diff -Nru libvirt-1.2.2/debian/apparmor/libvirt-qemu libvirt-1.2.2/debian/apparmor/libvirt-qemu
--- libvirt-1.2.2/debian/apparmor/libvirt-qemu	2014-04-02 13:20:31.000000000 -0500
+++ libvirt-1.2.2/debian/apparmor/libvirt-qemu	2014-04-03 01:53:25.000000000 -0500
@@ -139,3 +139,6 @@
   /etc/udev/udev.conf r,
   /sys/bus/ r,
   /sys/class/ r,
+
+  signal (receive) peer=/usr/sbin/libvirtd,
+  ptrace (tracedby) peer=/usr/sbin/libvirtd,
diff -Nru libvirt-1.2.2/debian/apparmor/usr.sbin.libvirtd libvirt-1.2.2/debian/apparmor/usr.sbin.libvirtd
--- libvirt-1.2.2/debian/apparmor/usr.sbin.libvirtd	2013-10-23 14:08:59.000000000 -0500
+++ libvirt-1.2.2/debian/apparmor/usr.sbin.libvirtd	2014-04-03 01:53:25.000000000 -0500
@@ -34,6 +34,10 @@
   network inet6 dgram,
   network packet dgram,
 
+  dbus bus=system,
+  signal,
+  ptrace,
+
   # for now, use a very lenient profile since we want to first focus on
   # confining the guests
   / r,
diff -Nru libvirt-1.2.2/debian/changelog libvirt-1.2.2/debian/changelog
--- libvirt-1.2.2/debian/changelog	2014-04-02 13:22:53.000000000 -0500
+++ libvirt-1.2.2/debian/changelog	2014-04-03 02:09:59.000000000 -0500
@@ -1,3 +1,16 @@
+libvirt (1.2.2-0ubuntu9) trusty; urgency=medium
+
+  [ Jamie Strandboge ]
+  * updates for AppArmor signals and ptrace mediation (LP: #1298611)
+    - debian/apparmor/libvirt-qemu: allow guests to receive signals from and
+      be tracedby libvirtd (additional signal and ptrace rules come from the
+      AppArmor base abstraction)
+    - debian/apparmor/usr.sbin.libvirtd:
+      + grant bare signal and ptrace rule
+      + grant dbus on the system bus (should have been added in 13.10)
+
+ -- Tyler Hicks <tyhicks@canonical.com>  Thu, 03 Apr 2014 02:09:53 -0500
+
 libvirt (1.2.2-0ubuntu8) trusty; urgency=medium
 
   * debian/apparmor/libvirt-qemu: Allow qemu-system-aarch64 to be used.