network rules for policy versions that don't support network rules are broken
Bug #1728123 reported by
John Johansen
This bug affects 1 person
| Affects | Status | Importance | Assigned to | Milestone | |
|---|---|---|---|---|---|
| apparmor (Ubuntu) |
New
|
Undecided
|
Unassigned | ||
| Trusty |
New
|
Undecided
|
Unassigned | ||
| Xenial |
New
|
Undecided
|
Unassigned | ||
| Zesty |
New
|
Undecided
|
Unassigned | ||
| Artful |
Won't Fix
|
Undecided
|
Unassigned | ||
Bug Description
When a feature abi that does not support network rules is loaded into a kernel that does, the policy is incorrectly enforced resulting in network denials.
The kernel should be correctly enforcing the feature abi by not applying the network mediation that is explicitly not supported by the specified feature abi.
Revision history for this message
| Brian Murray (brian-murray) wrote | #1 |
| Changed in apparmor (Ubuntu Artful): | |
| status: | New → Won't Fix |
To post a comment you must log in.
Ubuntu 17.10 (Artful Aardvark) has reached end of life, so this bug will not be fixed for that specific release.