Revisions of apparmor
Gustavo Yokoyama Ribeiro (gyribeiro)
committed
(revision 7)
- add php8-fpm-mr876.patch so that php8 php-fpm can read its config (boo#1186267#c11) - parser: add conflict with apparmor-utils < 3.0 to avoid aa-status file conflict on upgrade (boo#1198958) - utils: add missing dependency on apparmor-parser (boo#1198958#c4) - Enhance zgrep-profile-mr870.diff to also allow/support zstd (boo#1198922).
Gustavo Yokoyama Ribeiro (gyribeiro)
committed
(revision 6)
- update zgrep-profile-mr870.diff to allow executing 'expr' (boo#1198531) - Add samba-new-dcerpcd.patch, samba-4.16 has a new dcerpcd daemon which now will spawn new additional services on demand. We need to modify the existing smbd/winbind profiles and additionally add a new set of profiles to cater for the new functionality; (bnc#1198309); - Add samba_deny_net_admin.patch to add new rule to deny noisy setsockopt calls from systemd; (bnc#1196850). - add profile for zgrep and xzgrep to prevent CVE-2022-1271 (zgrep-profile-mr870.diff) - ensure precompiled cache files are newer than (text) profiles - reload profiles in %posttrans instead of %post to ensure both -profiles and -abstractons package are updated before the cache in /var/cache/apparmor/ gets built (boo#1195463 #c20) - Add update-samba-bgqd.diff to add new rule to fix 'DENIED' open on /proc/{pid}/fd for samba-bgqd (bnc#1196850). - Add update-usr-sbin-smbd.diff to add new rule to allow reading of openssl.cnf (bnc#1195463).
Gustavo Yokoyama Ribeiro (gyribeiro)
committed
(revision 5)
Mirrored from OBS SR#953288 https://code.opensuse.org/leap/features/issue/21 https://jira.suse.com/browse/OPENSUSE-45 - update to AppArmor 3.0.4 - various fixes in profiles, abstractions, apparmor_parser and utils (some of them were already included as patches) - add support for mctp address family - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0.4 for the full upstream changelog - remove upstream(ed) patches: - aa-notify-more-arch-mr809.diff - ruby-3.1-build-fix.diff - add-samba-bgqd.diff - openssl-engdef-mr818.diff - profiles-python-3.10-mr783.diff - update-samba-abstractions-ldb2.diff - refresh patches: - apparmor-samba-include-permissions-for-shares.diff - ruby-2_0-mkmf-destdir.patch - add ruby-3.1-build-fix.diff: fix build with ruby 3.1 (boo#1194221, MR 827) - add openssl-engdef-mr818.diff: Allow reading /etc/ssl/engdef.d/ and /etc/ssl/engines.d/ in abstractions/openssl which were introduced with the latest openssl update
Stefan Weiberg (suntorytimed)
committed
(revision 4)
- add update-samba-abstractions-ldb2.diff: Cater for changes to ldb packaging to allow parallel installation with libldb; (bsc#1192684).
Gustavo Yokoyama Ribeiro (gyribeiro)
committed
(revision 3)
- Modify add-samba-bgqd.diff: Add new rule to fix new "DENIED operation="file_mmap" violation in SLE15-SP4; (bsc#1192336).
Stefan Weiberg (suntorytimed)
committed
(revision 2)
JSC#SLE-20590 - requires SR#259564 | - boo#1069906,boo#1074429: updated upstream - bsc#1191690: not required (spec changes)
Stefan Weiberg (suntorytimed)
committed
(revision 1)
initialize package
Displaying all 7 revisions