Your message dated Mon, 20 Nov 2017 09:04:55 +0000
with message-id <[email protected]>
and subject line Bug#882125: fixed in pidgin-sipe 1.23.0-2
has caused the Debian Bug report #882125,
regarding incompatible with pidgin apparmor profile
to be marked as done.
This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.
(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact [email protected]
immediately.)
--
882125: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=882125
Debian Bug Tracking System
Contact [email protected] with problems
--- Begin Message ---
Package: pidgin-sipe
Version: 1.23.0-1
Severity: grave
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Hey!
AppArmor is now enabled by default in Debian and pidgin comes with an
AppArmor profile. When pidgin-sipe is installed, we get this error:
/usr/bin/pidgin: line 7: /etc/default/pidgin-sipe: Permission denied
/usr/bin/pidgin: line 10: /usr/bin/pidgin.orig: Permission denied
And the following audit trace:
[24779.428556] audit: type=1400 audit(1511089685.134:32848): apparmor="DENIED"
operation="open" profile="/usr/bin/pidgin" name="/dev/tty" pid=18727
comm="pidgin" requested_mask="wr" denied_mask="wr" fsuid=500 ouid=0
[24779.428637] audit: type=1400 audit(1511089685.134:32849): apparmor="DENIED"
operation="open" profile="/usr/bin/pidgin" name="/dev/pts/1" pid=18727
comm="pidgin" requested_mask="wr" denied_mask="wr" fsuid=500 ouid=500
[24779.429361] audit: type=1400 audit(1511089685.135:32850): apparmor="DENIED"
operation="open" profile="/usr/bin/pidgin" name="/etc/default/pidgin-sipe"
pid=18727 comm="pidgin" requested_mask="r" denied_mask="r" fsuid=500 ouid=0
[24779.429583] audit: type=1400 audit(1511089685.135:32851): apparmor="DENIED"
operation="exec" profile="/usr/bin/pidgin" name="/usr/bin/pidgin.orig"
pid=18728 comm="pidgin" requested_mask="x" denied_mask="x" fsuid=500 ouid=0
[24779.429586] audit: type=1400 audit(1511089685.135:32852): apparmor="DENIED"
operation="open" profile="/usr/bin/pidgin" name="/usr/bin/pidgin.orig"
pid=18728 comm="pidgin" requested_mask="r" denied_mask="r" fsuid=500 ouid=0
- -- System Information:
Debian Release: buster/sid
APT prefers unstable-debug
APT policy: (500, 'unstable-debug'), (500, 'unstable'), (500, 'stable'),
(101, 'experimental-debug'), (101, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 4.13.0-1-amd64 (SMP w/4 CPU cores)
Locale: LANG=fr_FR.utf8, LC_CTYPE=fr_FR.utf8 (charmap=UTF-8),
LANGUAGE=fr_FR.utf8 (charmap=UTF-8)
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
Versions of packages pidgin-sipe depends on:
ii libc6 2.25-1
ii libcomerr2 1.43.7-1
ii libdbus-1-3 1.12.2-1
ii libfarstream-0.2-5 0.2.8-2
ii libglib2.0-0 2.54.2-1
ii libgssapi-krb5-2 1.15.2-2
ii libgstreamer-plugins-base1.0-0 1.12.3-1
ii libgstreamer1.0-0 1.12.3-1
ii libk5crypto3 1.15.2-2
ii libkrb5-3 1.15.2-2
ii libnice10 0.1.14-1
ii libnspr4 2:4.16-1
ii libnss3 2:3.34-1
ii libpurple0 2.12.0-1+b1
ii libxml2 2.9.4+dfsg1-5.1
Versions of packages pidgin-sipe recommends:
ii gstreamer1.0-libav 1.12.3-1
ii gstreamer1.0-x 1.12.3-1
ii remmina-plugin-rdp 1.2.0-rcgit.24-3
pidgin-sipe suggests no packages.
- -- Configuration Files:
/etc/default/pidgin-sipe changed:
export NSS_SSL_CBC_RANDOM_IV=0
- -- no debconf information
-----BEGIN PGP SIGNATURE-----
iQJGBAEBCAAwFiEErvI0h2bzccaJpzYAlaQv6DU1JfkFAloRZjcSHGJlcm5hdEBk
ZWJpYW4ub3JnAAoJEJWkL+g1NSX505wQAIkEk+vD1JooOFNdVhcTeNiXd0PxszOT
EFYdV/hrcU1iGkY9Az+PGu9aDwRRknoeAR2XXiE4PsEjz+KE4M/xbFAZmHETJbna
eNW7HT9yZXI2EUb8lyrB96VPO1uT56973BEvw9u7wV+gH74ROe417XMflV/iUw54
NrIsbr04piJiALOipmjTv/vBhNSlQtI7Yz/Xx8PA/IdJiIglYS3WVPWItAL5EZrT
mVmk8srhejNw2zwlnzUXFTJh1um2iSMDRMDGtRSsQT+nXNYRvWzcBOdkfyR/v5rg
/dzrE3kTLNOgk5zFEaoAfj8lzpegvevuiHBgGkNgnXa6D+Vlf8CK9KE280wai7ah
SzyJ6P+i5GJWbhP6ffE4aAGZXmZHX2susd/2ut74yPU83MRcsKgdqlyp8XlZRxmc
WdPGJxbzAQqT1ExoY4W+WVRGTBIMfoAQQYdr8pw+OnEF8IMx1BX/Voxe9qVssfmv
SRhHmvxMk9qr6HIsU3TqLnQLwuLN1Vte1RRgqALPphdwZCUOh4nClCBilctyLt9y
K0k5DRrw+90gHa9I37INdUpPrYmP63oE9g+APZOgWKyfzWzTumtLfE9upuDf4MzS
YvjMM7b/ynl28MjwSJP8T8ZfDRJddjP/SCeMsBRZCeDK1YPmT60TEQs/9o6TJS8l
zqKzbwbMQFiy
=ipen
-----END PGP SIGNATURE-----
--- End Message ---
--- Begin Message ---
Source: pidgin-sipe
Source-Version: 1.23.0-2
We believe that the bug you reported is fixed in the latest version of
pidgin-sipe, which is due to be installed in the Debian FTP archive.
A summary of the changes between this version and the previous one is
attached.
Thank you for reporting the bug, which will now be closed. If you
have further comments please address them to [email protected],
and the maintainer will reopen the bug report if appropriate.
Debian distribution maintenance software
pp.
Jakub Adam <[email protected]> (supplier of updated pidgin-sipe package)
(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing [email protected])
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256
Format: 1.8
Date: Mon, 20 Nov 2017 08:44:57 +0100
Source: pidgin-sipe
Binary: pidgin-sipe
Architecture: source amd64
Version: 1.23.0-2
Distribution: unstable
Urgency: medium
Maintainer: Jakub Adam <[email protected]>
Changed-By: Jakub Adam <[email protected]>
Description:
pidgin-sipe - Pidgin plugin for Skype for Business and Microsoft Lync
Closes: 882125
Changes:
pidgin-sipe (1.23.0-2) unstable; urgency=medium
.
* Remove NSS_SSL_CBC_RANDOM_IV workaround (Closes: #882125).
- Diversion of /usr/bin/pidgin clashes with Pidgin AppArmor profile,
which is now enabled by default in Debian. The workaround was
introduced 5 years ago and Lync/SfB servers have since fixed the
SSL bug so it's reasonably safe to drop it from pidgin-sipe package.
* Update package description to mention Skype for Business.
Checksums-Sha1:
1335009505f17823406e61847946dbfb60e139a1 2138 pidgin-sipe_1.23.0-2.dsc
be499af140465fac82d44edc60e900c31c82299d 12640
pidgin-sipe_1.23.0-2.debian.tar.xz
3f58e01eb90f6393ed8e60e06004029938799830 738372
pidgin-sipe-dbgsym_1.23.0-2_amd64.deb
8f766d78ceb1cbd81f1e45efed3cd5e8f8deca8d 20308
pidgin-sipe_1.23.0-2_amd64.buildinfo
06f36f9247038da47c13c53686b421dcb77d11ca 319668 pidgin-sipe_1.23.0-2_amd64.deb
Checksums-Sha256:
13f29ec7fcbf419aa82b3348a85fd12fe6fc738c5b7a40ef4f2bf7c2f995f69a 2138
pidgin-sipe_1.23.0-2.dsc
cb5f9af4c6f3cf8e7c5758bc674e26399525b940ea267d2b20290b4338bfb29a 12640
pidgin-sipe_1.23.0-2.debian.tar.xz
f8d3753512ec40cf24742426603f9957e39fe6f884c195f61f024c907f12cd78 738372
pidgin-sipe-dbgsym_1.23.0-2_amd64.deb
706c2f32eab837b4e71de041f6351a4e91bd1c50a1ed35251c98ec1a24b08631 20308
pidgin-sipe_1.23.0-2_amd64.buildinfo
5017ae0a9e54178696e4ab54f7dd46fe00ceefd726016d6bcbf50576e98da8cc 319668
pidgin-sipe_1.23.0-2_amd64.deb
Files:
f4f445efecbbcb32dac2bd8257f0e683 2138 misc optional pidgin-sipe_1.23.0-2.dsc
17656609fa15a27945ba9e0d8b4c6dd3 12640 misc optional
pidgin-sipe_1.23.0-2.debian.tar.xz
0cfa4af23dbc5c46e5f597b5ebca5b5a 738372 debug optional
pidgin-sipe-dbgsym_1.23.0-2_amd64.deb
20e82088c677e57bea60b184ae0ad7f9 20308 misc optional
pidgin-sipe_1.23.0-2_amd64.buildinfo
3d03d4c970fc53fb3ebed048bfbb5e5e 319668 net optional
pidgin-sipe_1.23.0-2_amd64.deb
-----BEGIN PGP SIGNATURE-----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=ZJAw
-----END PGP SIGNATURE-----
--- End Message ---
