apparmor_parser triggers a kernel panic
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
| linux (Ubuntu) |
Undecided
|
Paolo Pisati | ||
| Lucid |
Undecided
|
Paolo Pisati | ||
| Maverick |
Undecided
|
Paolo Pisati | ||
| linux-mvl-dove (Ubuntu) |
Undecided
|
Paolo Pisati | ||
| Lucid |
Undecided
|
Paolo Pisati | ||
| Maverick |
Undecided
|
Paolo Pisati |
Bug Description
SRU Justification:
Impact: kernel panic when loading a malformed apparmor profile.
Fix: see attached patch.
Testcase: /etc/init.
===
While loading a new profile, in case of a malformed one, policy.
CVE References
- 2010-0435
- 2010-2942
- 2010-2943
- 2010-2954
- 2010-2955
- 2010-2960
- 2010-2962
- 2010-2963
- 2010-3067
- 2010-3078
- 2010-3080
- 2010-3084
- 2010-3310
- 2010-3432
- 2010-3437
- 2010-3442
- 2010-3477
- 2010-3705
- 2010-3848
- 2010-3849
- 2010-3850
- 2010-3861
- 2010-3865
- 2010-3875
- 2010-3876
- 2010-3877
- 2010-3880
- 2010-3904
- 2010-4072
- 2010-4073
- 2010-4076
- 2010-4077
- 2010-4158
- 2010-4163
- 2010-4165
- 2010-4169
- 2010-4175
Paolo Pisati (p-pisati) wrote : | #1 |
Changed in linux (Ubuntu): | |
status: | New → Invalid |
Changed in linux-mvl-dove (Ubuntu): | |
status: | New → Invalid |
Changed in linux (Ubuntu Maverick): | |
status: | New → Invalid |
Changed in linux (Ubuntu Lucid): | |
status: | New → In Progress |
Changed in linux-mvl-dove (Ubuntu Lucid): | |
status: | New → In Progress |
Changed in linux-mvl-dove (Ubuntu Maverick): | |
status: | New → In Progress |
Changed in linux (Ubuntu): | |
assignee: | nobody → Paolo Pisati (p-pisati) |
Changed in linux (Ubuntu Maverick): | |
assignee: | nobody → Paolo Pisati (p-pisati) |
Changed in linux-mvl-dove (Ubuntu): | |
assignee: | nobody → Paolo Pisati (p-pisati) |
Changed in linux-mvl-dove (Ubuntu Lucid): | |
assignee: | nobody → Paolo Pisati (p-pisati) |
Changed in linux-mvl-dove (Ubuntu Maverick): | |
assignee: | nobody → Paolo Pisati (p-pisati) |
Changed in linux (Ubuntu Lucid): | |
assignee: | nobody → Paolo Pisati (p-pisati) |
Paolo Pisati (p-pisati) wrote : | #2 |
description: | updated |
Changed in linux-mvl-dove (Ubuntu Lucid): | |
status: | In Progress → Fix Committed |
Changed in linux-mvl-dove (Ubuntu Maverick): | |
status: | In Progress → Fix Committed |
Accepted linux-mvl-dove into lucid-proposed, the package will build now and be available in a few hours. Please test and give feedback here. See https:/
Martin Pitt (pitti) wrote : | #4 |
Accepted linux-mvl-dove into maverick-proposed, the package will build now and be available in a few hours. Please test and give feedback here. See https:/
Martin Pitt (pitti) wrote : | #5 |
Accepted linux into lucid-proposed, the package will build now and be available in a few hours. Please test and give feedback here. See https:/
Changed in linux (Ubuntu Lucid): | |
status: | In Progress → Fix Committed |
Martin Pitt (pitti) wrote : | #6 |
Accepted linux-ec2 into lucid-proposed, the package will build now and be available in a few hours. Please test and give feedback here. See https:/
Brad Figg (brad-figg) wrote : | #7 |
This bug is awaiting verification that the kernel in -proposed solves the problem. Please test the kernel and update this bug with the results. If the problem is solved, change the tag 'verification-
If verification is not done by one week from today, this fix will be dropped from the source code, and this bug will be closed.
See https:/
tags: | added: verification-needed-lucid |
tags: | added: verification-needed-maverick |
Launchpad Janitor (janitor) wrote : | #9 |
This bug was fixed in the package linux-mvl-dove - 2.6.32-216.33
---------------
linux-mvl-dove (2.6.32-216.33) lucid-proposed; urgency=low
[ Ubuntu: 2.6.32-31.60 ]
* Release Tracking Bug
- LP: #734950
* SAUCE: Clear new_profile in error path
- LP: #732700
* [Config] CONFIG_
- LP: #733191
* Revert "drm/radeon/bo: add some fallback placements for VRAM only
objects."
- LP: #652934
* drm/radeon: fall back to GTT if bo creation/validation in VRAM fails.
- LP: #652934
* drm/radeon/kms: Fix retrying ttm_bo_init() after it failed once.
- LP: #652934
* xfs: always use iget in bulkstat
- LP: #692848
* drm/radeon/kms: make the mac rv630 quirk generic
- LP: #728687
* drm/radeon/kms: add pll debugging output
- LP: #728687
* drm/radeon: remove 0x4243 pci id
- LP: #728687
* drm/radeon/kms: fix s/r issues with bios scratch regs
- LP: #728687
* drm/i915/lvds: Add AOpen i915GMm-HFS to the list of false-positive LVDS
- LP: #728687
* drm/i915: Add dependency on CONFIG_TMPFS
- LP: #728687
* Linux 2.6.32.29+drm33.14
- LP: #728687
* NFSD: memory corruption due to writing beyond the stat array
- LP: #728687
* mptfusion: mptctl_release is required in mptctl.c
- LP: #728687
* mptfusion: Fix Incorrect return value in mptscsih_dev_reset
- LP: #728687
* ocfs2_connectio
- LP: #728687
* x25: decrement netdev reference counts on unload
- LP: #728687
* x86, hpet: Disable per-cpu hpet timer if ARAT is supported
- LP: #728687
* OHCI: work around for nVidia shutdown problem
- LP: #728687
* x86/pvclock: Zero last_value on resume
- LP: #728687
* av7110: check for negative array offset
- LP: #728687
* CRED: Fix get_task_cred() and task_state() to not resurrect dead
credentials
- LP: #728687
* bonding/vlan: Avoid mangled NAs on slaves without VLAN tag insertion
- LP: #728687
* CRED: Fix kernel panic upon security_
- LP: #728687
* CRED: Fix BUG() upon security_
- LP: #728687
* CRED: Fix memory and refcount leaks upon security_
failure
- LP: #728687
* sendfile(): check f_op.splice_write() rather than f_op.sendpage()
- LP: #728687
* isdn: hisax: Replace the bogus access to irq stats
- LP: #728687
* ixgbe: add support for 82599 based Express Module X520-P2
- LP: #728687
* ixgbe: prevent speculative processing of descriptors before ready
- LP: #728687
* scsi_dh_alua: add netapp to dev list
- LP: #728687
* scsi_dh_alua: Add IBM Power Virtual SCSI ALUA device to dev list
- LP: #728687
* dm raid1: fail writes if errors are not handled and log fails
- LP: #728687
* GFS2: Fix bmap allocation corner-case bug
- LP: #728687
* dm raid1: fix null pointer dereference in suspend
- LP: #728687
* sunrpc/cache: fix module refcnt leak in a failure path
- LP: #728687
* be2net: Maintain tx and rx counters in driver
- LP: #728687
* tcp: Make TCP_MAXSEG minimum more correct.
- LP: #728687
* nfsd: correctly handle return value from ...
Changed in linux-mvl-dove (Ubuntu Lucid): | |
status: | Fix Committed → Fix Released |
Launchpad Janitor (janitor) wrote : | #10 |
This bug was fixed in the package linux-mvl-dove - 2.6.32-416.33
---------------
linux-mvl-dove (2.6.32-416.33) maverick; urgency=low
[ Ubuntu: 2.6.32-31.60 ]
* Release Tracking Bug
- LP: #734950
* SAUCE: Clear new_profile in error path
- LP: #732700
* [Config] CONFIG_
- LP: #733191
* Revert "drm/radeon/bo: add some fallback placements for VRAM only
objects."
- LP: #652934
* drm/radeon: fall back to GTT if bo creation/validation in VRAM fails.
- LP: #652934
* drm/radeon/kms: Fix retrying ttm_bo_init() after it failed once.
- LP: #652934
* xfs: always use iget in bulkstat
- LP: #692848
* drm/radeon/kms: make the mac rv630 quirk generic
- LP: #728687
* drm/radeon/kms: add pll debugging output
- LP: #728687
* drm/radeon: remove 0x4243 pci id
- LP: #728687
* drm/radeon/kms: fix s/r issues with bios scratch regs
- LP: #728687
* drm/i915/lvds: Add AOpen i915GMm-HFS to the list of false-positive LVDS
- LP: #728687
* drm/i915: Add dependency on CONFIG_TMPFS
- LP: #728687
* Linux 2.6.32.29+drm33.14
- LP: #728687
* NFSD: memory corruption due to writing beyond the stat array
- LP: #728687
* mptfusion: mptctl_release is required in mptctl.c
- LP: #728687
* mptfusion: Fix Incorrect return value in mptscsih_dev_reset
- LP: #728687
* ocfs2_connectio
- LP: #728687
* x25: decrement netdev reference counts on unload
- LP: #728687
* x86, hpet: Disable per-cpu hpet timer if ARAT is supported
- LP: #728687
* OHCI: work around for nVidia shutdown problem
- LP: #728687
* x86/pvclock: Zero last_value on resume
- LP: #728687
* av7110: check for negative array offset
- LP: #728687
* CRED: Fix get_task_cred() and task_state() to not resurrect dead
credentials
- LP: #728687
* bonding/vlan: Avoid mangled NAs on slaves without VLAN tag insertion
- LP: #728687
* CRED: Fix kernel panic upon security_
- LP: #728687
* CRED: Fix BUG() upon security_
- LP: #728687
* CRED: Fix memory and refcount leaks upon security_
failure
- LP: #728687
* sendfile(): check f_op.splice_write() rather than f_op.sendpage()
- LP: #728687
* isdn: hisax: Replace the bogus access to irq stats
- LP: #728687
* ixgbe: add support for 82599 based Express Module X520-P2
- LP: #728687
* ixgbe: prevent speculative processing of descriptors before ready
- LP: #728687
* scsi_dh_alua: add netapp to dev list
- LP: #728687
* scsi_dh_alua: Add IBM Power Virtual SCSI ALUA device to dev list
- LP: #728687
* dm raid1: fail writes if errors are not handled and log fails
- LP: #728687
* GFS2: Fix bmap allocation corner-case bug
- LP: #728687
* dm raid1: fix null pointer dereference in suspend
- LP: #728687
* sunrpc/cache: fix module refcnt leak in a failure path
- LP: #728687
* be2net: Maintain tx and rx counters in driver
- LP: #728687
* tcp: Make TCP_MAXSEG minimum more correct.
- LP: #728687
* nfsd: correctly handle return value from nfsd_m...
Changed in linux-mvl-dove (Ubuntu Maverick): | |
status: | Fix Committed → Fix Released |
Steve Conklin (sconklin) wrote : | #11 |
We need verification of this fix for Lucid and Maverick by April 1, or the patch will be reverted.
Please test and report the results.
Paolo Pisati (p-pisati) wrote : | #12 |
tested on both lucid and maverick.
tags: |
added: verification-done-lucid verification-done-maverick removed: verification-needed-lucid verification-needed-maverick |
Accepted linux-ec2 into lucid-proposed, the package will build now and be available in a few hours. Please test and give feedback here. See https:/
Launchpad Janitor (janitor) wrote : | #14 |
This bug was fixed in the package linux - 2.6.32-31.61
---------------
linux (2.6.32-31.61) lucid-proposed; urgency=low
[ Brad Figg ]
* Release Tracking Bug
- LP: #754842
[ Upstream Kernel Changes ]
* x86, quirk: Fix SB600 revision check
- LP: #742056
linux (2.6.32-31.60) lucid-proposed; urgency=low
[ Brad Figg ]
* Release Tracking Bug
- LP: #734950
[ Paolo Pisati ]
* SAUCE: Clear new_profile in error path
- LP: #732700
[ Tim Gardner ]
* [Config] CONFIG_
- LP: #733191
[ Upstream Kernel Changes ]
* Revert "drm/radeon/bo: add some fallback placements for VRAM only
objects."
- LP: #652934
* drm/radeon: fall back to GTT if bo creation/validation in VRAM fails.
- LP: #652934
* drm/radeon/kms: Fix retrying ttm_bo_init() after it failed once.
- LP: #652934
* xfs: always use iget in bulkstat
- LP: #692848
* drm/radeon/kms: make the mac rv630 quirk generic
- LP: #728687
* drm/radeon/kms: add pll debugging output
- LP: #728687
* drm/radeon: remove 0x4243 pci id
- LP: #728687
* drm/radeon/kms: fix s/r issues with bios scratch regs
- LP: #728687
* drm/i915/lvds: Add AOpen i915GMm-HFS to the list of false-positive LVDS
- LP: #728687
* drm/i915: Add dependency on CONFIG_TMPFS
- LP: #728687
* Linux 2.6.32.29+drm33.14
- LP: #728687
* NFSD: memory corruption due to writing beyond the stat array
- LP: #728687
* mptfusion: mptctl_release is required in mptctl.c
- LP: #728687
* mptfusion: Fix Incorrect return value in mptscsih_dev_reset
- LP: #728687
* ocfs2_connectio
- LP: #728687
* x25: decrement netdev reference counts on unload
- LP: #728687
* x86, hpet: Disable per-cpu hpet timer if ARAT is supported
- LP: #728687
* OHCI: work around for nVidia shutdown problem
- LP: #728687
* x86/pvclock: Zero last_value on resume
- LP: #728687
* av7110: check for negative array offset
- LP: #728687
* CRED: Fix get_task_cred() and task_state() to not resurrect dead
credentials
- LP: #728687
* bonding/vlan: Avoid mangled NAs on slaves without VLAN tag insertion
- LP: #728687
* CRED: Fix kernel panic upon security_
- LP: #728687
* CRED: Fix BUG() upon security_
- LP: #728687
* CRED: Fix memory and refcount leaks upon security_
failure
- LP: #728687
* sendfile(): check f_op.splice_write() rather than f_op.sendpage()
- LP: #728687
* isdn: hisax: Replace the bogus access to irq stats
- LP: #728687
* ixgbe: add support for 82599 based Express Module X520-P2
- LP: #728687
* ixgbe: prevent speculative processing of descriptors before ready
- LP: #728687
* scsi_dh_alua: add netapp to dev list
- LP: #728687
* scsi_dh_alua: Add IBM Power Virtual SCSI ALUA device to dev list
- LP: #728687
* dm raid1: fail writes if errors are not handled and log fails
- LP: #728687
* GFS2: Fix bmap allocation corner-case bug
- LP: #728687
* dm raid1: fix null pointer dereference in suspend
- LP: #728687
* sunrpc/...
Changed in linux (Ubuntu Lucid): | |
status: | Fix Committed → Fix Released |
Patch submitted to kernel-list for SRU to Lucid and Maverick.