fyi, I have now disabled the memory attribute protocol for all
*.secboot.fd images in Debian. I've added *.secboot.strictnx.fd images
that users can opt-in to, if they know their guest OS is compatible:
https://salsa.debian.org/qemu-
team/edk2/-/commit/766e4f3cb33136c9411746c417d95283e6300dff
I
I change the code to:
check_userns() {
userns_restricted=$(sysctl -e -n
kernel.apparmor_restrict_unprivileged_userns)
unconfined_userns=$([ -f
/sys/kernel/security/apparmor/features/policy/unconfined_restrictions/userns ]
&& cat
/sys/kernel/security/apparmor/features/policy/unc
This problem is not solved with the change [ "$unconfined_users" = "NO"
] in the last comment.
If you look in the code, you see this:
check_userns() {
userns_restricted=$(sysctl -e -n
kernel.apparmor_restrict_unprivileged_userns)
unconfined_userns=$([ -f
/sys/kernel/security/app
@Ryan, I've added an SRU justification.
Would you mind having a look at it, and in case it's ok uploading this SRU to
plucky again?
** Description changed:
+ SRU Justification:
+
+ [ Impact ]
+
+ * lsblk on an s390x system that uses DASD disks shows no output.
+
+ * journactl shows lsblk i
@Ryan, I've added an SRU justification.
Would you mind having a look at it, and in case it's ok uploading this SRU to
plucky again?
** Description changed:
+ SRU Justification:
+
+ [ Impact ]
+
+ * lsblk on an s390x system that uses DASD disks shows no output.
+
+ * journactl shows lsblk i
Sure, it should be.
We just faced with same problem in our (unrelated) project. For modern
64-bit system that is not very unusual to have files > 2G. And we faced,
that writing such file with single write() call is not successful.
Reason is - as I said - note in 'man 2 write' about maximum size. W
Other symptoms of this bug are that systems without permanent ethernet
connection stall for 5min at boot waiting for aoetools to aoe_discover even
though no network cable is in the ethernet port...
(See bug #2065106 and bug #2062501)
--
You received this bug notification because you are a membe
This bug is awaiting verification that the linux-aws/6.14.0-1006.6
kernel in -proposed solves the problem. Please test the kernel and
update this bug with the results. If the problem is solved, change the
tag 'verification-needed-plucky-linux-aws' to 'verification-done-plucky-
linux-aws'. If the pr
This bug is awaiting verification that the linux-oracle/6.14.0-1006.6
kernel in -proposed solves the problem. Please test the kernel and
update this bug with the results. If the problem is solved, change the
tag 'verification-needed-plucky-linux-oracle' to 'verification-done-
plucky-linux-oracle'.
Thanks for taking the time to report this bug and helping to make Ubuntu
better. We appreciate the difficulties you are facing, but this appears
to be a "regular" (non-security) bug. I have unmarked it as a security
issue since this bug does not show evidence of allowing attackers to
cross privile
** Description changed:
A customer uses hv_sock to connect to their linux vm(hyperv vms).
They can connect to 22.04, but can't connect to 24.04
So I researched why, Since Kinetic, we have below commit from Debian I
think.
https://salsa.debian.org/ssh-
team/openssh/-/commit/0dc
Public bug reported:
A customer uses hv_sock to connect to their linux vm(hyperv vms).
They can connect to 22.04, but can't connect to 24.04
So I researched why, Since Kinetic, we have below commit from Debian I
think.
https://salsa.debian.org/ssh-
team/openssh/-/commit/0dc73888bbfc17fae04b891a
An upload of apparmor to plucky-proposed has been rejected from the
upload queue for the following reason: "bugs missing sru information,
and has changes without an sru bug attached".
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscrib
An upload of apparmor to plucky-proposed has been rejected from the
upload queue for the following reason: "bugs missing sru information,
and has changes without an sru bug attached".
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscrib
An upload of apparmor to plucky-proposed has been rejected from the
upload queue for the following reason: "bugs missing sru information,
and has changes without an sru bug attached".
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscrib
An upload of apparmor to plucky-proposed has been rejected from the
upload queue for the following reason: "bugs missing sru information,
and has changes without an sru bug attached".
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscrib
An upload of apparmor to plucky-proposed has been rejected from the
upload queue for the following reason: "bugs missing sru information,
and has changes without an sru bug attached".
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscrib
An upload of apparmor to plucky-proposed has been rejected from the
upload queue for the following reason: "bugs missing sru information,
and has changes without an sru bug attached".
--
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscrib
18 matches
Mail list logo
