Comment 2 for bug 382913

Well, this was more of a placeholder bug for me, which is why I assigned it to myself, but the basic idea is that evince uses poppler and various image libraries to process potentially untrusted input. There have been a lot of security vulnerabilities in these libraries (especially poppler), so providing an apparmor profile to confine evince (like we do with CUPS, dhclient3 and others) is highly desirable. This was identified as an important application to confine at UDS Karmic and a profile has been in development for a while (http://bazaar.launchpad.net/~ubuntu-core-dev/apparmor/profiles-devel/annotate/head%3A/usr.bin.evince).

Sebastien: I will of course work with you in terms of deployment and it is possible that the profile will be opt-in only, just as we plan to do with firefox-3.5. I'll be sure to talk to you more when I am ready to start packaging the profile.