AppArmor hooks incorrectly build query string for receiving process
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
apparmor-easyprof-ubuntu (Ubuntu) |
Fix Released
|
High
|
Jamie Strandboge | ||
Saucy |
Fix Released
|
High
|
Jamie Strandboge | ||
dbus (Ubuntu) |
Fix Released
|
High
|
Tyler Hicks | ||
Saucy |
Fix Released
|
High
|
Tyler Hicks |
Bug Description
While reviewing the AppArmor hooks in dbus-daemon, I noticed that the AppArmor
query string for the receiving process was being constructed incorrectly in
dbus 1.6.12-0ubuntu5.
Here's the query for the sending process. Note that the message destination is
used for the AppArmor query's peer name (the fourth parameter):
qsize = build_query (&qstr, scon->context, bustype, destination,
Here's the query for the receiving process. Note that the message destination
is still being used for the AppArmor query's peer name. This is incorrect
because the peer of the receiving process is the sender.
qsize = build_query (&qstr, tcon->context, bustype, destination,
Related branches
tags: | added: application-confinement |
apparmor-easyprof has some rules that need to be adjusted after this bug is fixed. The adjusted rules are valid in the buggy or fixed version of dbus, so apparmor- easyprof- ubuntu can be updated at any time.