[Bug 1331503] [NEW] apparmor profile missing "link" permission
Kees Cook
kees at ubuntu.com
Wed Jun 18 14:30:32 UTC 2014
Public bug reported:
type=1400 audit(1403024365.999:20455): apparmor="DENIED" operation="link" prof
ile="/usr/sbin/named" name="/var/lib/bind/db-GFtoRz38" pid=32341 comm="named"
requested_mask="l" denied_mask="l" fsuid=105 ouid=105
target="/var/lib/bind/db.MYDOMAIN"
/etc/apparmor.d/usr.sbin.named is missing "l" for /var/lib/bind/**:
It should be:
/var/lib/bind/** lrw,
** Affects: bind9 (Ubuntu)
Importance: Undecided
Status: New
** Affects: bind9 (Ubuntu Trusty)
Importance: Undecided
Status: New
** Also affects: bind9 (Ubuntu Precise)
Importance: Undecided
Status: New
** No longer affects: bind9 (Ubuntu Precise)
** Also affects: bind9 (Ubuntu Trusty)
Importance: Undecided
Status: New
--
You received this bug notification because you are a member of Ubuntu
Server Team, which is subscribed to bind9 in Ubuntu.
https://bugs.launchpad.net/bugs/1331503
Title:
apparmor profile missing "link" permission
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/bind9/+bug/1331503/+subscriptions
More information about the Ubuntu-server-bugs
mailing list