Overview Repositories Revisions Requests Users Attributes Meta

Revisions of apparmor

Gustavo Yokoyama Ribeiro's avatar Gustavo Yokoyama Ribeiro (gyribeiro) committed (revision 7) 
- add php8-fpm-mr876.patch so that php8 php-fpm can read its config
  (boo#1186267#c11)
- parser: add conflict with apparmor-utils < 3.0 to avoid aa-status
  file conflict on upgrade (boo#1198958)
- utils: add missing dependency on apparmor-parser (boo#1198958#c4)

- Enhance zgrep-profile-mr870.diff to also allow/support zstd
  (boo#1198922).
Gustavo Yokoyama Ribeiro's avatar Gustavo Yokoyama Ribeiro (gyribeiro) committed (revision 6) 
- update zgrep-profile-mr870.diff to allow executing 'expr' (boo#1198531)

- Add samba-new-dcerpcd.patch, samba-4.16 has a new dcerpcd daemon
  which now will spawn new additional services on demand. We need to
  modify the existing smbd/winbind profiles and additionally add a
  new set of profiles to cater for the new functionality;
  (bnc#1198309);
  

- Add samba_deny_net_admin.patch to add new rule to deny
  noisy setsockopt calls from systemd; (bnc#1196850).

- add profile for zgrep and xzgrep to prevent CVE-2022-1271
  (zgrep-profile-mr870.diff)

- ensure precompiled cache files are newer than (text) profiles
- reload profiles in %posttrans instead of %post to ensure both
  -profiles and -abstractons package are updated before the cache
  in /var/cache/apparmor/ gets built (boo#1195463 #c20)

- Add update-samba-bgqd.diff to add new rule to fix 'DENIED' open on
  /proc/{pid}/fd for samba-bgqd (bnc#1196850).
- Add update-usr-sbin-smbd.diff to add new rule to allow reading of
  openssl.cnf (bnc#1195463).
Gustavo Yokoyama Ribeiro's avatar Gustavo Yokoyama Ribeiro (gyribeiro) committed (revision 5) 
Mirrored from OBS SR#953288
https://code.opensuse.org/leap/features/issue/21
  https://jira.suse.com/browse/OPENSUSE-45


  - update to AppArmor 3.0.4
    - various fixes in profiles, abstractions, apparmor_parser and utils
      (some of them were already included as patches)
    - add support for mctp address family
    - see https://gitlab.com/apparmor/apparmor/-/wikis/Release_Notes_3.0.4
      for the full upstream changelog
  - remove upstream(ed) patches:
    - aa-notify-more-arch-mr809.diff
    - ruby-3.1-build-fix.diff
    - add-samba-bgqd.diff
    - openssl-engdef-mr818.diff
    - profiles-python-3.10-mr783.diff
    - update-samba-abstractions-ldb2.diff
  - refresh patches:
    - apparmor-samba-include-permissions-for-shares.diff
    - ruby-2_0-mkmf-destdir.patch

  - add ruby-3.1-build-fix.diff: fix build with ruby 3.1 (boo#1194221,
    MR 827)

  - add openssl-engdef-mr818.diff: Allow reading /etc/ssl/engdef.d/ and
    /etc/ssl/engines.d/ in abstractions/openssl which were introduced
    with the latest openssl update
Stefan Weiberg's avatar Stefan Weiberg (suntorytimed) committed (revision 4) 
- add update-samba-abstractions-ldb2.diff: Cater for changes to ldb
  packaging to allow parallel installation with libldb;
  (bsc#1192684).
Gustavo Yokoyama Ribeiro's avatar Gustavo Yokoyama Ribeiro (gyribeiro) committed (revision 3) 
-  Modify add-samba-bgqd.diff: Add new rule to fix new "DENIED
    operation="file_mmap" violation in SLE15-SP4; (bsc#1192336).
Stefan Weiberg's avatar Stefan Weiberg (suntorytimed) committed (revision 2) 
JSC#SLE-20590 - requires SR#259564 |   - boo#1069906,boo#1074429: updated upstream   - bsc#1191690: not required (spec changes)
Stefan Weiberg's avatar Stefan Weiberg (suntorytimed) committed (revision 1) 
initialize package
Displaying all 7 revisions
openSUSE Build Service is sponsored by
Places