AppArmor: cupsd not allowed to send signals to third_party
Bug #1376611 reported by
Felix Geyer
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
cups (Ubuntu) |
Fix Released
|
High
|
Jamie Strandboge |
Bug Description
The cups 1.7.5-3 AppArmor profile has this rule which seems to be ineffective:
signal (receive, send) peer=third_party,
I get this denial log entry when (re)installing cups:
audit: type=1400 audit(141223928
Changing it to the absolute profile name seems to work:
signal (receive, send) peer=/usr/
I guess apparmor_parser can't distinguish between a profile named third_party and a subprofile named third_party.
Thanks for the report. I'll get this fixed soon.