SRU Justification:
Impact: This bug can result in tasks becoming unexpectedly unconfined when policy is misconfigured.
Fix: The supplied patches are backported from the upstream fix that is in Natty.
Testcase: This bug can be tested in two ways.
case1: The apparmor_parser merge conflict checker can be used to detect this bug, as the checker will fail to detect the merge conflict. This can be tested with the following profile (and all other combinations).
profile test {
/foo** Px,
/foo*bar Pux,
}
This test and all possible combinations of it are the tests generated by the gen_xtrans.pl script that the attached patch adds to the test suite.
case2: Load profiles into the kernel and test execs follow correct attachment.
When the combination of px, pux or cx, cux or any of their safe, or named profile transition counterparts appear in a profile together, the transition is handled incorrectly.
If px appears before pux then all pux transitions become px
If pux appears before px then all px transitions become pux transitions
The same thing happens for (Px, Pux). (Cx, Cux), etc.
|
SRU Justification:
Impact: This bug can result in tasks becoming unexpectedly unconfined when policy is misconfigured.
Fix: The supplied patches are backported from the upstream fix that is in Natty.
Testcase: This bug can be tested in two ways.
Method 1: The apparmor_parser merge conflict checker can be used to detect this bug, as the checker will fail to detect the merge conflict. This can be tested with the following profile (and all other combinations).
profile test {
/foo** Px,
/foo*bar Pux,
}
This test and all possible combinations of it are the tests generated by the gen_xtrans.pl script that the attached patch adds to the test suite.
Method 2: Load profiles into the kernel and test execs follow correct attachment. This requires setting up a profile, and ensuring the transition targets don't have profiles loaded into the kernel. The basic form of the profile needs to be
/bin/test/app {
#...
/bin/a Pux,
/bin/b Px,
}
it is important that the /bin/a program is sorted before /bin/b in the C locale.
The test app should call /bin/b, if the bug is present then the transition from the /bin/test/app profile will fail as there is no profile defined for /bin/b, but because of the bug apparmor will fall back to unconfined. This can be checked using aa-status, which should show /bin/b as not being confined by a profile.
---
When the combination of px, pux or cx, cux or any of their safe, or named profile transition counterparts appear in a profile together, the transition is handled incorrectly.
If px appears before pux then all pux transitions become px
If pux appears before px then all px transitions become pux transitions
The same thing happens for (Px, Pux). (Cx, Cux), etc.
|
|
| 2011-01-05 18:06:30 |
Jamie Strandboge |
apparmor (Ubuntu Lucid): status |
Triaged |
In Progress |
|
| 2011-01-05 18:06:32 |
Jamie Strandboge |
apparmor (Ubuntu Maverick): status |
Triaged |
In Progress |
|
| 2011-01-05 18:06:33 |
Jamie Strandboge |
apparmor (Ubuntu Karmic): status |
Triaged |
In Progress |
|
| 2011-01-05 18:06:56 |
Jamie Strandboge |
visibility |
private |
public |
|
| 2011-01-05 19:06:52 |
Jamie Strandboge |
apparmor (Ubuntu Lucid): status |
In Progress |
Fix Committed |
|
| 2011-01-05 19:06:55 |
Jamie Strandboge |
apparmor (Ubuntu Maverick): status |
In Progress |
Fix Committed |
|
| 2011-01-05 19:06:58 |
Jamie Strandboge |
apparmor (Ubuntu Karmic): status |
In Progress |
Fix Committed |
|
| 2011-01-07 00:06:22 |
Launchpad Janitor |
apparmor (Ubuntu Maverick): status |
Fix Committed |
Fix Released |
|
| 2011-01-07 00:06:22 |
Launchpad Janitor |
apparmor (Ubuntu Lucid): status |
Fix Committed |
Fix Released |
|
| 2011-01-07 00:06:22 |
Launchpad Janitor |
apparmor (Ubuntu Karmic): status |
Fix Committed |
Fix Released |
|
| 2011-01-07 00:25:50 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/karmic-security/apparmor |
|
| 2011-01-07 00:25:53 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/lucid-security/apparmor |
|
| 2011-01-07 00:27:31 |
Launchpad Janitor |
branch linked |
|
lp:ubuntu/maverick-security/apparmor |
|
| 2011-01-23 10:29:40 |
Mile |
apparmor (Ubuntu Maverick): assignee |
Jamie Strandboge (jdstrand) |
Mile (milevu) |
|
| 2011-01-23 13:33:23 |
Mile |
apparmor (Ubuntu Maverick): assignee |
Mile (milevu) |
|
|
| 2011-01-24 15:02:34 |
Jamie Strandboge |
apparmor (Ubuntu Maverick): assignee |
|
Jamie Strandboge (jdstrand) |
|
| 2011-02-05 04:49:39 |
ROOTMAN MR |
apparmor (Ubuntu Karmic): assignee |
Jamie Strandboge (jdstrand) |
ROOTMAN MR (xrootmanx) |
|
| 2011-02-05 13:24:47 |
Jamie Strandboge |
apparmor (Ubuntu Karmic): assignee |
ROOTMAN MR (xrootmanx) |
Jamie Strandboge (jdstrand) |
|
| 2011-02-17 19:55:27 |
Steve Beattie |
nominated for series |
|
apparmor/2.5 |
|
| 2011-02-17 19:55:27 |
Steve Beattie |
bug task added |
|
apparmor/2.5 |
|
| 2011-02-17 19:55:27 |
Steve Beattie |
nominated for series |
|
apparmor/master |
|
| 2011-02-17 19:55:27 |
Steve Beattie |
bug task added |
|
apparmor/master |
|
| 2011-02-17 19:55:42 |
Steve Beattie |
apparmor/2.5: status |
New |
Fix Committed |
|
| 2011-02-17 19:55:46 |
Steve Beattie |
apparmor/master: status |
Triaged |
Fix Committed |
|
| 2011-02-17 19:55:49 |
Steve Beattie |
apparmor/2.5: importance |
Undecided |
Medium |
|
| 2011-02-17 19:55:53 |
Steve Beattie |
apparmor/2.5: milestone |
|
2.5.2 |
|
| 2011-02-17 19:55:56 |
Steve Beattie |
apparmor/master: milestone |
|
2.6.0 |
|
| 2011-03-17 18:31:46 |
Steve Beattie |
apparmor/2.5: status |
Fix Committed |
Fix Released |
|
| 2011-03-17 18:31:48 |
Steve Beattie |
apparmor/master: status |
Fix Committed |
Fix Released |
|
