Non-flatpak Firefox-based browsers crash with kernel 6.8.0-11-generic in 24.04
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
linux (Ubuntu) |
New
|
Undecided
|
Unassigned |
Bug Description
All details are to be found in my previous bug report (https:/
Given that simply reverting to kernel 6.5.0-17-generic fixes the problem, the bug seems to be with the 6.8.0 kernel. Therefore I'm posting this.
ProblemType: Bug
DistroRelease: Ubuntu 24.04
Package: linux-image-
ProcVersionSign
Uname: Linux 6.8.0-11-generic x86_64
ApportVersion: 2.28.0-0ubuntu1
Architecture: amd64
CRDA: N/A
CasperMD5CheckR
CurrentDesktop: KDE
Date: Wed Mar 6 09:49:36 2024
InstallationDate: Installed on 2023-10-04 (154 days ago)
InstallationMedia: Kubuntu 22.04 LTS "Jammy Jellyfish" - Release amd64 (20220419)
MachineType: Sony Corporation VPCSB2P9E
ProcFB: 0 i915drmfb
ProcKernelCmdLine: BOOT_IMAGE=
PulseList: Error: command ['pacmd', 'list'] failed with exit code 1: No PulseAudio daemon running, or not running as session daemon.
RelatedPackageV
linux-
linux-
linux-firmware 20240202.
SourcePackage: linux
UpgradeStatus: Upgraded to noble on 2024-03-04 (2 days ago)
dmi.bios.date: 11/16/2011
dmi.bios.release: 20.85
dmi.bios.vendor: INSYDE
dmi.bios.version: R2085H4
dmi.board.
dmi.board.name: VAIO
dmi.board.vendor: Sony Corporation
dmi.board.version: N/A
dmi.chassis.
dmi.chassis.type: 10
dmi.chassis.vendor: Sony Corporation
dmi.chassis.
dmi.ec.
dmi.modalias: dmi:bvnINSYDE:
dmi.product.family: VAIO
dmi.product.name: VPCSB2P9E
dmi.product.sku: N/A
dmi.product.
dmi.sys.vendor: Sony Corporation
Hi cipricus,
This is a security feature working as intended. Ubuntu recently decided to disable unprivileged access to user namespaces. You can find more information it about it here:
https:/ /ubuntu. com/blog/ ubuntu- 23-10-restricte d-unprivileged- user-namespaces /discourse. ubuntu. com/t/spec- unprivileged- user-namespace- restrictions- via-apparmor- in-ubuntu- 23-10/37626 /bugs.launchpad .net/ubuntu/ +source/ apparmor/ +bug/2046844
https:/
https:/
It was included (but turned off in 23.10). In 24.04, it has been turned on.
We have been adding apparmor profiles for most packaged applications. Saying that, firefox downloaded from tarballs or other places don't come with an apparmor profile, so the mitigation isn't relaxed for them.
You can enable user namespaces by either making a apparmor profile for your firefox installs, making sure the directory where firefox is installed is correct in the profile, or by just enabling user namespaces for your system. There is instructions to do this in the first blog link.
Thanks,
Matthew