[Touch-packages] [Bug 1464442] Re: installing or upgrading libc6 in Trusty removes all content from /tmp directory
http://paste.ubuntu.com/11768305/ That link shows upstart-monitor output during the libc6 upgrade. I see the mountall job starting, then later I see a mounted event for /tmp which triggers the mounted-tmp job, which is what ends up clearing out /tmp. In fact, generally it looks to me like many of the startup jobs are running, so I suspect upstart must be emitting a startup event. Just glancing briefly at the upstart code, it seems to support a restart flag to be passed on reexec which would prevent the startup event from being emitted. The logic is a bit weird though - on re-exec upstart only seems to pass --restart if the current upstart isn't a re-exec ... so if you re-execed twice you don't want the flag? Anyway, I think at this point I'll throw it back over to Steve, as I don't see any evidence at all that this is a kernel issue. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to eglibc in Ubuntu. https://bugs.launchpad.net/bugs/1464442 Title: installing or upgrading libc6 in Trusty removes all content from /tmp directory Status in eglibc package in Ubuntu: Invalid Status in linux package in Ubuntu: Incomplete Bug description: We are seeing an issue with installation of dkms package during a curtin installation which ends up with /tmp directory being wiped clean. This is very bad for curtin as it saves critical installation files in /tmp. It turns out that it's the of upgrading libc6, which is triggered as a result of installing dependencies, that removes content of /tmp. For example, installation of gcc results in the same result since it ends up with libc6 being upgraded. The only way that this won't be recreated is if the latest libc6 is already installed. This problem does not exist in precise. It can also be recreated by installing the .deb file for any version in trusty including 2.17. ubuntu@host:~$ ls /tmp tmpHHbRkP ubuntu@sirrush:~$ sudo apt-get install libc6 sudo: unable to resolve host sirrush Reading package lists... Done Building dependency tree Reading state information... Done The following extra packages will be installed: libc-dev-bin libc6-dev Suggested packages: glibc-doc Recommended packages: manpages-dev The following packages will be upgraded: libc-dev-bin libc6 libc6-dev 3 upgraded, 0 newly installed, 0 to remove and 148 not upgraded. Need to get 6,714 kB of archives. After this operation, 6,144 B disk space will be freed. Do you want to continue? [Y/n] y Get:1 http://archive.ubuntu.com/ubuntu/ trusty-updates/main libc6-dev amd64 2.19-0ubuntu6.6 [1,910 kB] Get:2 http://archive.ubuntu.com/ubuntu/ trusty-updates/main libc-dev-bin amd64 2.19-0ubuntu6.6 [68.9 kB] Get:3 http://archive.ubuntu.com/ubuntu/ trusty-updates/main libc6 amd64 2.19-0ubuntu6.6 [4,735 kB] Fetched 6,714 kB in 0s (18.5 MB/s) Preconfiguring packages ... (Reading database ... 57798 files and directories currently installed.) Preparing to unpack .../libc6-dev_2.19-0ubuntu6.6_amd64.deb ... Unpacking libc6-dev:amd64 (2.19-0ubuntu6.6) over (2.19-0ubuntu6.3) ... Preparing to unpack .../libc-dev-bin_2.19-0ubuntu6.6_amd64.deb ... Unpacking libc-dev-bin (2.19-0ubuntu6.6) over (2.19-0ubuntu6.3) ... Preparing to unpack .../libc6_2.19-0ubuntu6.6_amd64.deb ... Unpacking libc6:amd64 (2.19-0ubuntu6.6) over (2.19-0ubuntu6.3) ... Processing triggers for man-db (2.6.7.1-1) ... Setting up libc6:amd64 (2.19-0ubuntu6.6) ... Setting up libc-dev-bin (2.19-0ubuntu6.6) ... Setting up libc6-dev:amd64 (2.19-0ubuntu6.6) ... Processing triggers for libc-bin (2.19-0ubuntu6.3) ... ubuntu@host:~$ ls /tmp ubuntu@host:~$ This is very recreatable. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/eglibc/+bug/1464442/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1464442] Re: installing or upgrading libc6 in Trusty removes all content from /tmp directory
In addition to the requested logs could someone provide steps to reproduce, preferably in a VM without MAAS? -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to eglibc in Ubuntu. https://bugs.launchpad.net/bugs/1464442 Title: installing or upgrading libc6 in Trusty removes all content from /tmp directory Status in eglibc package in Ubuntu: Invalid Status in linux package in Ubuntu: Incomplete Bug description: We are seeing an issue with installation of dkms package during a curtin installation which ends up with /tmp directory being wiped clean. This is very bad for curtin as it saves critical installation files in /tmp. It turns out that it's the of upgrading libc6, which is triggered as a result of installing dependencies, that removes content of /tmp. For example, installation of gcc results in the same result since it ends up with libc6 being upgraded. The only way that this won't be recreated is if the latest libc6 is already installed. This problem does not exist in precise. It can also be recreated by installing the .deb file for any version in trusty including 2.17. ubuntu@host:~$ ls /tmp tmpHHbRkP ubuntu@sirrush:~$ sudo apt-get install libc6 sudo: unable to resolve host sirrush Reading package lists... Done Building dependency tree Reading state information... Done The following extra packages will be installed: libc-dev-bin libc6-dev Suggested packages: glibc-doc Recommended packages: manpages-dev The following packages will be upgraded: libc-dev-bin libc6 libc6-dev 3 upgraded, 0 newly installed, 0 to remove and 148 not upgraded. Need to get 6,714 kB of archives. After this operation, 6,144 B disk space will be freed. Do you want to continue? [Y/n] y Get:1 http://archive.ubuntu.com/ubuntu/ trusty-updates/main libc6-dev amd64 2.19-0ubuntu6.6 [1,910 kB] Get:2 http://archive.ubuntu.com/ubuntu/ trusty-updates/main libc-dev-bin amd64 2.19-0ubuntu6.6 [68.9 kB] Get:3 http://archive.ubuntu.com/ubuntu/ trusty-updates/main libc6 amd64 2.19-0ubuntu6.6 [4,735 kB] Fetched 6,714 kB in 0s (18.5 MB/s) Preconfiguring packages ... (Reading database ... 57798 files and directories currently installed.) Preparing to unpack .../libc6-dev_2.19-0ubuntu6.6_amd64.deb ... Unpacking libc6-dev:amd64 (2.19-0ubuntu6.6) over (2.19-0ubuntu6.3) ... Preparing to unpack .../libc-dev-bin_2.19-0ubuntu6.6_amd64.deb ... Unpacking libc-dev-bin (2.19-0ubuntu6.6) over (2.19-0ubuntu6.3) ... Preparing to unpack .../libc6_2.19-0ubuntu6.6_amd64.deb ... Unpacking libc6:amd64 (2.19-0ubuntu6.6) over (2.19-0ubuntu6.3) ... Processing triggers for man-db (2.6.7.1-1) ... Setting up libc6:amd64 (2.19-0ubuntu6.6) ... Setting up libc-dev-bin (2.19-0ubuntu6.6) ... Setting up libc6-dev:amd64 (2.19-0ubuntu6.6) ... Processing triggers for libc-bin (2.19-0ubuntu6.3) ... ubuntu@host:~$ ls /tmp ubuntu@host:~$ This is very recreatable. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/eglibc/+bug/1464442/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1466812] Re: aa-logprof crash
This line from your Dependenxies.txt indicates that one of the apparmor files has been modified; could you investigate this change? you may need to reinstall the package to get the pristine version of the file: python3-apparmor 2.8.95~2430-0ubuntu5.2 [modified: usr/lib/python3/dist- packages/apparmor/logparser.py] Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1466812 Title: aa-logprof crash Status in apparmor package in Ubuntu: New Bug description: aa-logprof crash after adding generic profile of apache2. Reading log entries from /var/log/syslog. Updating AppArmor profiles in /etc/apparmor.d. Traceback (most recent call last): File /usr/sbin/aa-logprof, line 54, in module apparmor.do_logprof_pass(logmark) File /usr/lib/python3/dist-packages/apparmor/aa.py, line 2280, in do_logprof_pass log = log_reader.read_log(logmark) File /usr/lib/python3/dist-packages/apparmor/logparser.py, line 373, in read_log self.add_event_to_tree(event) File /usr/lib/python3/dist-packages/apparmor/logparser.py, line 278, in add_event_to_tree rmask = rmask.replace('c', 'w') AttributeError: 'set' object has no attribute 'replace' ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: apparmor-utils 2.8.95~2430-0ubuntu5.2 ProcVersionSignature: Ubuntu 3.16.0-30.40~14.04.1-generic 3.16.7-ckt3 Uname: Linux 3.16.0-30-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.11 Architecture: amd64 Date: Fri Jun 19 12:37:54 2015 InstallationDate: Installed on 2015-04-23 (56 days ago) InstallationMedia: Ubuntu-Server 14.04.2 LTS Trusty Tahr - Release amd64 (20150218.1) ProcKernelCmdline: BOOT_IMAGE=/vmlinuz-3.16.0-30-generic root=/dev/mapper/system-root ro SourcePackage: apparmor Syslog: UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1466812/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1466103] Re: dnsmasq runs unconfined due to starting before apparmor on boot
I don't think stopped apparmor is going to do it -- the generic apparmor profiles are loaded via a sysv-init compatibility script. I think the job file that starts this dnsmasq instance needs to use apparmor load before starting the process: http://upstart.ubuntu.com/cookbook/#apparmor-load I hope this helps -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to dnsmasq in Ubuntu. https://bugs.launchpad.net/bugs/1466103 Title: dnsmasq runs unconfined due to starting before apparmor on boot Status in dnsmasq package in Ubuntu: Triaged Bug description: Description and behavior are identical to Bug #573315. However, the solution to that bug was to make a change to /etc/apparmor.d/usr.sbin.libvirtd. There is no longer an apparmor profile /etc/apparmor.d/usr.sbin.libvirtd. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/dnsmasq/+bug/1466103/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1464067] Re: package dh-apparmor 2.8.95~2430-0ubuntu5.1 failed to install/upgrade: package is in a very bad inconsistent state; you should reinstall it before attempting configu
How strange; you ought to be able to move forward from this by running sudo apt-get install --reinstall dh-apparmor then probably sudo apt- get -u dist-upgrade. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1464067 Title: package dh-apparmor 2.8.95~2430-0ubuntu5.1 failed to install/upgrade: package is in a very bad inconsistent state; you should reinstall it before attempting configuration Status in apparmor package in Ubuntu: New Bug description: just recently install a gutenprint and it is not fully installed... then I go to autoremove for remove unuse package. than I got this error... ProblemType: Package DistroRelease: Ubuntu 14.04 Package: dh-apparmor 2.8.95~2430-0ubuntu5.1 ProcVersionSignature: Ubuntu 3.13.0-54.91-generic 3.13.11-ckt20 Uname: Linux 3.13.0-54-generic i686 ApportVersion: 2.14.1-0ubuntu3.11 AptOrdering: libnuma1: Install dh-apparmor: Configure libnuma1: Configure Architecture: i386 Date: Thu Jun 11 08:54:53 2015 Dependencies: DuplicateSignature: package:dh-apparmor:2.8.95~2430-0ubuntu5.1:package is in a very bad inconsistent state; you should reinstall it before attempting configuration ErrorMessage: package is in a very bad inconsistent state; you should reinstall it before attempting configuration InstallationDate: Installed on 2015-03-12 (90 days ago) InstallationMedia: Ubuntu 14.04 LTS Trusty Tahr - Release i386 (20140417) PackageArchitecture: all ProcKernelCmdline: BOOT_IMAGE=/boot/vmlinuz-3.13.0-54-generic root=UUID=3db19a7b-ac50-40bc-be9b-f7295e60efad ro quiet splash vt.handoff=7 SourcePackage: apparmor Syslog: Jun 11 08:51:07 asep-M7x0S dbus[392]: [system] AppArmor D-Bus mediation is enabled Title: package dh-apparmor 2.8.95~2430-0ubuntu5.1 failed to install/upgrade: package is in a very bad inconsistent state; you should reinstall it before attempting configuration UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1464067/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1463621] Re: package modemmanager 1.4.8-1 failed to install/upgrade: sub-processo script post-installation instalado retornou estado de saída de erro 100
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to modemmanager in Ubuntu. https://bugs.launchpad.net/bugs/1463621 Title: package modemmanager 1.4.8-1 failed to install/upgrade: sub-processo script post-installation instalado retornou estado de saída de erro 100 Status in modemmanager package in Ubuntu: New Bug description: I dont know. ProblemType: Package DistroRelease: Ubuntu 15.10 Package: modemmanager 1.4.8-1 ProcVersionSignature: Ubuntu 3.19.0-18.18-generic 3.19.6 Uname: Linux 3.19.0-18-generic i686 ApportVersion: 2.17.3-0ubuntu4 Architecture: i386 Date: Tue Jun 9 20:27:58 2015 DuplicateSignature: package:modemmanager:1.4.8-1:sub-processo script post-installation instalado retornou estado de saída de erro 100 ErrorMessage: sub-processo script post-installation instalado retornou estado de saída de erro 100 InstallationDate: Installed on 2014-07-08 (336 days ago) InstallationMedia: Ubuntu 14.04 LTS Trusty Tahr - Release i386 (20140417) RelatedPackageVersions: dpkg 1.17.25ubuntu1 apt 1.0.9.10ubuntu1 SourcePackage: modemmanager Title: package modemmanager 1.4.8-1 failed to install/upgrade: sub-processo script post-installation instalado retornou estado de saída de erro 100 UpgradeStatus: Upgraded to wily on 2015-06-09 (0 days ago) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/modemmanager/+bug/1463621/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1463627] Re: Limiting the data size doesn't work
** Package changed: pam (Ubuntu) = linux (Ubuntu) -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to pam in Ubuntu. https://bugs.launchpad.net/bugs/1463627 Title: Limiting the data size doesn't work Status in linux package in Ubuntu: New Bug description: I'm using Ubuntu 15.10 dev with libpam-modules 1.1.8-3.1ubuntu3 and if I'm limiting the data size with ulimit -d 8192 and executing for example the testcase from this ticket ( https://bugs.launchpad.net/ubuntu/+source/glibc/+bug/1462853 ) I'm noticing that the data size can still be more than 8 MiB (in this case ~2 GiB). To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/linux/+bug/1463627/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1439771] Re: wpa_supplicant[874]: dbus: Failed to construct signal after 'suspend'
** Also affects: systemd (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to dbus in Ubuntu. https://bugs.launchpad.net/bugs/1439771 Title: wpa_supplicant[874]: dbus: Failed to construct signal after 'suspend' Status in dbus package in Ubuntu: Confirmed Status in systemd package in Ubuntu: New Bug description: The Wifi network can't connect after the wake up from suspend. Xubuntu 15.04 I'll post more useful details (journalctl log) as a comment to this bug report. ProblemType: Bug DistroRelease: Ubuntu 15.04 Package: dbus 1.8.12-1ubuntu5 Uname: Linux 4.0.0-04rc5-generic x86_64 ApportVersion: 2.17-0ubuntu1 Architecture: amd64 CurrentDesktop: XFCE Date: Thu Apr 2 18:18:56 2015 InstallationDate: Installed on 2015-03-27 (5 days ago) InstallationMedia: Xubuntu 15.04 Vivid Vervet - Beta amd64 (20150326) SourcePackage: dbus UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/dbus/+bug/1439771/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1459771] Re: Apparmor enforce mode not enforcing all profiles
*** This bug is a duplicate of bug 1378095 *** https://bugs.launchpad.net/bugs/1378095 A fix for this issue is in progress: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1449769 In the meantime you can hand-edit the policies to remove the complain flag and reload them with apparmor_parser --replace /etc/apparmor.d/... Sorry for the inconvenience. ** Information type changed from Private Security to Public ** This bug has been marked a duplicate of bug 1378095 aa-complain traceback when marking multiple profiles -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1459771 Title: Apparmor enforce mode not enforcing all profiles Status in apparmor package in Ubuntu: New Bug description: I'm having difficulties transferring over all my apparmor profiles into enforcing mode, (sudo aa-enforce /etc/apparmor.d/*) For some reason, when I enter them in manually one at a time it works however its still buggy with certain profiles that are listed in complain mode. Any help would be appreciated. I've copied over the terminal error messages with codes. See below. netuser-pc@netuser-pc:~$ sudo aa-enforce /etc/apparmor.d/* Profile for /etc/apparmor.d/abstractions not found, skipping Traceback (most recent call last): File /usr/sbin/aa-enforce, line 30, in module tool.cmd_enforce() File /usr/lib/python3/dist-packages/apparmor/tools.py, line 153, in cmd_enforce apparmor.read_profiles() File /usr/lib/python3/dist-packages/apparmor/aa.py, line 2564, in read_profiles read_profile(profile_dir + '/' + file, True) File /usr/lib/python3/dist-packages/apparmor/aa.py, line 2590, in read_profile profile_data = parse_profile_data(data, file, 0) File /usr/lib/python3/dist-packages/apparmor/aa.py, line 2843, in parse_profile_data store_list_var(filelist[file]['lvar'], list_var, value, var_operation) File /usr/lib/python3/dist-packages/apparmor/aa.py, line 3274, in store_list_var raise AppArmorException(_('An existing variable redefined: %s') % list_var) apparmor.common.AppArmorException: 'An existing variable redefined: @{MOZ_LIBDIR}' Copy of 20 profiles in complain mode that need to be altered to enforce. See below. 20 profiles are in complain mode. /sbin/klogd /sbin/syslog-ng /sbin/syslogd /usr/lib/chromium-browser/chromium-browser /usr/lib/chromium-browser/chromium-browser//chromium_browser_sandbox /usr/lib/chromium-browser/chromium-browser//lsb_release /usr/lib/chromium-browser/chromium-browser//xdgsettings /usr/lib/dovecot/deliver /usr/lib/dovecot/dovecot-auth /usr/lib/dovecot/imap /usr/lib/dovecot/imap-login /usr/lib/dovecot/managesieve-login /usr/lib/dovecot/pop3 /usr/lib/dovecot/pop3-login /usr/sbin/dovecot /usr/sbin/identd /usr/sbin/mdnsd /usr/sbin/nscd /usr/{sbin/traceroute,bin/traceroute.db} /{usr/,}bin/ping Any ideas? -Newaye To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1459771/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1458288] Re: Some exec appeair on kern.log but on apparmor_status not.
The profile=unconfined in the following line from the logs just means that the process which loaded the new profile is unconfined. The apparmor=STATUS operation=profile_load log entries are from the initscript or upstart scripts when they are loading the profiles before executing the program. audit: type=1400 audit(1432447057.243:13): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/bin/evince- thumbnailer pid=447 comm=apparmor_parser If the process loading policy were confined (I believe this is allowed, so long as the process has capability MAC_ADMIN in its policy and has this capability natively) then the confining profile would have been reported here, instead of unconfined. The important part to remember is that the log events reflect the process that is performing the operation. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1458288 Title: Some exec appeair on kern.log but on apparmor_status not. Status in apparmor package in Ubuntu: Invalid Bug description: Hi On kern.log some exec listing as unconfined but on apparmor_status not.What is the truth. $ tail -n 40 -f /var/log/kern.log May 24 08:57:38 192-168-0-3 kernel: [ 23.677258] input: HDA Intel Front Headphone as /devices/pci:00/:00:1b.0/sound/card0/input12 May 24 08:57:38 192-168-0-3 kernel: [ 26.435570] Adding 2084860k swap on /dev/mapper/192--168--0--102--vg-swap_1. Priority:-1 extents:1 across:2084860k FS May 24 08:57:38 192-168-0-3 kernel: [ 29.417288] EXT4-fs (dm-0): re-mounted. Opts: errors=remount-ro May 24 08:57:38 192-168-0-3 kernel: [ 30.101562] EXT4-fs (sda1): mounting ext2 file system using the ext4 subsystem May 24 08:57:38 192-168-0-3 kernel: [ 30.189338] EXT4-fs (sda1): mounted filesystem without journal. Opts: (null) May 24 08:57:38 192-168-0-3 kernel: [ 33.126316] audit: type=1400 audit(1432447037.263:2): apparmor=STATUS operation=profile_load profile=unconfined name=gst_plugin_scanner pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 33.626210] audit: type=1400 audit(1432447037.763:3): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/lib/lightdm/lightdm-guest-session pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 33.626246] audit: type=1400 audit(1432447037.763:4): apparmor=STATUS operation=profile_load profile=unconfined name=chromium pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 35.099402] audit: type=1400 audit(1432447039.235:5): apparmor=STATUS operation=profile_load profile=unconfined name=/sbin/dhclient pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 35.101412] audit: type=1400 audit(1432447039.239:6): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/lib/NetworkManager/nm-dhcp-client.action pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 35.103027] audit: type=1400 audit(1432447039.239:7): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/lib/NetworkManager/nm-dhcp-helper pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 35.104806] audit: type=1400 audit(1432447039.243:8): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/lib/connman/scripts/dhclient-script pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.089763] audit: type=1400 audit(1432447057.227:9): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/bin/evince pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.093877] audit: type=1400 audit(1432447057.231:10): apparmor=STATUS operation=profile_load profile=unconfined name=sanitized_helper pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.098328] audit: type=1400 audit(1432447057.235:11): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/bin/evince-previewer pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.100659] audit: type=1400 audit(1432447057.239:12): apparmor=STATUS operation=profile_load profile=unconfined name=sanitized_helper pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.104541] audit: type=1400 audit(1432447057.243:13): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/bin/evince-thumbnailer pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.106972] audit: type=1400 audit(1432447057.243:14): apparmor=STATUS operation=profile_load profile=unconfined name=sanitized_helper pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.114072] audit: type=1400 audit(1432447057.251:15): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/bin/irssi pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.122442] audit: type=1400
[Touch-packages] [Bug 1458288] Re: Some exec appeair on kern.log but on apparmor_status not.
** Changed in: apparmor (Ubuntu) Status: New = Invalid -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1458288 Title: Some exec appeair on kern.log but on apparmor_status not. Status in apparmor package in Ubuntu: Invalid Bug description: Hi On kern.log some exec listing as unconfined but on apparmor_status not.What is the truth. $ tail -n 40 -f /var/log/kern.log May 24 08:57:38 192-168-0-3 kernel: [ 23.677258] input: HDA Intel Front Headphone as /devices/pci:00/:00:1b.0/sound/card0/input12 May 24 08:57:38 192-168-0-3 kernel: [ 26.435570] Adding 2084860k swap on /dev/mapper/192--168--0--102--vg-swap_1. Priority:-1 extents:1 across:2084860k FS May 24 08:57:38 192-168-0-3 kernel: [ 29.417288] EXT4-fs (dm-0): re-mounted. Opts: errors=remount-ro May 24 08:57:38 192-168-0-3 kernel: [ 30.101562] EXT4-fs (sda1): mounting ext2 file system using the ext4 subsystem May 24 08:57:38 192-168-0-3 kernel: [ 30.189338] EXT4-fs (sda1): mounted filesystem without journal. Opts: (null) May 24 08:57:38 192-168-0-3 kernel: [ 33.126316] audit: type=1400 audit(1432447037.263:2): apparmor=STATUS operation=profile_load profile=unconfined name=gst_plugin_scanner pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 33.626210] audit: type=1400 audit(1432447037.763:3): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/lib/lightdm/lightdm-guest-session pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 33.626246] audit: type=1400 audit(1432447037.763:4): apparmor=STATUS operation=profile_load profile=unconfined name=chromium pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 35.099402] audit: type=1400 audit(1432447039.235:5): apparmor=STATUS operation=profile_load profile=unconfined name=/sbin/dhclient pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 35.101412] audit: type=1400 audit(1432447039.239:6): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/lib/NetworkManager/nm-dhcp-client.action pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 35.103027] audit: type=1400 audit(1432447039.239:7): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/lib/NetworkManager/nm-dhcp-helper pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 35.104806] audit: type=1400 audit(1432447039.243:8): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/lib/connman/scripts/dhclient-script pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.089763] audit: type=1400 audit(1432447057.227:9): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/bin/evince pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.093877] audit: type=1400 audit(1432447057.231:10): apparmor=STATUS operation=profile_load profile=unconfined name=sanitized_helper pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.098328] audit: type=1400 audit(1432447057.235:11): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/bin/evince-previewer pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.100659] audit: type=1400 audit(1432447057.239:12): apparmor=STATUS operation=profile_load profile=unconfined name=sanitized_helper pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.104541] audit: type=1400 audit(1432447057.243:13): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/bin/evince-thumbnailer pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.106972] audit: type=1400 audit(1432447057.243:14): apparmor=STATUS operation=profile_load profile=unconfined name=sanitized_helper pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.114072] audit: type=1400 audit(1432447057.251:15): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/bin/irssi pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.122442] audit: type=1400 audit(1432447057.259:16): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/bin/mediascanner-service-2.0 pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.136378] audit: type=1400 audit(1432447057.275:17): apparmor=STATUS operation=profile_load profile=unconfined name=/usr/bin/pidgin pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.136424] audit: type=1400 audit(1432447057.275:18): apparmor=STATUS operation=profile_load profile=unconfined name=launchpad_integration pid=447 comm=apparmor_parser May 24 08:57:38 192-168-0-3 kernel: [ 53.955321] cgroup: new mount options do not match the existing superblock, will be ignored May 24 08:57:39 192-168-0-3 kernel: [ 55.503792]
[Touch-packages] [Bug 1458014] Re: audit_printk_skb slowing down boot
It's highly unlikely that the audit_printk_skb() function is itself slowing down your boot; it is designed to operate with extremely low overhead, and the ratelimiting that is in effect here means that the slowest portion of the function, actually writing characters to the system log, is skipped entirely. Probably what is actually slow is recompiling AppArmor policies; this is an extremely computational heavy task that has been subject to extensive optimization. We're planning further caching efforts in the future to reduce the number of times that the policies must be recomputed. Chances are quite good a second reboot, immediately after this one, would run faster, since the profiles would probably not need to be rebuilt immediately. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1458014 Title: audit_printk_skb slowing down boot Status in apparmor package in Ubuntu: New Bug description: Subjectively, my system slowed down after the recent GRUB update. As you can see from the following, audit_printk_skb is consuming a lot of boot time: [ 13.243280] vboxdrv: Successfully loaded version 4.3.10_Ubuntu (interface 0x001a0007). [ 13.257947] vboxpci: IOMMU not found (not registered) [ 13.862999] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 13.865996] IPv6: ADDRCONF(NETDEV_UP): wlan0: link is not ready [ 14.195776] r8169 :04:00.0 eth0: link down [ 14.195796] r8169 :04:00.0 eth0: link down [ 14.195827] IPv6: ADDRCONF(NETDEV_UP): eth0: link is not ready [ 14.196138] IPv6: ADDRCONF(NETDEV_UP): eth0: link is not ready [ 15.769090] r8169 :04:00.0 eth0: link up [ 15.769097] IPv6: ADDRCONF(NETDEV_CHANGE): eth0: link becomes ready [ 16.223084] init: plymouth-upstart-bridge main process ended, respawning [ 42.424836] audit_printk_skb: 195 callbacks suppressed [ 42.424839] type=1400 audit(1431891089.974:77): apparmor=STATUS operation=profile_replace profile=unconfined name=/usr/lib/cups/backend/cups-pdf pid=2632 comm=apparmor_parser [ 42.424844] type=1400 audit(1431891089.974:78): apparmor=STATUS operation=profile_replace profile=unconfined name=/usr/sbin/cupsd pid=2632 comm=apparmor_parser [ 42.425185] type=1400 audit(1431891089.974:79): apparmor=STATUS operation=profile_replace profile=unconfined name=/usr/sbin/cupsd pid=2632 comm=apparmor_parser (END) ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: apparmor 2.8.95~2430-0ubuntu5.1 ProcVersionSignature: Ubuntu 3.13.0-53.88-generic 3.13.11-ckt19 Uname: Linux 3.13.0-53-generic i686 ApportVersion: 2.14.1-0ubuntu3.10 Architecture: i386 CurrentDesktop: Unity Date: Fri May 22 14:18:46 2015 EcryptfsInUse: Yes InstallationDate: Installed on 2014-04-29 (388 days ago) InstallationMedia: Ubuntu 14.04 LTS Trusty Tahr - Release i386 (20140417) ProcKernelCmdline: BOOT_IMAGE=/boot/vmlinuz-3.13.0-53-generic root=UUID=8cf458ab-4ff9-4505-9a16-27da1ea7ec10 ro quiet splash vt.handoff=7 SourcePackage: apparmor Syslog: UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1458014/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1457101] Re: Ubuntu 14.04 LTS with kernel 3.13.0-53 crashes
Try running apport-collect 1457101 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to powerd in Ubuntu. https://bugs.launchpad.net/bugs/1457101 Title: Ubuntu 14.04 LTS with kernel 3.13.0-53 crashes Status in Ubuntu One Infrastructure: New Status in powerd package in Ubuntu: Confirmed Bug description: After two last updates (I remember second one was also a kernel update) my Ubuntu has started sudden crashing, either desktop view freezes, sometimes sound which was played goes to fast circuit. Sometimes it crashes to full terminal screen, reporting kernel panic mode. I'm sorry I dont know how to find these crash reports from my Ubuntu, hope you can advice me. After crash, only thing possible is to reset my laptop manually. Ubuntu has also started to inform internal failure with powerd, and asks to report them to developers. I think I have send that report three times now. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntuone-infrastructure/+bug/1457101/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1456396] Re: Error on configuring
Try adding DEBIAN_FRONTEND=readline to the command line: # DEBIAN_FRONTEND=readline dpkg --configure libssl1.0.0 I suspect this isn't related to openssl. Thanks ** Changed in: openssl (Ubuntu) Status: New = Incomplete -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssl in Ubuntu. https://bugs.launchpad.net/bugs/1456396 Title: Error on configuring Status in openssl package in Ubuntu: Incomplete Bug description: I'm using Ubuntu 15.10 dev with libssl1.0.0 1.0.2a-1ubuntu1 and on upgrading the system I'm getting this error if libssl1.0.0 gets configured: root@ubuntu:~# dpkg --configure libssl1.0.0 Setting up libssl1.0.0:amd64 (1.0.2a-1ubuntu1) ... Checking for services that may need to be restarted...done. Checking for services that may need to be restarted...done. Checking init scripts... debconf: Unable to load Debconf::Element::Dialog. Failed because: Can't locate Debconf/Element/Dialog.pm in @INC (you may need to install the Debconf::Element::Dialog module) (@INC contains: /etc/perl /usr/local/lib/x86_64-linux-gnu/perl/5.20.2 /usr/local/share/perl/5.20.2 /usr/lib/x86_64-linux-gnu/perl5/5.20 /usr/share/perl5 /usr/lib/x86_64-linux-gnu/perl/5.20 /usr/share/perl/5.20 /usr/local/lib/site_perl .) at (eval 19) line 2, GEN1 line 2. BEGIN failed--compilation aborted at (eval 19) line 2, GEN1 line 2. Can't locate object method new via package Debconf::Element::Dialog (perhaps you forgot to load Debconf::Element::Dialog?) at /usr/share/perl5/Debconf/FrontEnd.pm line 68, GEN1 line 2. dpkg: error processing package libssl1.0.0:amd64 (--configure): subprocess installed post-installation script returned error exit status 2 Errors were encountered while processing: libssl1.0.0:amd64 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1456396/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1186662] Re: isc-dhcp-server fails to renew lease file
Nice find Anton; in the little I had inspected the code, I thought it would be solved by moving the db open until after the privileges had been dropped, but that would have significantly complicated the error handling for broken configurations/databases. This might still require the CAP_CHOWN capability in the AppArmor profile, but at least this would be squashed. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to isc-dhcp in Ubuntu. https://bugs.launchpad.net/bugs/1186662 Title: isc-dhcp-server fails to renew lease file Status in isc-dhcp package in Ubuntu: Triaged Status in isc-dhcp source package in Trusty: Confirmed Bug description: After raring upgrade, the dhcp server fails to renew lease file when it tries to (about every hour). The syslog says: dhcpd: Can't create new lease file: Permission denied It looks like a permission problem, because # chown -R dhcpd:dhcpd /var/lib/dhcp the above command temporarily solves the issue, until dhcpd is restarted: at that time, the ownership of the directory and the lease file is set back to root:root. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/isc-dhcp/+bug/1186662/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1284053] Re: Signature warning should include full repository name/path
This is unwieldy, I'd really like to know which repositories requested which keys: Reading package lists... Done W: There is no public key available for the following key IDs: 7638D0442B90D010 W: There is no public key available for the following key IDs: 7638D0442B90D010 W: There is no public key available for the following key IDs: 7638D0442B90D010 W: There is no public key available for the following key IDs: 9D6D8F6BC857C906 W: There is no public key available for the following key IDs: 7638D0442B90D010 W: There is no public key available for the following key IDs: 9D6D8F6BC857C906 W: There is no public key available for the following key IDs: 7638D0442B90D010 W: GPG error: http://ppa.launchpad.net vivid Release: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 85504128ECF1204C W: There is no public key available for the following key IDs: 7638D0442B90D010 I'd love to see this addressed. Thanks! -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apt in Ubuntu. https://bugs.launchpad.net/bugs/1284053 Title: Signature warning should include full repository name/path Status in apt package in Ubuntu: Triaged Bug description: Most people nowadays can collect quite a few APT repositories hosted on the same server (ppa.launchpad.net, for instance). In case the signature check on one of these repositories fails, apt-get just prints this: W: GPG error: http://ppa.launchpad.net saucy Release: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY blah Unfortunately, this informs the user only that one of the repositories on ppa.launchpad.net has a missing key. But not which one. It could be any of them. Tracking down the specific signature (blah in my example) is difficult so the only practical option is to disable the repositories one by one until the warning disappears. Which is not only annoying to the user but also puts unnecessary load on the servers which get repeatedly hit by 'apt-get update'. I therefore suggest to change the warning to include the full path of the repository. Example: W: GPG error: http://ppa.launchpad.net/ubuntu-wine/ppa/ubuntu saucy Release: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY blah This would inform the user which repository needs a key. Other options (such as printing the repository's name are also valid, of course). PS: I am aware that apt-add-repository automatically adds the key but this magic only works on Launchpad whereas the problem is one in general. Furthermore, you don't always get to use apt-add-repository for various reasons. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apt/+bug/1284053/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1455576] Re: Xorg freeze
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1455576 Title: Xorg freeze Status in xorg package in Ubuntu: New Bug description: Xorg freeze kernel is also not available for SSH ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: xorg 1:7.7+1ubuntu8.1 ProcVersionSignature: Ubuntu 3.13.0-52.86-generic 3.13.11-ckt18 Uname: Linux 3.13.0-52-generic i686 NonfreeKernelModules: fglrx .tmp.unity.support.test.0: ApportVersion: 2.14.1-0ubuntu3.10 Architecture: i386 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: None CurrentDesktop: X-Cinnamon Date: Fri May 15 19:41:24 2015 DistUpgraded: Fresh install DistroCodename: trusty DistroVariant: ubuntu DkmsStatus: fglrx, 14.200, 3.13.0-49-generic, i686: installed fglrx, 14.200, 3.13.0-51-generic, i686: installed fglrx, 14.200, 3.13.0-52-generic, i686: installed ExtraDebuggingInterest: Yes, if not too technical GpuHangFrequency: This is the first time GraphicsCard: Advanced Micro Devices, Inc. [AMD/ATI] Cape Verde XT [Radeon HD 7770/8760 / R7 250X] [1002:683d] (prog-if 00 [VGA controller]) Subsystem: PC Partner Limited / Sapphire Technology Device [174b:e244] InstallationDate: Installed on 2015-04-12 (32 days ago) InstallationMedia: Ubuntu 14.04.1 LTS Trusty Tahr - Release i386 (20140722.2) MachineType: Gigabyte Technology Co., Ltd. To be filled by O.E.M. ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.13.0-52-generic root=UUID=32a7f783-bc9a-43e1-b5a1-22dd6c7c1df5 ro quiet splash vt.handoff=7 SourcePackage: xorg Symptom: display Title: Xorg freeze UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 04/09/2015 dmi.bios.vendor: American Megatrends Inc. dmi.bios.version: F6 dmi.board.asset.tag: To be filled by O.E.M. dmi.board.name: F2A88X-D3H dmi.board.vendor: Gigabyte Technology Co., Ltd. dmi.board.version: x.x dmi.chassis.asset.tag: To Be Filled By O.E.M. dmi.chassis.type: 3 dmi.chassis.vendor: Gigabyte Technology Co., Ltd. dmi.chassis.version: To Be Filled By O.E.M. dmi.modalias: dmi:bvnAmericanMegatrendsInc.:bvrF6:bd04/09/2015:svnGigabyteTechnologyCo.,Ltd.:pnTobefilledbyO.E.M.:pvrTobefilledbyO.E.M.:rvnGigabyteTechnologyCo.,Ltd.:rnF2A88X-D3H:rvrx.x:cvnGigabyteTechnologyCo.,Ltd.:ct3:cvrToBeFilledByO.E.M.: dmi.product.name: To be filled by O.E.M. dmi.product.version: To be filled by O.E.M. dmi.sys.vendor: Gigabyte Technology Co., Ltd. version.compiz: compiz 1:0.9.11.3+14.04.20150313-0ubuntu1 version.fglrx-installer: fglrx-installer N/A version.libdrm2: libdrm2 2.4.60-2~ubuntu14.04.1 version.libgl1-mesa-dri: libgl1-mesa-dri 10.1.3-0ubuntu0.4 version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx 10.1.3-0ubuntu0.4 version.xserver-xorg-core: xserver-xorg-core 2:1.15.1-0ubuntu2.7 version.xserver-xorg-input-evdev: xserver-xorg-input-evdev 1:2.8.2-1ubuntu2 version.xserver-xorg-video-ati: xserver-xorg-video-ati 1:7.3.0-1ubuntu3.1 version.xserver-xorg-video-intel: xserver-xorg-video-intel 2:2.99.910-0ubuntu1.6 version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau 1:1.0.10-1ubuntu2 xserver.bootTime: Fri May 15 19:40:56 2015 xserver.configfile: default xserver.devices: inputPower Button KEYBOARD, id 6 inputPower Button KEYBOARD, id 7 inputA4TECH USB DeviceKEYBOARD, id 8 inputA4TECH USB DeviceMOUSE, id 9 inputAT Translated Set 2 keyboard KEYBOARD, id 10 xserver.errors: open /dev/dri/card0: No such file or directory AIGLX error: failed to open /usr/X11R6/lib/modules/dri/fglrx_dri.so, error[/usr/X11R6/lib/modules/dri/fglrx_dri.so: cannot open shared object file: No such file or directory] xserver.logfile: /var/log/Xorg.0.log xserver.version: 2:1.15.1-0ubuntu2.7 xserver.video_driver: fglrx To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1455576/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1455633] Re: Xorg freeze
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1455633 Title: Xorg freeze Status in xorg package in Ubuntu: New Bug description: driver ATI AMD AThlon x4 860k F2A88XD3H Ram 4Gb Ati radeon 7700 SSD 120 GB not work ubuntu. ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: xorg 1:7.7+1ubuntu8.1 ProcVersionSignature: Ubuntu 3.16.0-37.51~14.04.1-generic 3.16.7-ckt9 Uname: Linux 3.16.0-37-generic x86_64 NonfreeKernelModules: fglrx .tmp.unity.support.test.0: ApportVersion: 2.14.1-0ubuntu3.10 Architecture: amd64 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: None Date: Fri May 15 22:40:36 2015 DistUpgraded: Fresh install DistroCodename: trusty DistroVariant: ubuntu DkmsStatus: fglrx-core, 14.501, 3.16.0-37-generic, x86_64: installed GpuHangFrequency: I don't know GraphicsCard: Advanced Micro Devices, Inc. [AMD/ATI] Cape Verde XT [Radeon HD 7770/8760 / R7 250X] [1002:683d] (prog-if 00 [VGA controller]) Subsystem: PC Partner Limited / Sapphire Technology Device [174b:e244] InstallationDate: Installed on 2015-05-15 (0 days ago) InstallationMedia: Ubuntu 14.04.2 LTS Trusty Tahr - Release amd64 (20150218.1) MachineType: Gigabyte Technology Co., Ltd. To be filled by O.E.M. ProcEnviron: LANGUAGE=ru TERM=xterm PATH=(custom, no user) LANG=ru_RU.UTF-8 SHELL=/bin/bash ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.16.0-37-generic root=UUID=ede4a3b4-5c42-4fa7-99e9-ed499bf09687 ro quiet splash vt.handoff=7 SourcePackage: xorg Symptom: display Title: Xorg freeze UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 04/09/2015 dmi.bios.vendor: American Megatrends Inc. dmi.bios.version: F6 dmi.board.asset.tag: To be filled by O.E.M. dmi.board.name: F2A88X-D3H dmi.board.vendor: Gigabyte Technology Co., Ltd. dmi.board.version: x.x dmi.chassis.asset.tag: To Be Filled By O.E.M. dmi.chassis.type: 3 dmi.chassis.vendor: Gigabyte Technology Co., Ltd. dmi.chassis.version: To Be Filled By O.E.M. dmi.modalias: dmi:bvnAmericanMegatrendsInc.:bvrF6:bd04/09/2015:svnGigabyteTechnologyCo.,Ltd.:pnTobefilledbyO.E.M.:pvrTobefilledbyO.E.M.:rvnGigabyteTechnologyCo.,Ltd.:rnF2A88X-D3H:rvrx.x:cvnGigabyteTechnologyCo.,Ltd.:ct3:cvrToBeFilledByO.E.M.: dmi.product.name: To be filled by O.E.M. dmi.product.version: To be filled by O.E.M. dmi.sys.vendor: Gigabyte Technology Co., Ltd. version.compiz: compiz 1:0.9.11.3+14.04.20150313-0ubuntu1 version.fglrx-installer: fglrx-installer N/A version.ia32-libs: ia32-libs N/A version.libdrm2: libdrm2 2.4.60-2~ubuntu14.04.1 version.libgl1-mesa-dri: libgl1-mesa-dri N/A version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx N/A version.xserver-xorg-core: xserver-xorg-core N/A version.xserver-xorg-input-evdev: xserver-xorg-input-evdev N/A version.xserver-xorg-video-ati: xserver-xorg-video-ati N/A version.xserver-xorg-video-intel: xserver-xorg-video-intel N/A version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau N/A xserver.bootTime: Fri May 15 22:38:26 2015 xserver.configfile: default xserver.devices: inputPower Button KEYBOARD, id 6 inputPower Button KEYBOARD, id 7 inputA4TECH USB DeviceKEYBOARD, id 8 inputA4TECH USB DeviceMOUSE, id 9 inputAT Translated Set 2 keyboard KEYBOARD, id 10 xserver.errors: open /dev/dri/card0: No such file or directory AIGLX error: failed to open /usr/X11R6/lib64/modules/dri/fglrx_dri.so, error[/usr/X11R6/lib64/modules/dri/fglrx_dri.so: cannot open shared object file: No such file or directory] AIGLX error: failed to open /usr/lib64/dri/fglrx_dri.so, error[/usr/lib64/dri/fglrx_dri.so: cannot open shared object file: No such file or directory] AIGLX error: failed to open /usr/X11R6/lib/modules/dri/fglrx_dri.so, error[/usr/X11R6/lib/modules/dri/fglrx_dri.so: cannot open shared object file: No such file or directory] xserver.logfile: /var/log/Xorg.0.log xserver.version: 2:1.16.0-1ubuntu1.2~trusty2 xserver.video_driver: fglrx To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1455633/+subscriptions -- Mailing list:
[Touch-packages] [Bug 1455157] Re: Xorg freeze
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1455157 Title: Xorg freeze Status in xorg package in Ubuntu: New Bug description: flashplayar+firefox=crash x.org problem in flashplugin his not stable . ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: xorg 1:7.7+1ubuntu8.1 ProcVersionSignature: Ubuntu 3.13.0-52.86-generic 3.13.11-ckt18 Uname: Linux 3.13.0-52-generic i686 NonfreeKernelModules: fglrx .tmp.unity.support.test.0: ApportVersion: 2.14.1-0ubuntu3.10 Architecture: i386 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: None CurrentDesktop: X-Cinnamon Date: Thu May 14 19:59:19 2015 DistUpgraded: Fresh install DistroCodename: trusty DistroVariant: ubuntu DkmsStatus: fglrx, 14.200, 3.13.0-49-generic, i686: installed fglrx, 14.200, 3.13.0-51-generic, i686: installed fglrx, 14.200, 3.13.0-52-generic, i686: installed ExtraDebuggingInterest: I just need to know a workaround GpuHangFrequency: This is the first time GraphicsCard: Advanced Micro Devices, Inc. [AMD/ATI] Cape Verde XT [Radeon HD 7770/8760 / R7 250X] [1002:683d] (prog-if 00 [VGA controller]) Subsystem: PC Partner Limited / Sapphire Technology Device [174b:e244] InstallationDate: Installed on 2015-04-12 (31 days ago) InstallationMedia: Ubuntu 14.04.1 LTS Trusty Tahr - Release i386 (20140722.2) MachineType: Gigabyte Technology Co., Ltd. To be filled by O.E.M. ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.13.0-52-generic root=UUID=32a7f783-bc9a-43e1-b5a1-22dd6c7c1df5 ro quiet splash vt.handoff=7 SourcePackage: xorg Symptom: display Title: Xorg freeze UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 04/09/2015 dmi.bios.vendor: American Megatrends Inc. dmi.bios.version: F6 dmi.board.asset.tag: To be filled by O.E.M. dmi.board.name: F2A88X-D3H dmi.board.vendor: Gigabyte Technology Co., Ltd. dmi.board.version: x.x dmi.chassis.asset.tag: To Be Filled By O.E.M. dmi.chassis.type: 3 dmi.chassis.vendor: Gigabyte Technology Co., Ltd. dmi.chassis.version: To Be Filled By O.E.M. dmi.modalias: dmi:bvnAmericanMegatrendsInc.:bvrF6:bd04/09/2015:svnGigabyteTechnologyCo.,Ltd.:pnTobefilledbyO.E.M.:pvrTobefilledbyO.E.M.:rvnGigabyteTechnologyCo.,Ltd.:rnF2A88X-D3H:rvrx.x:cvnGigabyteTechnologyCo.,Ltd.:ct3:cvrToBeFilledByO.E.M.: dmi.product.name: To be filled by O.E.M. dmi.product.version: To be filled by O.E.M. dmi.sys.vendor: Gigabyte Technology Co., Ltd. version.compiz: compiz 1:0.9.11.3+14.04.20150313-0ubuntu1 version.fglrx-installer: fglrx-installer N/A version.libdrm2: libdrm2 2.4.60-2~ubuntu14.04.1 version.libgl1-mesa-dri: libgl1-mesa-dri 10.1.3-0ubuntu0.4 version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx 10.1.3-0ubuntu0.4 version.xserver-xorg-core: xserver-xorg-core 2:1.15.1-0ubuntu2.7 version.xserver-xorg-input-evdev: xserver-xorg-input-evdev 1:2.8.2-1ubuntu2 version.xserver-xorg-video-ati: xserver-xorg-video-ati 1:7.3.0-1ubuntu3.1 version.xserver-xorg-video-intel: xserver-xorg-video-intel 2:2.99.910-0ubuntu1.6 version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau 1:1.0.10-1ubuntu2 xserver.bootTime: Thu May 14 19:56:59 2015 xserver.configfile: default xserver.devices: inputPower Button KEYBOARD, id 6 inputPower Button KEYBOARD, id 7 inputA4TECH USB DeviceKEYBOARD, id 8 inputA4TECH USB DeviceMOUSE, id 9 inputAT Translated Set 2 keyboard KEYBOARD, id 10 xserver.errors: open /dev/dri/card0: No such file or directory AIGLX error: failed to open /usr/X11R6/lib/modules/dri/fglrx_dri.so, error[/usr/X11R6/lib/modules/dri/fglrx_dri.so: cannot open shared object file: No such file or directory] xserver.logfile: /var/log/Xorg.0.log xserver.version: 2:1.15.1-0ubuntu2.7 xserver.video_driver: fglrx To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1455157/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1454463] Re: CUPS not allowed to mknod to /var/log by apparmor
Great, I'm glad that was it! Have fun. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to cups in Ubuntu. https://bugs.launchpad.net/bugs/1454463 Title: CUPS not allowed to mknod to /var/log by apparmor Status in cups package in Ubuntu: Invalid Bug description: I have a two-machine network, both running 14.04.1 but mostly updated. CUPS version is 1.7.2-0ubuntu1 Machine A - has printer attached Machine B - printing to A doesn't work via CUPS I cannot print to the CUPS-managed printer attached to A from B, except with a few apps which see the printer directly via avahi (e.g. Evince). I can print to the printer from A. /var/log/syslog on B shows: ay 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server kernel: [47923.441374] type=1400 audit(1431474629.549:811): apparmor=DENIED operation=mknod profile=/usr/sbin/cupsd name=/data/var/cache/cups/job.cache.N pid=7814 comm=cupsd requested_mask=c denied_mask=c fsuid=0 ouid=0 May 13 09:50:29 server kernel: [47923.441413] type=1400 audit(1431474629.549:812): apparmor=DENIED operation=mknod profile=/usr/sbin/cupsd name=/data/var/log/cups/error_log pid=7814 comm=cupsd requested_mask=c denied_mask=c fsuid=0 ouid=0 May 13 09:50:29 server kernel: [47923.441421] type=1400 audit(1431474629.549:813): apparmor=DENIED operation=chown profile=/usr/sbin/cupsd name=/data/var/log/cups/ pid=7814 comm=cupsd requested_mask=w denied_mask=w fsuid=0 ouid=0 May 13 09:50:29 server kernel: [47923.441444] type=1400 audit(1431474629.549:814): apparmor=DENIED operation=mknod profile=/usr/sbin/cupsd name=/data/var/log/cups/error_log pid=7814 comm=cupsd requested_mask=c denied_mask=c fsuid=0 ouid=0 May 13 09:50:29 server kernel: [47923.706282] type=1400 audit(1431474629.817:815): apparmor=STATUS operation=profile_replace profile=unconfined name=/usr/lib/cups/backend/cups-pdf pid=16874 comm=apparmor_parser May 13 09:50:29 server kernel: [47923.706551] type=1400 audit(1431474629.817:816): apparmor=STATUS operation=profile_replace profile=unconfined name=/usr/sbin/cupsd pid=16874 comm=apparmor_parser May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/access_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/page_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server kernel: [47923.710922] type=1400 audit(1431474629.821:817): apparmor=DENIED operation=mknod profile=/usr/sbin/cupsd name=/data/var/log/cups/access_log pid=16884 comm=cupsd requested_mask=c denied_mask=c fsuid=0 ouid=0 May 13 09:50:29 server kernel: [47923.710931] type=1400 audit(1431474629.821:818): apparmor=DENIED operation=chown profile=/usr/sbin/cupsd name=/data/var/log/cups/ pid=16884 comm=cupsd requested_mask=w denied_mask=w fsuid=0 ouid=0 May 13 09:50:29 server kernel: [47923.710964] type=1400 audit(1431474629.821:819): apparmor=DENIED operation=mknod profile=/usr/sbin/cupsd name=/data/var/log/cups/access_log pid=16884 comm=cupsd requested_mask=c denied_mask=c fsuid=0 ouid=0 May 13 09:50:29 server kernel: [47923.710985] type=1400 audit(1431474629.821:820): apparmor=DENIED operation=mknod profile=/usr/sbin/cupsd name=/data/var/log/cups/error_log pid=16884 comm=cupsd requested_mask=c denied_mask=c fsuid=0 ouid=0 Google search yields similar but significantly different (and ancient) bugs. For example
[Touch-packages] [Bug 861137] Re: Openssl TLS errors while connecting to SSLv3 sites
Patrick, I suggest filing a new bug; this bug is about TLS errors while connecting to SSLv3 sites, but the site you listed specifically does not support SSLv3: https://www.ssllabs.com/ssltest/analyze.html?d=auslandsjahr%2dusa.coms=104.28.16.100latest Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssl in Ubuntu. https://bugs.launchpad.net/bugs/861137 Title: Openssl TLS errors while connecting to SSLv3 sites Status in openssl package in Ubuntu: Confirmed Bug description: I upgraded to Oneiric Ocelot beta1. OpenSSL version is 1.0.0e 6 Sep 2011 Now, when I connect to certain HTTPs servers with wget or curl I get a TLS error. With wget : OpenSSL: error:14077438:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error With curl : curl: (35) error:14077438:SSL routines:SSL23_GET_SERVER_HELLO:tlsv1 alert internal error In wget, this can be fixed by specifying --secure-protocol=sslv3 option In curl, this can be fixed by specifying -sslv3 option The issue is that the automatic check for the version seems to be failing. This is working fine in Natty systems using older versions of openssl. The impact of this will be in scripts using curl, wget etc. which will start failing after an upgrade. Ubuntu version Description: Ubuntu oneiric (development branch) Release: 11.10 OpenSSL version : OpenSSL 1.0.0e 6 Sep 2011 openssl: Installed: 1.0.0e-2ubuntu2 Candidate: 1.0.0e-2ubuntu2 Version table: *** 1.0.0e-2ubuntu2 0 500 http://us.archive.ubuntu.com/ubuntu/ oneiric/main amd64 Packages 100 /var/lib/dpkg/status To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/861137/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1450168] Re: Map data should be shared between apps
Mardy, AppArmor always allows directory execute access. /foo/directory/ r, is needed to enumerate files in the directory. /foo/directory/* r, is needed to access the files in the directory, regardless if the names were guessed or read via getdents(2). -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor-easyprof-ubuntu in Ubuntu. https://bugs.launchpad.net/bugs/1450168 Title: Map data should be shared between apps Status in apparmor-easyprof-ubuntu package in Ubuntu: New Status in qtlocation-opensource-src package in Ubuntu: New Bug description: The libqtgeoservices_osm.so plugin gets loaded in the same process as the application using it, and stores all the map tiles into ~/.cache /click-package/ This means that different apps will be unable to share the data, leading to wasted filesystem space. I suggest to modify the plugin so that: 1) Tiles are stored in a common place (and apparmor rules are relaxed to allow read access to that): ~/.cache/libqtgeoservices_osm/, for example 2) Tile downloads are managed by a separate service, started on demand. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor-easyprof-ubuntu/+bug/1450168/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1454173] Re: systemd creashes by simple typo
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to systemd in Ubuntu. https://bugs.launchpad.net/bugs/1454173 Title: systemd creashes by simple typo Status in systemd package in Ubuntu: New Bug description: We simple crash systemd by # cat /etc/systemd/system/crash.service [Unit] Description = Crash Me [Service] ExecStartPre =- /usr/bin/printf pre ExecStart= /usr/bin/printf MAIN # systemctl daemon-reload # systemctl start crash Broadcast message from systemd-journald@infra2 (Tue 2015-05-12 09:28:18 UTC): systemd[1]: Caught ABRT, dumped core as pid 4471. Broadcast message from systemd-journald@infra2 (Tue 2015-05-12 09:28:18 UTC): systemd[1]: Freezing execution. Failed to start crash.service: Connection reset by peer Jeah. It is all because of the Typo in ExecStartPre. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1454173/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1454057] Re: mounts are shared by default on ubuntu 15.04
Related: http://cgit.freedesktop.org/systemd/systemd/commit/?id=b3ac5f8cb98757416d8660023d6564a7c411f0a0 ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to systemd in Ubuntu. https://bugs.launchpad.net/bugs/1454057 Title: mounts are shared by default on ubuntu 15.04 Status in systemd package in Ubuntu: New Bug description: Ubuntu 15.04: nir@reed:~$ grep '/ / ' /proc/self/mountinfo 21 0 8:5 / / rw,relatime shared:1 - ext4 /dev/disk/by-uuid/70f9850c-8ebd-4881-a504-e14ec8d37f66 rw,discard,errors=remount-ro,data=ordered Ubuntu 14.10: nir@pilgrim:~$ grep '/ / ' /proc/self/mountinfo 21 0 8:1 / / rw,relatime - ext4 /dev/disk/by-uuid/1d8ff8a8-6026-48dd-b6ce-e52b46c1f33d rw,errors=remount-ro,data=ordered This breaks CLONE_NEWNS and may present a security threat since process' private mounts are viewable to all and will persist after the process exits. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/systemd/+bug/1454057/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1454422] Re: package libflite1 (not installed) failed to install/upgrade: cannot copy extracted data for './usr/lib/x86_64-linux-gnu/libflite_cmu_us_kal.so.1.4' to '/usr/lib/x86_
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to flite in Ubuntu. https://bugs.launchpad.net/bugs/1454422 Title: package libflite1 (not installed) failed to install/upgrade: cannot copy extracted data for './usr/lib/x86_64-linux- gnu/libflite_cmu_us_kal.so.1.4' to '/usr/lib/x86_64-linux- gnu/libflite_cmu_us_kal.so.1.4.dpkg-new': unexpected end of file or stream Status in flite package in Ubuntu: New Bug description: Dear Sir Please check this error ProblemType: Package DistroRelease: Ubuntu 15.04 Package: libflite1 (not installed) ProcVersionSignature: Ubuntu 3.19.0-15.15-generic 3.19.3 Uname: Linux 3.19.0-15-generic x86_64 NonfreeKernelModules: wl ApportVersion: 2.17.2-0ubuntu1 Architecture: amd64 Date: Wed May 13 03:43:05 2015 DuplicateSignature: package:libflite1:(not installed):cannot copy extracted data for './usr/lib/x86_64-linux-gnu/libflite_cmu_us_kal.so.1.4' to '/usr/lib/x86_64-linux-gnu/libflite_cmu_us_kal.so.1.4.dpkg-new': unexpected end of file or stream ErrorMessage: cannot copy extracted data for './usr/lib/x86_64-linux-gnu/libflite_cmu_us_kal.so.1.4' to '/usr/lib/x86_64-linux-gnu/libflite_cmu_us_kal.so.1.4.dpkg-new': unexpected end of file or stream InstallationDate: Installed on 2015-05-13 (0 days ago) InstallationMedia: Ubuntu 15.04 Vivid Vervet - Release amd64 (20150422) RelatedPackageVersions: dpkg 1.17.25ubuntu1 apt 1.0.9.7ubuntu4 SourcePackage: flite Title: package libflite1 (not installed) failed to install/upgrade: cannot copy extracted data for './usr/lib/x86_64-linux-gnu/libflite_cmu_us_kal.so.1.4' to '/usr/lib/x86_64-linux-gnu/libflite_cmu_us_kal.so.1.4.dpkg-new': unexpected end of file or stream UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/flite/+bug/1454422/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1454450] Re: Bluetooth mouse laggy and erratic
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to bluez in Ubuntu. https://bugs.launchpad.net/bugs/1454450 Title: Bluetooth mouse laggy and erratic Status in bluez package in Ubuntu: New Bug description: I installed Ubuntu 15.04 (64 bit) on a DELL XPS 13 (model 9343, bios A03) notebook. I use a DELL bluetooth mouse but sometimes it behaves erratically (laggy, jumpy). What could be causing that? Is there a fiz for that? I am attaching below some info on my system. Thank you. cribari@darwin4:~$ uname -a; lspci -nnk | grep -iA2 net; lsusb; dmesg | grep -i bluetooth; dmesg | grep -i firmware; lsmod | grep bluetooth Linux darwin4 3.19.0-17-generic #17-Ubuntu SMP Wed May 6 16:46:12 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux 02:00.0 Network controller [0280]: Broadcom Corporation BCM4352 802.11ac Wireless Network Adapter [14e4:43b1] (rev 03) Subsystem: Dell Device [1028:0019] Kernel driver in use: wl Bus 003 Device 002: ID 8087:8001 Intel Corp. Bus 003 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub Bus 002 Device 001: ID 1d6b:0003 Linux Foundation 3.0 root hub Bus 001 Device 004: ID 0c45:670c Microdia Bus 001 Device 003: ID 04f3:20d0 Elan Microelectronics Corp. Bus 001 Device 002: ID 0a5c:216f Broadcom Corp. Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub [2.174367] Bluetooth: Core ver 2.20 [2.174669] Bluetooth: HCI device and connection manager initialized [2.174792] Bluetooth: HCI socket layer initialized [2.174795] Bluetooth: L2CAP socket layer initialized [2.175449] Bluetooth: SCO socket layer initialized [2.592936] Bluetooth: hci0: BCM: patching hci_ver=06 hci_rev=1624 lmp_ver=06 lmp_subver=220e [3.203438] Bluetooth: hci0: BCM: firmware hci_ver=06 hci_rev=1624 lmp_ver=06 lmp_subver=220e [3.542418] Bluetooth: BNEP (Ethernet Emulation) ver 1.3 [3.542421] Bluetooth: BNEP filters: protocol multicast [3.542425] Bluetooth: BNEP socket layer initialized [3.551641] Bluetooth: RFCOMM TTY layer initialized [3.551649] Bluetooth: RFCOMM socket layer initialized [3.551654] Bluetooth: RFCOMM ver 1.11 [ 26.569283] Bluetooth: HIDP (Human Interface Emulation) ver 1.2 [ 26.569287] Bluetooth: HIDP socket layer initialized [ 26.576971] input: Dell Travel Mouse WM524 as /devices/pci:00/:00:14.0/usb1/1-3/1-3:1.0/bluetooth/hci0/hci0:11/0005:046D:B00E.0003/input/input15 [ 26.577172] hid-generic 0005:046D:B00E.0003: input,hidraw2: BLUETOOTH HID v8.00 Mouse [Dell Travel Mouse WM524] on ac:d1:b8:c0:6f:5c [ 72.448281] input: Dell Travel Mouse WM524 as /devices/pci:00/:00:14.0/usb1/1-3/1-3:1.0/bluetooth/hci0/hci0:12/0005:046D:B00E.0004/input/input16 [ 72.448526] hid-generic 0005:046D:B00E.0004: input,hidraw2: BLUETOOTH HID v8.00 Mouse [Dell Travel Mouse WM524] on ac:d1:b8:c0:6f:5c [ 2994.842547] input: Dell Travel Mouse WM524 as /devices/pci:00/:00:14.0/usb1/1-3/1-3:1.0/bluetooth/hci0/hci0:13/0005:046D:B00E.0005/input/input17 [ 2994.842810] hid-generic 0005:046D:B00E.0005: input,hidraw2: BLUETOOTH HID v8.00 Mouse [Dell Travel Mouse WM524] on ac:d1:b8:c0:6f:5c [ 3694.214037] Bluetooth: hci0: BCM: patching hci_ver=06 hci_rev=1000 lmp_ver=06 lmp_subver=220e [ 3694.861578] Bluetooth: hci0: BCM: firmware hci_ver=06 hci_rev=1624 lmp_ver=06 lmp_subver=220e [ 3811.777260] input: Dell Travel Mouse WM524 as /devices/pci:00/:00:14.0/usb1/1-3/1-3:1.0/bluetooth/hci0/hci0:11/0005:046D:B00E.0006/input/input20 [ 3811.777571] hid-generic 0005:046D:B00E.0006: input,hidraw2: BLUETOOTH HID v8.00 Mouse [Dell Travel Mouse WM524] on ac:d1:b8:c0:6f:5c [ 5579.876192] Modules linked in: huawei_cdc_ncm cdc_wdm cdc_ncm option usb_wwan usbserial usbnet mii uas usb_storage hid_generic hidp nvram msr binfmt_misc rfcomm bnep nls_iso8859_1 intel_rapl iosf_mbi x86_pkg_temp_thermal dell_wmi sparse_keymap intel_powerclamp coretemp kvm_intel kvm crct10dif_pclmul dell_laptop dcdbas btusb crc32_pclmul bluetooth ghash_clmulni_intel hid_multitouch aesni_intel aes_x86_64 lrw uvcvideo gf128mul videobuf2_vmalloc glue_helper wl(POE) videobuf2_memops ablk_helper videobuf2_core cryptd v4l2_common videodev media joydev i915_bpo serio_raw i915 dell_led rtsx_pci_ms intel_ips memstick snd_hda_codec_realtek snd_soc_rt286 snd_hda_codec_generic cfg80211 snd_soc_core drm_kms_helper mei_me lpc_ich shpchp mei
[Touch-packages] [Bug 1454463] Re: CUPS not allowed to mknod to /var/log by apparmor
I noticed the following error early in the logs: May 13 09:50:29 server kernel: [47923.441413] type=1400 audit(1431474629.549:812): apparmor=DENIED operation=mknod profile=/usr/sbin/cupsd name=/data/var/log/cups/error_log pid=7814 comm=cupsd requested_mask=c denied_mask=c fsuid=0 ouid=0 This looks a lot like you have a symlink from /var to /data/var -- is this correct? what other symlinks do you have on your system? You can rewrite apparmor policy in a single place to handle these kinds of symlinks using the 'alias' directive; put lines like: alias /var/ - /data/var/ into your /etc/apparmor.d/tunables/alias file and then reload policies with apparmor_parser --replace /etc/apparmor.d/ Then restart cups and see if it is allowed to access its logs again. Thanks ** Changed in: cups (Ubuntu) Status: New = Incomplete -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to cups in Ubuntu. https://bugs.launchpad.net/bugs/1454463 Title: CUPS not allowed to mknod to /var/log by apparmor Status in cups package in Ubuntu: Incomplete Bug description: I have a two-machine network, both running 14.04.1 but mostly updated. CUPS version is 1.7.2-0ubuntu1 Machine A - has printer attached Machine B - printing to A doesn't work via CUPS I cannot print to the CUPS-managed printer attached to A from B, except with a few apps which see the printer directly via avahi (e.g. Evince). I can print to the printer from A. /var/log/syslog on B shows: ay 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server kernel: [47923.441374] type=1400 audit(1431474629.549:811): apparmor=DENIED operation=mknod profile=/usr/sbin/cupsd name=/data/var/cache/cups/job.cache.N pid=7814 comm=cupsd requested_mask=c denied_mask=c fsuid=0 ouid=0 May 13 09:50:29 server kernel: [47923.441413] type=1400 audit(1431474629.549:812): apparmor=DENIED operation=mknod profile=/usr/sbin/cupsd name=/data/var/log/cups/error_log pid=7814 comm=cupsd requested_mask=c denied_mask=c fsuid=0 ouid=0 May 13 09:50:29 server kernel: [47923.441421] type=1400 audit(1431474629.549:813): apparmor=DENIED operation=chown profile=/usr/sbin/cupsd name=/data/var/log/cups/ pid=7814 comm=cupsd requested_mask=w denied_mask=w fsuid=0 ouid=0 May 13 09:50:29 server kernel: [47923.441444] type=1400 audit(1431474629.549:814): apparmor=DENIED operation=mknod profile=/usr/sbin/cupsd name=/data/var/log/cups/error_log pid=7814 comm=cupsd requested_mask=c denied_mask=c fsuid=0 ouid=0 May 13 09:50:29 server kernel: [47923.706282] type=1400 audit(1431474629.817:815): apparmor=STATUS operation=profile_replace profile=unconfined name=/usr/lib/cups/backend/cups-pdf pid=16874 comm=apparmor_parser May 13 09:50:29 server kernel: [47923.706551] type=1400 audit(1431474629.817:816): apparmor=STATUS operation=profile_replace profile=unconfined name=/usr/sbin/cupsd pid=16874 comm=apparmor_parser May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/access_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/page_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server cupsd: Unable to change ownership of /var/log/cups - Permission denied May 13 09:50:29 server cupsd: Unable to open log file /var/log/cups/error_log - Permission denied May 13 09:50:29 server kernel: [47923.710922] type=1400 audit(1431474629.821:817): apparmor=DENIED operation=mknod profile=/usr/sbin/cupsd name=/data/var/log/cups/access_log pid=16884 comm=cupsd requested_mask=c denied_mask=c fsuid=0 ouid=0 May 13 09:50:29 server
[Touch-packages] [Bug 1453326] Re: package whoopsie 0.2.47 failed to install/upgrade: subprocesso novo script pre-removal retornou erro do status de saída 100
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to whoopsie in Ubuntu. https://bugs.launchpad.net/bugs/1453326 Title: package whoopsie 0.2.47 failed to install/upgrade: subprocesso novo script pre-removal retornou erro do status de saída 100 Status in whoopsie package in Ubuntu: New Bug description: failure system ProblemType: Package DistroRelease: Ubuntu 15.10 Package: whoopsie 0.2.47 ProcVersionSignature: Ubuntu 3.19.0-16.16-generic 3.19.3 Uname: Linux 3.19.0-16-generic x86_64 ApportVersion: 2.17.2-0ubuntu1 Architecture: amd64 CrashReports: 640:0:116:827756:2015-05-08 22:15:55.376109123 +0100:2015-05-08 22:15:56.376109123 +0100:/var/crash/whoopsie.0.crash Date: Fri May 8 22:15:53 2015 DuplicateSignature: package:whoopsie:0.2.47:subprocesso novo script pre-removal retornou erro do status de saída 100 ErrorMessage: subprocesso novo script pre-removal retornou erro do status de saída 100 InstallationDate: Installed on 2015-05-07 (1 days ago) InstallationMedia: Ubuntu 14.04 LTS Trusty Tahr - Release amd64 (20140417) RelatedPackageVersions: apport-noui N/A SourcePackage: whoopsie Title: package whoopsie 0.2.47 failed to install/upgrade: subprocesso novo script pre-removal retornou erro do status de saída 100 UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/whoopsie/+bug/1453326/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1453879] Re: package whoopsie 0.2.39ubuntu0.2 failed to install/upgrade: subprocess new pre-removal script returned error exit status 100
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public ** Tags added: vivid -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to whoopsie in Ubuntu. https://bugs.launchpad.net/bugs/1453879 Title: package whoopsie 0.2.39ubuntu0.2 failed to install/upgrade: subprocess new pre-removal script returned error exit status 100 Status in whoopsie package in Ubuntu: New Bug description: package whoopsie 0.2.39ubuntu0.2 failed to install/upgrade: subprocess new pre-removal script returned error exit status 100 ProblemType: Package DistroRelease: Ubuntu 15.04 Package: whoopsie Uname: Linux 3.18.4-031804-generic x86_64 NonfreeKernelModules: nvidia ApportVersion: 2.17.2-0ubuntu1 Architecture: amd64 Date: Mon May 11 12:57:00 2015 DuplicateSignature: package:whoopsie:0.2.39ubuntu0.2:subprocess new pre-removal script returned error exit status 100 ErrorMessage: subprocess new pre-removal script returned error exit status 100 InstallationDate: Installed on 2015-05-04 (7 days ago) InstallationMedia: Ubuntu 10.04.4 LTS Lucid Lynx - Release amd64 (20120214.2) RelatedPackageVersions: apport-noui N/A SourcePackage: whoopsie Title: package whoopsie 0.2.39ubuntu0.2 failed to install/upgrade: subprocess new pre-removal script returned error exit status 100 UpgradeStatus: Upgraded to vivid on 2015-05-11 (0 days ago) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/whoopsie/+bug/1453879/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 795355] Re: Intermittent SSL connection faults when using TLSv1
Jason, it'd probably be best to file a new bug report, openssl and apache have both changed a fair amount in the last five years. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssl in Ubuntu. https://bugs.launchpad.net/bugs/795355 Title: Intermittent SSL connection faults when using TLSv1 Status in OEM Priority Project: Won't Fix Status in OEM Priority Project lucid series: Won't Fix Status in apache package in Ubuntu: Confirmed Status in openssl package in Ubuntu: Confirmed Bug description: Binary package hint: openssl Reported intermittent SSL connection issue on some apache mod_ssl vhosts. Platform: Ubuntu 10.04.2 LTS Tested: Apache2-2.2.14-5ubuntu8.4 and backported 2.2.17-1ubuntu1 from Natty Firefox client will intermittently report: Secure Connection Failed An error occurred during a connection to oem-ibs.canonical.com. Peer's certificate has an invalid signature. (Error code: sec_error_bad_signature) Condition will clear on reload. Occassionally the server will alternately serve a good page followed by an SSL error until Apache is restarted. I am unable to reproduce the condition on demand, but have output from when the fault occurs. When the fault condition occurs it can be reproduced with any SSL client. The fault presents on multiple distinct servers. Initially suspected to be a bug with mod_ssl https://issues.apache.org/bugzilla/show_bug.cgi?id=46952, backport has eliminated this as has anecdotal reports of this same error presented from Dovecot. Tested with SSL certs from different CAs. Example: $ openssl s_client -connect oem-ibs.canonical.com:443 CONNECTED(0003) depth=2 /C=US/O=thawte, Inc./OU=Certification Services Division/OU=(c) 2006 thawte, Inc. - For authorized use only/CN=thawte Primary Root CA verify error:num=20:unable to get local issuer certificate verify return:0 14563:error:0407006A:rsa routines:RSA_padding_check_PKCS1_type_1:block type is not 01:rsa_pk1.c:100: 14563:error:04067072:rsa routines:RSA_EAY_PUBLIC_DECRYPT:padding check failed:rsa_eay.c:697: 14563:error:1408D07B:SSL routines:SSL3_GET_KEY_EXCHANGE:bad signature:s3_clnt.c:1449: To manage notifications about this bug go to: https://bugs.launchpad.net/oem-priority/+bug/795355/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1446448] Re: ssh-agent terminates
Andrej, sorry, normally the person who supplies the additional information sets the status back to 'new' or 'confirmed' as needed. We don't say that nearly often enough. sorry. ** Changed in: openssh (Ubuntu) Status: Incomplete = Confirmed -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/1446448 Title: ssh-agent terminates Status in openssh package in Ubuntu: Confirmed Bug description: I have set-up password less ssh connectivity for my workstation. ssh- agent gets started via keychain when fluxbox boots. When I use ssh to connect to a server, and then use scp to shuffle a file from that server to my workstation the ssh-agent on my workstation dies after the file was transferred. This has started happening after the upgrade from 12.04 to 14.04. I have wrapped strace into the fluxbox startup to keep an eye on ssh- agent (I initially didn't see a pattern to the sudden death), here's an example of the breakdown post transfer. select(4, [3], [], NULL, NULL) = 1 (in [3]) accept(3, {sa_family=AF_LOCAL, NULL}, [2]) = 4 getsockopt(4, SOL_SOCKET, SO_PEERCRED, {pid=21130, uid=1000, gid=1000}, [12]) = 0 getuid()= 1000 fcntl(4, F_GETFL) = 0x2 (flags O_RDWR) fcntl(4, F_SETFL, O_RDWR|O_NONBLOCK)= 0 select(5, [3 4], [], NULL, NULL)= 1 (in [4]) read(4, \0\0\0\1\v, 1024) = 5 select(5, [3 4], [4], NULL, NULL) = 1 (out [4]) write(4, \0\0\1\f\0\0\0\1\0\0\1\27\0\0\0\7ssh-rsa\0\0\0\3\1\0\1\0..., 320) = 320 select(5, [3 4], [], NULL, NULL)= 1 (in [4]) read(4, , 1024) = 0 close(4)= 0 select(4, [3], [], NULL, NULL) = 1 (in [3]) accept(3, {sa_family=AF_LOCAL, NULL}, [2]) = 4 getsockopt(4, SOL_SOCKET, SO_PEERCRED, {pid=21284, uid=1000, gid=1000}, [12]) = 0 getuid()= 1000 fcntl(4, F_GETFL) = 0x2 (flags O_RDWR) fcntl(4, F_SETFL, O_RDWR|O_NONBLOCK)= 0 select(5, [3 4], [], NULL, NULL)= 1 (in [4]) read(4, , 1024) = 0 close(4)= 0 select(4, [3], [], NULL, NULL) = ? ERESTARTNOHAND (To be restarted if no handler) --- SIGTERM {si_signo=SIGTERM, si_code=SI_USER, si_pid=21284, si_uid=0} --- unlink(/tmp/ssh-DEwJJTGLUETC/agent.19556) = 0 rmdir(/tmp/ssh-DEwJJTGLUETC) = 0 close(-1) = -1 EBADF (Bad file descriptor) exit_group(2) = ? +++ exited with 2 +++ 1) lsb_release -rd Description:Ubuntu 14.04.2 LTS Release:14.04 2) apt-cache policy openssh-client openssh-client: Installed: 1:6.6p1-2ubuntu2 Candidate: 1:6.6p1-2ubuntu2 Version table: *** 1:6.6p1-2ubuntu2 0 500 http://nz.archive.ubuntu.com/ubuntu/ trusty-updates/main amd64 Packages 100 /var/lib/dpkg/status 1:6.6p1-2ubuntu1 0 500 http://nz.archive.ubuntu.com/ubuntu/ trusty/main amd64 Packages 3) I expect ssh-agent to carry on running as it did in previous releases. 4) It dies when connecting back from a machine I ssh into to my workstation. ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: openssh-client 1:6.6p1-2ubuntu2 ProcVersionSignature: Ubuntu 3.13.0-49.81-generic 3.13.11-ckt17 Uname: Linux 3.13.0-49-generic x86_64 NonfreeKernelModules: wl ApportVersion: 2.14.1-0ubuntu3.10 Architecture: amd64 Date: Tue Apr 21 15:28:02 2015 InstallationDate: Installed on 2015-02-03 (77 days ago) InstallationMedia: Ubuntu 14.04 LTS Trusty Tahr - Release amd64 (20140417) RelatedPackageVersions: ssh-askpass N/A libpam-ssh2.0-1 keychain 2.7.1-1 ssh-askpass-gnome 1:6.6p1-2ubuntu2 SSHClientVersion: OpenSSH_6.6.1p1 Ubuntu-2ubuntu2, OpenSSL 1.0.1f 6 Jan 2014 SourcePackage: openssh UpgradeStatus: No upgrade log present (probably fresh install) upstart.ssh-agent.log: ssh-agent stop/pre-start, process 1973 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1446448/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1453778] Re: package lightdm 1.12.3-0ubuntu1 failed to install/upgrade: podproces zainstalowany skrypt post-installation zwrócił kod błędu 1
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to lightdm in Ubuntu. https://bugs.launchpad.net/bugs/1453778 Title: package lightdm 1.12.3-0ubuntu1 failed to install/upgrade: podproces zainstalowany skrypt post-installation zwrócił kod błędu 1 Status in lightdm package in Ubuntu: New Bug description: Everything what I wanted to install reported a problem util-linux What should I do now? ProblemType: Package DistroRelease: Ubuntu 14.10 Package: lightdm 1.12.3-0ubuntu1 ProcVersionSignature: Ubuntu 3.16.0-34.47-generic 3.16.7-ckt8 Uname: Linux 3.16.0-34-generic x86_64 ApportVersion: 2.14.7-0ubuntu8.2 AptOrdering: util-linux: Configure lightdm: Configure unattended-upgrades: Configure Architecture: amd64 Date: Sun May 10 20:40:03 2015 DuplicateSignature: package:lightdm:1.12.3-0ubuntu1:podproces zainstalowany skrypt post-installation zwrócił kod błędu 1 ErrorMessage: podproces zainstalowany skrypt post-installation zwrócił kod błędu 1 InstallationDate: Installed on 2015-03-17 (54 days ago) InstallationMedia: Xubuntu 14.10 Utopic Unicorn - Release amd64 (20141022.1) LightdmGreeterLog: ** (lightdm-gtk-greeter:1461): WARNING **: Failed to load user image: Otwarcie pliku /home/rozztocz/.face się nie powiodło: Nie ma takiego pliku ani katalogu g_dbus_connection_real_closed: Remote peer vanished with error: Underlying GIOStream returned 0 bytes on an async read (g-io-error-quark, 0). Exiting. LightdmGreeterLogOld: ** (lightdm-gtk-greeter:1455): WARNING **: Failed to load user image: Otwarcie pliku /home/rozztocz/.face się nie powiodło: Nie ma takiego pliku ani katalogu SourcePackage: lightdm Title: package lightdm 1.12.3-0ubuntu1 failed to install/upgrade: podproces zainstalowany skrypt post-installation zwrócił kod błędu 1 UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lightdm/+bug/1453778/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 216847] Re: sshd will not start at boot if ListenAddress is set, because network interface is not yet up
Changing the ssh service file to use network-online.target should also work; see http://www.freedesktop.org/wiki/Software/systemd/NetworkTarget/ for more information. ** Tags added: systemd-boot -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/216847 Title: sshd will not start at boot if ListenAddress is set, because network interface is not yet up Status in openssh package in Ubuntu: Confirmed Bug description: Binary package hint: openssh-server The sshd will not start at boot if the ListenAddress option in /etc/ssh/sshd_config is set to an IPv4 address other then 0.0.0.0 . I am using Ubuntu 7.10 and the version 1:4.6p1-5ubuntu0.2 of the openssh-server package. I would expect that sshd is started after boot but it will not and I found this in /var/log/auth.log: sshd[4527]: error: Bind to port 22 on 10.1.1.22 failed: Cannot assign requested address. sshd[4527]: fatal: Cannot bind any address. Once the System is started you can start/stop the sshd with the /etc/init.d/ssh script without any problems. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/216847/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1453088] Re: isc-dhcp-server apparmor include
** Package changed: isc-dhcp (Ubuntu) = apparmor (Ubuntu) ** Also affects: apparmor Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1453088 Title: isc-dhcp-server apparmor include Status in AppArmor Linux application security framework: New Status in apparmor package in Ubuntu: New Bug description: I tried to put isc-dhcp-server in to complain mode due to issues with /run and /var/run PID flags. It gave me an error root@here:/etc/apparmor.d# aa-complain usr.sbin.dhcpd Setting /etc/apparmor.d/usr.sbin.dhcpd to complain mode. Traceback (most recent call last): File /usr/sbin/aa-complain, line 30, in module tool.cmd_complain() File /usr/lib/python3/dist-packages/apparmor/tools.py, line 184, in cmd_complain raise apparmor.AppArmorException(cmd_info[1]) apparmor.common.AppArmorException: AppArmor parser error for /etc/apparmor.d/usr.sbin.dhcpd in /etc/apparmor.d/usr.sbin.dhcpd at line 69: Could not open 'dhcpd.d'\n due to #include dhcpd.d in usr.sbin.dhcpd Two things confuse me. The use of '#' and '# ' to mean include and for commenting respectively. Is this not going to make bug fixing more difficult ? and two should dhcpd.d include a full path ? Why is app armour complain complaining with a standard file ? Cheers Simon To manage notifications about this bug go to: https://bugs.launchpad.net/apparmor/+bug/1453088/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1452115] Re: Python interpreter binary is not compiled as PIE
** Changed in: python2.7 (Ubuntu) Status: New = Won't Fix ** Changed in: python3.4 (Ubuntu) Status: New = Confirmed ** Changed in: python2.7 (Ubuntu) Status: Won't Fix = Confirmed ** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to python2.7 in Ubuntu. https://bugs.launchpad.net/bugs/1452115 Title: Python interpreter binary is not compiled as PIE Status in python2.7 package in Ubuntu: Confirmed Status in python3.4 package in Ubuntu: Confirmed Bug description: The python2.7 binary (installed at /usr/bin/python2.7; package version 2.7.6-8) is not compiled as a position independent executable (PIE). It appears that the python compilation process is somewhat arcane and the hardening wrapper probably doesn't do the trick for it. This is incredibly dangerous as it means that any vulnerability within a native module (e.g. ctypes-based), or within python itself will expose an incredibly large amount of known memory contents at known addresses (including a large number of dangerous instruction groupings). This enables ROP-based (https://en.wikipedia.org/wiki /Return-oriented_programming) to abuse the interpreter itself to bypass non-executable page protections. I have put together an example vulnerable C shared object (with a buffer overflow) accessed via python through the ctypes interface as an example. This uses a single ROP gadget on top of using the known PLT location for system(3) (https://en.wikipedia.org/wiki/Return-to-libc_attack) to call id. The example code is accessible at: - https://gist.github.com/ChaosData/ae6076cb1c3cc7b0a367 I'm not exactly familiar enough with the python build process to say where exactly an -fPIE needs to be injected into a script/makefile, but I feel that given the perceived general preference for ctypes- based modules over python written ones, as the native code implementations tend to be more performant, this feels like a large security hole within the system. Given the nature of this issue, I'm not 100% sure of where it is best reported, but from what I can tell, this conflicts with the Ubuntu hardening features and is definitely exploitable should a native module contain a sufficiently exploitable vulnerability that allows for control of the instruction register. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/python2.7/+bug/1452115/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1452216] Re: libgcrypt11 not present in Vivid (15.04) - Spotify and other app issue.
The libgcrypt20 package should be binary compatible with libgcrypt11; try installing that instead of the Debian package. Thanks ** Changed in: libgcrypt11 (Ubuntu) Status: New = Incomplete -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to libgcrypt11 in Ubuntu. https://bugs.launchpad.net/bugs/1452216 Title: libgcrypt11 not present in Vivid (15.04) - Spotify and other app issue. Status in libgcrypt11 package in Ubuntu: Incomplete Bug description: The package libgcrypt11 is not present anymore in official ubuntu vivid repositories. This cause app crash, such as spotify: spotify: error while loading shared libraries: libgcrypt.so.11: cannot open shared object file: No such file or directory Current workaround is to manually download the .deb package from launchpad/debian package such as https://packages.debian.org/wheezy/libgcrypt11 and manually install with dpkg. Linux SAGITTER 3.19.0-15-generic #15-Ubuntu SMP Thu Apr 16 23:32:37 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux Distributor ID: Ubuntu Description: Ubuntu 15.04 Release: 15.04 Codename: vivid To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libgcrypt11/+bug/1452216/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1452216] Re: libgcrypt11 not present in Vivid (15.04) - Spotify and other app issue.
** Changed in: libgcrypt11 (Ubuntu) Status: Incomplete = Confirmed -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to libgcrypt11 in Ubuntu. https://bugs.launchpad.net/bugs/1452216 Title: libgcrypt11 not present in Vivid (15.04) - Spotify and other app issue. Status in libgcrypt11 package in Ubuntu: Confirmed Bug description: The package libgcrypt11 is not present anymore in official ubuntu vivid repositories. This cause app crash, such as spotify: spotify: error while loading shared libraries: libgcrypt.so.11: cannot open shared object file: No such file or directory Current workaround is to manually download the .deb package from launchpad/debian package such as https://packages.debian.org/wheezy/libgcrypt11 and manually install with dpkg. Linux SAGITTER 3.19.0-15-generic #15-Ubuntu SMP Thu Apr 16 23:32:37 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux Distributor ID: Ubuntu Description: Ubuntu 15.04 Release: 15.04 Codename: vivid To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libgcrypt11/+bug/1452216/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1452115] Re: Python interpreter binary is not compiled as PIE
We didn't enable PIE for the python interpreters for performance reasons. We're currently investigating turning PIE on by default for x86-64 and other architectures that will likely handle it well. The performance impact will be one of the deciding factors in determining if we enable PIE for the python interpreter. We're not likely to backport the PIE support to existing releases because newer versions of GCC help reduce the performance penalty of PIE compilation. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to python2.7 in Ubuntu. https://bugs.launchpad.net/bugs/1452115 Title: Python interpreter binary is not compiled as PIE Status in python2.7 package in Ubuntu: Confirmed Status in python3.4 package in Ubuntu: Confirmed Bug description: The python2.7 binary (installed at /usr/bin/python2.7; package version 2.7.6-8) is not compiled as a position independent executable (PIE). It appears that the python compilation process is somewhat arcane and the hardening wrapper probably doesn't do the trick for it. This is incredibly dangerous as it means that any vulnerability within a native module (e.g. ctypes-based), or within python itself will expose an incredibly large amount of known memory contents at known addresses (including a large number of dangerous instruction groupings). This enables ROP-based (https://en.wikipedia.org/wiki /Return-oriented_programming) to abuse the interpreter itself to bypass non-executable page protections. I have put together an example vulnerable C shared object (with a buffer overflow) accessed via python through the ctypes interface as an example. This uses a single ROP gadget on top of using the known PLT location for system(3) (https://en.wikipedia.org/wiki/Return-to-libc_attack) to call id. The example code is accessible at: - https://gist.github.com/ChaosData/ae6076cb1c3cc7b0a367 I'm not exactly familiar enough with the python build process to say where exactly an -fPIE needs to be injected into a script/makefile, but I feel that given the perceived general preference for ctypes- based modules over python written ones, as the native code implementations tend to be more performant, this feels like a large security hole within the system. Given the nature of this issue, I'm not 100% sure of where it is best reported, but from what I can tell, this conflicts with the Ubuntu hardening features and is definitely exploitable should a native module contain a sufficiently exploitable vulnerability that allows for control of the instruction register. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/python2.7/+bug/1452115/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1452077] Re: package libgnutls26 2.12.14-5ubuntu3.8 [modified: usr/share/doc/libgnutls26/changelog.Debian.gz] failed to install/upgrade: libgnutls26:amd64 2.12.14-5ubuntu3.8 cann
Try this: sudo apt-get purge libgnutls26:i386 I don't know how or why you have the 32-bit version installed, but it looks like having a different version of the 32 bit library installed than the 64 bit version is making things complicated. Most people don't need the 32 bit version, so delete it. Then try apt-get dist-upgrade again. Thanks ** Changed in: gnutls26 (Ubuntu) Status: New = Incomplete -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to gnutls26 in Ubuntu. https://bugs.launchpad.net/bugs/1452077 Title: package libgnutls26 2.12.14-5ubuntu3.8 [modified: usr/share/doc/libgnutls26/changelog.Debian.gz] failed to install/upgrade: libgnutls26:amd64 2.12.14-5ubuntu3.8 cannot be configured because libgnutls26 Status in gnutls26 package in Ubuntu: Incomplete Bug description: Approximately a month ago a upgrade to gnutls26 package was made but could not be installed because of the following unmet dependencies which could not be installed due to conflicts as shown below. The following packages have unmet dependencies: libgnutls26: Depends: libc6 (= 2.14) but 2.15-0ubuntu10.12 is installed Depends: zlib1g (= 1:1.1.4) but 1:1.2.3.4.dfsg-3ubuntu4 is installed libgnutls26:i386: Depends: zlib1g (= 1:1.1.4) but 1:1.2.3.4.dfsg-3ubuntu4 is installed Now this has snowballed into whole groups of upgraded programs that cannot be installed properly based on this one package. This is the error I got today from a group of programs being upgraded but could not be. === E: libgnutls26: libgnutls26:amd64 2.12.14-5ubuntu3.8 cannot be configured because libgnutls26 E: libcurl3-gnutls: dependency problems - leaving unconfigured E: libreoffice-core: dependency problems - leaving unconfigured E: libreoffice-wiki-publisher: dependency problems - leaving unconfigured E: apt-transport-https: dependency problems - leaving unconfigured E: libreoffice-base-core: dependency problems - leaving unconfigured E: libreoffice-writer: dependency problems - leaving unconfigured E: libreoffice-calc: dependency problems - leaving unconfigured E: libreoffice-draw: dependency problems - leaving unconfigured E: libreoffice-impress: dependency problems - leaving unconfigured E: libreoffice-math: dependency problems - leaving unconfigured E: libreoffice-base: dependency problems - leaving unconfigured E: libreoffice: dependency problems - leaving unconfigured E: python-uno: dependency problems - leaving unconfigured E: libreoffice-emailmerge: dependency problems - leaving unconfigured E: libreoffice-gtk: dependency problems - leaving unconfigured E: libreoffice-gnome: dependency problems - leaving unconfigured E: libreoffice-help-en-us: dependency problems - leaving unconfigured E: libreoffice-officebean: dependency problems - leaving unconfigured E: libreoffice-script-provider-bsh: dependency problems - leaving unconfigured E: libreoffice-script-provider-js: dependency problems - leaving unconfigured E: libreoffice-sdbc-postgresql: dependency problems - leaving unconfigured E: libreoffice-pdfimport: dependency problems - leaving unconfigured E: libreoffice-style-human: dependency problems - leaving unconfigured E: libreoffice-style-tango: dependency problems - leaving unconfigured E: libreoffice-common: dependency problems - leaving unconfigured E: libreoffice-java-common: dependency problems - leaving unconfigured E: libreoffice-filter-mobiledev: dependency problems - leaving unconfigured Preconfiguring packages ... (Reading database ... 928001 files and directories currently installed.) Preparing to replace ppp 2.4.5-5ubuntu1.1 (using .../ppp_2.4.5-5ubuntu1.2_amd64.deb) ... Unpacking replacement ppp ... Preparing to replace libclamav6 0.98.6+dfsg-0ubuntu0.12.04.1 (using .../libclamav6_0.98.7+dfsg-0ubuntu0.12.04.1_amd64.deb) ... Unpacking replacement libclamav6 ... Preparing to replace clamav-base 0.98.6+dfsg-0ubuntu0.12.04.1 (using .../clamav-base_0.98.7+dfsg-0ubuntu0.12.04.1_all.deb) ... Unpacking replacement clamav-base ... Preparing to replace clamav-freshclam 0.98.6+dfsg-0ubuntu0.12.04.1 (using .../clamav-freshclam_0.98.7+dfsg-0ubuntu0.12.04.1_amd64.deb) ... * Stopping ClamAV virus database updater freshclam [ OK ] Unpacking replacement clamav-freshclam ... Preparing to replace clamav 0.98.6+dfsg-0ubuntu0.12.04.1 (using .../clamav_0.98.7+dfsg-0ubuntu0.12.04.1_amd64.deb) ... Unpacking replacement clamav ... Preparing to replace clamav-docs 0.98.6+dfsg-0ubuntu0.12.04.1 (using .../clamav-docs_0.98.7+dfsg-0ubuntu0.12.04.1_all.deb) ... Unpacking replacement clamav-docs ... Preparing to replace unrar 1:4.0.3-1 (using .../unrar_1%3a4.0.3-1ubuntu0.1_amd64.deb) ... Unpacking replacement unrar ... Processing triggers for man-db ... Processing triggers for
[Touch-packages] [Bug 1452077] Re: package libgnutls26 2.12.14-5ubuntu3.8 [modified: usr/share/doc/libgnutls26/changelog.Debian.gz] failed to install/upgrade: libgnutls26:amd64 2.12.14-5ubuntu3.8 cann
** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to gnutls26 in Ubuntu. https://bugs.launchpad.net/bugs/1452077 Title: package libgnutls26 2.12.14-5ubuntu3.8 [modified: usr/share/doc/libgnutls26/changelog.Debian.gz] failed to install/upgrade: libgnutls26:amd64 2.12.14-5ubuntu3.8 cannot be configured because libgnutls26 Status in gnutls26 package in Ubuntu: Incomplete Bug description: Approximately a month ago a upgrade to gnutls26 package was made but could not be installed because of the following unmet dependencies which could not be installed due to conflicts as shown below. The following packages have unmet dependencies: libgnutls26: Depends: libc6 (= 2.14) but 2.15-0ubuntu10.12 is installed Depends: zlib1g (= 1:1.1.4) but 1:1.2.3.4.dfsg-3ubuntu4 is installed libgnutls26:i386: Depends: zlib1g (= 1:1.1.4) but 1:1.2.3.4.dfsg-3ubuntu4 is installed Now this has snowballed into whole groups of upgraded programs that cannot be installed properly based on this one package. This is the error I got today from a group of programs being upgraded but could not be. === E: libgnutls26: libgnutls26:amd64 2.12.14-5ubuntu3.8 cannot be configured because libgnutls26 E: libcurl3-gnutls: dependency problems - leaving unconfigured E: libreoffice-core: dependency problems - leaving unconfigured E: libreoffice-wiki-publisher: dependency problems - leaving unconfigured E: apt-transport-https: dependency problems - leaving unconfigured E: libreoffice-base-core: dependency problems - leaving unconfigured E: libreoffice-writer: dependency problems - leaving unconfigured E: libreoffice-calc: dependency problems - leaving unconfigured E: libreoffice-draw: dependency problems - leaving unconfigured E: libreoffice-impress: dependency problems - leaving unconfigured E: libreoffice-math: dependency problems - leaving unconfigured E: libreoffice-base: dependency problems - leaving unconfigured E: libreoffice: dependency problems - leaving unconfigured E: python-uno: dependency problems - leaving unconfigured E: libreoffice-emailmerge: dependency problems - leaving unconfigured E: libreoffice-gtk: dependency problems - leaving unconfigured E: libreoffice-gnome: dependency problems - leaving unconfigured E: libreoffice-help-en-us: dependency problems - leaving unconfigured E: libreoffice-officebean: dependency problems - leaving unconfigured E: libreoffice-script-provider-bsh: dependency problems - leaving unconfigured E: libreoffice-script-provider-js: dependency problems - leaving unconfigured E: libreoffice-sdbc-postgresql: dependency problems - leaving unconfigured E: libreoffice-pdfimport: dependency problems - leaving unconfigured E: libreoffice-style-human: dependency problems - leaving unconfigured E: libreoffice-style-tango: dependency problems - leaving unconfigured E: libreoffice-common: dependency problems - leaving unconfigured E: libreoffice-java-common: dependency problems - leaving unconfigured E: libreoffice-filter-mobiledev: dependency problems - leaving unconfigured Preconfiguring packages ... (Reading database ... 928001 files and directories currently installed.) Preparing to replace ppp 2.4.5-5ubuntu1.1 (using .../ppp_2.4.5-5ubuntu1.2_amd64.deb) ... Unpacking replacement ppp ... Preparing to replace libclamav6 0.98.6+dfsg-0ubuntu0.12.04.1 (using .../libclamav6_0.98.7+dfsg-0ubuntu0.12.04.1_amd64.deb) ... Unpacking replacement libclamav6 ... Preparing to replace clamav-base 0.98.6+dfsg-0ubuntu0.12.04.1 (using .../clamav-base_0.98.7+dfsg-0ubuntu0.12.04.1_all.deb) ... Unpacking replacement clamav-base ... Preparing to replace clamav-freshclam 0.98.6+dfsg-0ubuntu0.12.04.1 (using .../clamav-freshclam_0.98.7+dfsg-0ubuntu0.12.04.1_amd64.deb) ... * Stopping ClamAV virus database updater freshclam [ OK ] Unpacking replacement clamav-freshclam ... Preparing to replace clamav 0.98.6+dfsg-0ubuntu0.12.04.1 (using .../clamav_0.98.7+dfsg-0ubuntu0.12.04.1_amd64.deb) ... Unpacking replacement clamav ... Preparing to replace clamav-docs 0.98.6+dfsg-0ubuntu0.12.04.1 (using .../clamav-docs_0.98.7+dfsg-0ubuntu0.12.04.1_all.deb) ... Unpacking replacement clamav-docs ... Preparing to replace unrar 1:4.0.3-1 (using .../unrar_1%3a4.0.3-1ubuntu0.1_amd64.deb) ... Unpacking replacement unrar ... Processing triggers for man-db ... Processing triggers for ureadahead ... ureadahead will be reprofiled on next reboot Processing triggers for doc-base ... Processing 1 changed doc-base file... Registering documents with scrollkeeper... dpkg: error processing libgnutls26 (--configure): libgnutls26:amd64 2.12.14-5ubuntu3.8 cannot be configured because libgnutls26:i386 is in a different version
[Touch-packages] [Bug 1385410] Re: hook into system-image updates to precompile policy prior to reboot
I'm sorry this was overlooked for so long. A. Is it practical to use the device while precompilation is happening in the background? It Depends. We have some options in how aggressively we use system resources, but probably even compiling one-at-a-time with a nice value will definitely feel like the system is being used. Probably using PIM functions will be fine, office productivity might show some lags, games are probably not going to work. B. What drawbacks, if any, are there from using the device after precompilation finishes, but before the device restarts? I believe no drawbacks at all. C. When recompilation is required, what proportion of overall update installation time, on average, is taken up by (i) the precompilation (ii) the restart (iii) the flashing (iv) anything else? (Bonus points if you manage to relate (i) to the number or size of the policies.) I'm sorry to not have numbers to give you, but my recollection of anecdotal evidence suggests it can be fifteen minutes or more. My recollection of reboot times is roughly one minute, and no idea about flashing. On my core i7 laptop, apparmor_parser takes 2.2 seconds and 20 megabytes of memory to compile the evince profile, typically one of the more expensive desktop and server profiles. I believe it is a fair approximation of a touch/snappy profile. I hope this helps. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to click-apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1385410 Title: hook into system-image updates to precompile policy prior to reboot Status in Ubuntu UX bugs: Incomplete Status in click-apparmor package in Ubuntu: Confirmed Status in unity8 package in Ubuntu: New Bug description: Occasionally users will receive and OTA update that requires apparmor policy to be recompiled. Recompiling apparmor policy can take quite a bit of time (minutes) depending on how many applications the user has installed. While this is only expected to happen on major OTA OS upgrades (eg, 14.10 to 15.04), it is possible it could happen at other times. This would improve the user experience for developers considerably since policy recompiles can be relatively frequent when running the development release. To improve the user experience, we should detect and recompile apparmor profiles prior to reboot but after system-image updates has downloaded the new update. This always for the possibility of using a progress meter when compiling policy (which we currently cannot). Needs design input for when to do it and how the progress meter should look. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-ux/+bug/1385410/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1447715] Re: dhclient -6: Can't bind to dhcp address: Cannot assign requested address
Better explained here: https://www.agwa.name/blog/post/beware_the_ipv6_dad_race_condition -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to isc-dhcp in Ubuntu. https://bugs.launchpad.net/bugs/1447715 Title: dhclient -6: Can't bind to dhcp address: Cannot assign requested address Status in isc-dhcp package in Ubuntu: New Bug description: After upgrading to Ubuntu 15.04 my computer is unable to obtain an IPv6 address via DHCPv6. The root cause is that dhclient is exiting with the following message: - Can't bind to dhcp address: Cannot assign requested address Please make sure there is no other dhcp server running and that there's no entry for dhcp or bootp in /etc/inetd.conf. Also make sure you are not running HP JetAdmin software, which includes a bootp server. If you think you have received this message due to a bug rather than a configuration issue please read the section on submitting bugs on either our web page at www.isc.org or in the README file before submitting a bug. These pages explain the proper process and the information we find helpful for debugging.. exiting. - The problem seems to exist in isc-dhcp-client 4.3.1-5ubuntu2 (15.04 version) because downgrading to isc-dhcp-client 4.2.4-7ubuntu14 (14.10 version) allows me to obtain an address. NetworkManager is the one launching dhclient. The two invocations (one for IPv4 and one for IPv6) are: dhclient_start(): running: /sbin/dhclient -d -q -sf /usr/lib/NetworkManager/nm-dhcp-helper -pf /run/sendsigs.omit.d /network-manager.dhclient-eth0.pid -lf /var/lib/NetworkManager /dhclient-c0a3dfde-5c0b-4cef-9c3b-563cfb1fb9d2-eth0.lease -cf /var/lib/NetworkManager/dhclient-eth0.conf eth0 dhclient_start(): running: /sbin/dhclient -d -q -6 -N -sf /usr/lib/NetworkManager/nm-dhcp-helper -pf /run/sendsigs.omit.d /network-manager.dhclient6-eth0.pid -lf /var/lib/NetworkManager/dhclient6-c0a3dfde-5c0b-4cef-9c3b- 563cfb1fb9d2-eth0.lease -cf /var/lib/NetworkManager/dhclient6-eth0.conf eth0 I do not see anything suspicious with the way both dhclients are invoked. Given that a downgrade allows me to obtain an IPv6 address I think this might be a bug in the ISC DHCP client rather than in NetworkManager. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/isc-dhcp/+bug/1447715/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1447715] Re: dhclient -6: Can't bind to dhcp address: Cannot assign requested address
I understand that binding to ipv6 addresses that haven't finished Duplicate Address Detection causes the bind() to fail. http://www.freedesktop.org/wiki/Software/systemd/NetworkTarget/ suggests using IP_FREEBIND: IP_FREEBIND (since Linux 2.4) If enabled, this boolean option allows binding to an IP address that is nonlocal or does not (yet) exist. This permits listening on a socket, without requiring the underlying network interface or the specified dynamic IP address to be up at the time that the application is trying to bind to it. This option is the per-socket equivalent of the ip_nonlocal_bind /proc interface described below. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to isc-dhcp in Ubuntu. https://bugs.launchpad.net/bugs/1447715 Title: dhclient -6: Can't bind to dhcp address: Cannot assign requested address Status in isc-dhcp package in Ubuntu: New Bug description: After upgrading to Ubuntu 15.04 my computer is unable to obtain an IPv6 address via DHCPv6. The root cause is that dhclient is exiting with the following message: - Can't bind to dhcp address: Cannot assign requested address Please make sure there is no other dhcp server running and that there's no entry for dhcp or bootp in /etc/inetd.conf. Also make sure you are not running HP JetAdmin software, which includes a bootp server. If you think you have received this message due to a bug rather than a configuration issue please read the section on submitting bugs on either our web page at www.isc.org or in the README file before submitting a bug. These pages explain the proper process and the information we find helpful for debugging.. exiting. - The problem seems to exist in isc-dhcp-client 4.3.1-5ubuntu2 (15.04 version) because downgrading to isc-dhcp-client 4.2.4-7ubuntu14 (14.10 version) allows me to obtain an address. NetworkManager is the one launching dhclient. The two invocations (one for IPv4 and one for IPv6) are: dhclient_start(): running: /sbin/dhclient -d -q -sf /usr/lib/NetworkManager/nm-dhcp-helper -pf /run/sendsigs.omit.d /network-manager.dhclient-eth0.pid -lf /var/lib/NetworkManager /dhclient-c0a3dfde-5c0b-4cef-9c3b-563cfb1fb9d2-eth0.lease -cf /var/lib/NetworkManager/dhclient-eth0.conf eth0 dhclient_start(): running: /sbin/dhclient -d -q -6 -N -sf /usr/lib/NetworkManager/nm-dhcp-helper -pf /run/sendsigs.omit.d /network-manager.dhclient6-eth0.pid -lf /var/lib/NetworkManager/dhclient6-c0a3dfde-5c0b-4cef-9c3b- 563cfb1fb9d2-eth0.lease -cf /var/lib/NetworkManager/dhclient6-eth0.conf eth0 I do not see anything suspicious with the way both dhclients are invoked. Given that a downgrade allows me to obtain an IPv6 address I think this might be a bug in the ISC DHCP client rather than in NetworkManager. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/isc-dhcp/+bug/1447715/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1450017] Re: Sometimes resuming leaves only a black lit screen, no unity8
The powerd main thread only ever checks fb_state with the mutex locked, and the monitor thread only ever changes it with the mutex locked. The main thread also only calls pthread_cond_wait() *after* finding fb_state != FB_AWAKE *without any intervening unlock of the mutex.* So the scenario you describe is impossible. If the monitor thread changes fb_state to FB_AWAKE before the main thread locks the mutex, it will see fb_state == FB_AWAKE on the first loop iteration and never call pthread_cond_wait(). If the main thread locks the mutex before the monitor thread changes the state then the monitor thread cannot change the state until pthread_cond_wait() releases the mutex, then the subsequent pthread_cond_signal() call will awaken the main thread. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to powerd in Ubuntu. https://bugs.launchpad.net/bugs/1450017 Title: Sometimes resuming leaves only a black lit screen, no unity8 Status in powerd package in Ubuntu: New Status in unity8 package in Ubuntu: New Bug description: Sometimes when I turn my dogfooding mako device on (running stable channel), I see a back lighted screen, but no unity8. It stays like that indefinitely, and I just have to hard-reset. I haven't noticed any obvious correlations to the behavior. It just happens. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/powerd/+bug/1450017/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1421455] Re: Slow wake up time on physical power button pressed
Yeah it seems likely that some driver is probably being slow in its late_resume handler. There may be something in dmesg which shows how long individual late_resume calls are making, I can't remember (there may also be some debug option which has to be enabled). Iirc the reason we have to wait for the fb state to change was because you can hit deadlocks with some of the phone kernels if you write state changes to /sys/power/state without waiting. Android also waits for the framebuffer state to change, so that's the only arrangement that's probably tested by the phone makers as well. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to powerd in Ubuntu. https://bugs.launchpad.net/bugs/1421455 Title: Slow wake up time on physical power button pressed Status in powerd package in Ubuntu: New Status in unity8 package in Ubuntu: Incomplete Bug description: Device: bq Aquaris E4.5 running: Stable #17 When pressing on physical power button on device to wake it up sometime it even takes up to 2-3 secs before anything appears on the screen. This time wary but its hard to tell then its shorter and when is longer. This is not so bad on nexus4. Should you need more info, I'm happy to help. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/powerd/+bug/1421455/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1282294] Re: Cannot open pixbuf loader module file
A beer to whoever uploads SRUs for the postrm fix suggested in comment #7 payable the next time we meet. I'd so love to be rid of this annoying message even though I know full well it doesn't actually affect anything. We won't be rid of it now, only some vague point in the future, but if all supported systems got SRU fixes today, we'd be that much closer to never seeing it again. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to gdk-pixbuf in Ubuntu. https://bugs.launchpad.net/bugs/1282294 Title: Cannot open pixbuf loader module file Status in gdk-pixbuf package in Ubuntu: Triaged Status in gdk-pixbuf package in Debian: New Bug description: While doing testing on trusty, I keep finding errors like the following in my apt-get -u dist-upgrade output: Preparing to unpack .../indicator-printers_0.1.7+14.04.20140213-0ubuntu1_amd64.deb ... Unpacking indicator-printers (0.1.7+14.04.20140213-0ubuntu1) over (0.1.7daily13.03.01-0ubuntu1) ... (gtk-update-icon-cache-3.0:29671): GdkPixbuf-WARNING **: Cannot open pixbuf loader module file '/usr/lib/x86_64-linux-gnu/gdk- pixbuf-2.0/2.10.0/loaders.cache': No such file or directory This likely means that your installation is broken. Try running the command gdk-pixbuf-query-loaders /usr/lib/x86_64-linux-gnu/gdk-pixbuf-2.0/2.10.0/loaders.cache to make things work again for the time being. (gtk-update-icon-cache-3.0:29672): GdkPixbuf-WARNING **: Cannot open pixbuf loader module file '/usr/lib/x86_64-linux-gnu/gdk- pixbuf-2.0/2.10.0/loaders.cache': No such file or directory This likely means that your installation is broken. Try running the command gdk-pixbuf-query-loaders /usr/lib/x86_64-linux-gnu/gdk-pixbuf-2.0/2.10.0/loaders.cache to make things work again for the time being. ... Processing triggers for hicolor-icon-theme (0.13-1) ... (gtk-update-icon-cache-3.0:32198): GdkPixbuf-WARNING **: Cannot open pixbuf loader module file '/usr/lib/x86_64-linux-gnu/gdk- pixbuf-2.0/2.10.0/loaders.cache': No such file or directory This likely means that your installation is broken. Try running the command gdk-pixbuf-query-loaders /usr/lib/x86_64-linux-gnu/gdk-pixbuf-2.0/2.10.0/loaders.cache to make things work again for the time being. These errors make it difficult to look for errors that I might have introduced in my own packages and if they persist in our final product will make users wonder what is broken and why it is broken. sarnold@sec-trusty-amd64:~$ lsb_release -rd Description: Ubuntu Trusty Tahr (development branch) Release: 14.04 sarnold@sec-trusty-amd64:~$ dpkg -S gdk-pixbuf-query-loaders libgdk-pixbuf2.0-0:amd64: /usr/lib/x86_64-linux-gnu/gdk-pixbuf-2.0/gdk-pixbuf-query-loaders sarnold@sec-trusty-amd64:~$ apt-cache policy libgdk-pixbuf2.0-0 libgdk-pixbuf2.0-0: Installed: 2.30.5-0ubuntu1 Candidate: 2.30.5-0ubuntu1 Version table: *** 2.30.5-0ubuntu1 0 500 http://archive.ubuntu.com/ubuntu/ trusty/main amd64 Packages 100 /var/lib/dpkg/status sarnold@sec-trusty-amd64:~$ dpkg -S /usr/bin/gtk-update-icon-cache-3.0 libgtk-3-bin: /usr/bin/gtk-update-icon-cache-3.0 sarnold@sec-trusty-amd64:~$ apt-cache policy libgtk-3-bin libgtk-3-bin: Installed: 3.10.7-0ubuntu2 Candidate: 3.10.7-0ubuntu2 Version table: *** 3.10.7-0ubuntu2 0 500 http://archive.ubuntu.com/ubuntu/ trusty/main amd64 Packages 100 /var/lib/dpkg/status sarnold@sec-trusty-amd64:~$ Thanks ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: libgtk-3-bin 3.10.7-0ubuntu2 ProcVersionSignature: User Name 3.13.0-5.20-generic 3.13.0 Uname: Linux 3.13.0-5-generic x86_64 ApportVersion: 2.13.2-0ubuntu5 Architecture: amd64 Date: Wed Feb 19 14:38:47 2014 InstallationDate: Installed on 2014-01-09 (41 days ago) InstallationMedia: Ubuntu 14.04 LTS Trusty Tahr - Alpha amd64 (20140108) ProcEnviron: TERM=rxvt-unicode PATH=(custom, no user) XDG_RUNTIME_DIR=set LANG=en_US.UTF-8 SHELL=/bin/bash SourcePackage: gtk+3.0 UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gdk-pixbuf/+bug/1282294/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1199166] Re: WARNING **: dconf-schema.vala:330: Unknown property on schema
is this bug repaired? -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to d-conf in Ubuntu. https://bugs.launchpad.net/bugs/1199166 Title: WARNING **: dconf-schema.vala:330: Unknown property on schema Status in d-conf package in Ubuntu: Confirmed Bug description: Running dconf-editor on the command line writes the following messages to the console: jlquinn@wyvern:~$ dconf-editor ** (dconf-editor:4153): WARNING **: dconf-schema.vala:330: Unknown property on schema, extends ** (dconf-editor:4153): WARNING **: dconf-schema.vala:330: Unknown property on schema, extends The tool seems to work OK, but this is useless output at best for the casual user. jlquinn@wyvern:~$ lsb_release -rd Description: Ubuntu 13.04 Release: 13.04 jlquinn@wyvern:~$ apt-cache policy dconf-tools dconf-tools: Installed: 0.16.0-0ubuntu1 Candidate: 0.16.0-0ubuntu1 Version table: *** 0.16.0-0ubuntu1 0 500 http://us.archive.ubuntu.com/ubuntu/ raring/main amd64 Packages 100 /var/lib/dpkg/status ProblemType: Bug DistroRelease: Ubuntu 13.04 Package: dconf-tools 0.16.0-0ubuntu1 ProcVersionSignature: Ubuntu 3.8.0-26.38-generic 3.8.13.2 Uname: Linux 3.8.0-26-generic x86_64 ApportVersion: 2.9.2-0ubuntu8.1 Architecture: amd64 Date: Mon Jul 8 17:57:23 2013 InstallationDate: Installed on 2010-04-30 (1165 days ago) InstallationMedia: Ubuntu 10.04 LTS Lucid Lynx - Release amd64 (20100429) MarkForUpload: True ProcEnviron: TERM=xterm PATH=(custom, no user) XDG_RUNTIME_DIR=set LANG=en_US.UTF-8 SHELL=/bin/bash SourcePackage: d-conf UpgradeStatus: Upgraded to raring on 2013-07-08 (0 days ago) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/d-conf/+bug/1199166/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1446448] Re: ssh-agent terminates
Brendan Gregg has an awesome execsnoop tool that can report systemwide execs in his perf-tools package, the whole thing is a goldmine of amazing tools: http://www.brendangregg.com/blog/2014-07-28/execsnoop-for-linux.html Probably this is easier than the process accounting. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/1446448 Title: ssh-agent terminates Status in openssh package in Ubuntu: Incomplete Bug description: I have set-up password less ssh connectivity for my workstation. ssh- agent gets started via keychain when fluxbox boots. When I use ssh to connect to a server, and then use scp to shuffle a file from that server to my workstation the ssh-agent on my workstation dies after the file was transferred. This has started happening after the upgrade from 12.04 to 14.04. I have wrapped strace into the fluxbox startup to keep an eye on ssh- agent (I initially didn't see a pattern to the sudden death), here's an example of the breakdown post transfer. select(4, [3], [], NULL, NULL) = 1 (in [3]) accept(3, {sa_family=AF_LOCAL, NULL}, [2]) = 4 getsockopt(4, SOL_SOCKET, SO_PEERCRED, {pid=21130, uid=1000, gid=1000}, [12]) = 0 getuid()= 1000 fcntl(4, F_GETFL) = 0x2 (flags O_RDWR) fcntl(4, F_SETFL, O_RDWR|O_NONBLOCK)= 0 select(5, [3 4], [], NULL, NULL)= 1 (in [4]) read(4, \0\0\0\1\v, 1024) = 5 select(5, [3 4], [4], NULL, NULL) = 1 (out [4]) write(4, \0\0\1\f\0\0\0\1\0\0\1\27\0\0\0\7ssh-rsa\0\0\0\3\1\0\1\0..., 320) = 320 select(5, [3 4], [], NULL, NULL)= 1 (in [4]) read(4, , 1024) = 0 close(4)= 0 select(4, [3], [], NULL, NULL) = 1 (in [3]) accept(3, {sa_family=AF_LOCAL, NULL}, [2]) = 4 getsockopt(4, SOL_SOCKET, SO_PEERCRED, {pid=21284, uid=1000, gid=1000}, [12]) = 0 getuid()= 1000 fcntl(4, F_GETFL) = 0x2 (flags O_RDWR) fcntl(4, F_SETFL, O_RDWR|O_NONBLOCK)= 0 select(5, [3 4], [], NULL, NULL)= 1 (in [4]) read(4, , 1024) = 0 close(4)= 0 select(4, [3], [], NULL, NULL) = ? ERESTARTNOHAND (To be restarted if no handler) --- SIGTERM {si_signo=SIGTERM, si_code=SI_USER, si_pid=21284, si_uid=0} --- unlink(/tmp/ssh-DEwJJTGLUETC/agent.19556) = 0 rmdir(/tmp/ssh-DEwJJTGLUETC) = 0 close(-1) = -1 EBADF (Bad file descriptor) exit_group(2) = ? +++ exited with 2 +++ 1) lsb_release -rd Description:Ubuntu 14.04.2 LTS Release:14.04 2) apt-cache policy openssh-client openssh-client: Installed: 1:6.6p1-2ubuntu2 Candidate: 1:6.6p1-2ubuntu2 Version table: *** 1:6.6p1-2ubuntu2 0 500 http://nz.archive.ubuntu.com/ubuntu/ trusty-updates/main amd64 Packages 100 /var/lib/dpkg/status 1:6.6p1-2ubuntu1 0 500 http://nz.archive.ubuntu.com/ubuntu/ trusty/main amd64 Packages 3) I expect ssh-agent to carry on running as it did in previous releases. 4) It dies when connecting back from a machine I ssh into to my workstation. ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: openssh-client 1:6.6p1-2ubuntu2 ProcVersionSignature: Ubuntu 3.13.0-49.81-generic 3.13.11-ckt17 Uname: Linux 3.13.0-49-generic x86_64 NonfreeKernelModules: wl ApportVersion: 2.14.1-0ubuntu3.10 Architecture: amd64 Date: Tue Apr 21 15:28:02 2015 InstallationDate: Installed on 2015-02-03 (77 days ago) InstallationMedia: Ubuntu 14.04 LTS Trusty Tahr - Release amd64 (20140417) RelatedPackageVersions: ssh-askpass N/A libpam-ssh2.0-1 keychain 2.7.1-1 ssh-askpass-gnome 1:6.6p1-2ubuntu2 SSHClientVersion: OpenSSH_6.6.1p1 Ubuntu-2ubuntu2, OpenSSL 1.0.1f 6 Jan 2014 SourcePackage: openssh UpgradeStatus: No upgrade log present (probably fresh install) upstart.ssh-agent.log: ssh-agent stop/pre-start, process 1973 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1446448/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1446212] Re: Support installing localization data from click packages
I'm concerned about adding translations from potentially untrusted sources -- format strings are a ripe source of security issues in some languages and allowing any random person to provide translated strings for programs that handle private data is potentially highly dangerous. Python, Ruby, Perl, PHP, all make it easy to dump arbitrary variables this way; Lua looks like it can easily be configured to do so as well, if authors choose to use such functionality. C, C++ format strings can read and write data into and out of memory nearly arbitrarily. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor-easyprof-ubuntu in Ubuntu. https://bugs.launchpad.net/bugs/1446212 Title: Support installing localization data from click packages Status in apparmor-easyprof-ubuntu package in Ubuntu: Confirmed Status in ubuntu-ui-toolkit package in Ubuntu: Incomplete Bug description: It would be nice if it were possible to add support to a new language/locale by just installing a click package. This would have several benefits: 1) People could easily add support for non officially supported languages 2) Languages would be updated independently from the system image 3) Some space could be freed from the image, if some languages get moved to click packages I'm entering this bug against ubuntu-ui-toolkit, because I guess it would need some change to get the correct path where translations are installed (it now calls bindtextdomain with /usr/share/locale, while it should fallback to ~/.local/share/locale/ if the language does not exist in the system path), but there surely are other projects that would need to be changed. For sure, we would need a click hook to move the translations in ~/.local/share/locale/, as well as changes to the apparmor policy to read from that directory. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor-easyprof-ubuntu/+bug/1446212/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1445624] Re: Change SSH defaults to non-SHA-1 by 16.04
While this might initially seem like prematurely early to end support for SHA-1, it's the tail end of 16.04 LTS's support window that worries me -- I suspect SHA-1 will feel less safe by 2021, but removing support for it in an LTS release feels like the wrong approach. We may also wish to consider what the server accepts and what the client accepts separately if there's some class of devices that force using SHA-1 in the meantime. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/1445624 Title: Change SSH defaults to non-SHA-1 by 16.04 Status in openssh package in Ubuntu: Confirmed Bug description: For Security reasons, the Ubuntu Distro should change SSH defaults to use non-SHA-1 by 16.04. That is, to default to SHA2 and, ideally, not permit SHA1. This may break bzr+ssh on LP if done before https://bugs.launchpad.net/launchpad/+bug/1445619 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1445624/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1445219] Re: aa-logprof hangs indefinitely in Ubuntu 14.04 LTS
Can you attach some more information that might be useful to debug this issue? Including the output of grep -i apparmor /var/log/syslog or grep -i apparmor /var/log/audit/audit.log (if you use auditd) will help. Thanks ** Changed in: apparmor Status: New = Incomplete ** Also affects: apparmor (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1445219 Title: aa-logprof hangs indefinitely in Ubuntu 14.04 LTS Status in AppArmor Linux application security framework: Incomplete Status in apparmor package in Ubuntu: New Bug description: Currently, aa-logprof hangs indefinitely in Ubuntu 14.04 LTS. This is with kernel 3.13.0-39-generic, on x86_64. The version of apparmor installed is: apparmor 2.8.95~2430-0ubuntu5.1 apparmor-utils 2.8.95~2430-0ubuntu5.1 To manage notifications about this bug go to: https://bugs.launchpad.net/apparmor/+bug/1445219/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1444356] Re: apparmor fails to initialise at startup
** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1444356 Title: apparmor fails to initialise at startup Status in apparmor package in Ubuntu: New Bug description: apparmor is failing to intitialise and start. Systemctl status -l apparmor.service output is: sudo systemctl status -l apparmor.service ● apparmor.service - LSB: AppArmor initialization Loaded: loaded (/etc/init.d/apparmor) Active: failed (Result: exit-code) since Wed 2015-04-15 09:41:55 BST; 29s ago Docs: man:systemd-sysv-generator(8) Process: 4016 ExecStart=/etc/init.d/apparmor start (code=exited, status=123) Apr 15 09:41:55 super-R720 systemd[1]: Starting LSB: AppArmor initialization... Apr 15 09:41:55 super-R720 apparmor[4016]: * Starting AppArmor profiles Apr 15 09:41:55 super-R720 apparmor[4016]: AppArmor parser error for /etc/apparmor.d/usr.bin.evince in /etc/apparmor.d/usr.bin.evince at line 14: Could not open 'abstractions/evince' Apr 15 09:41:55 super-R720 apparmor[4016]: AppArmor parser error for /etc/apparmor.d/usr.bin.evince in /etc/apparmor.d/usr.bin.evince at line 14: Could not open 'abstractions/evince' Apr 15 09:41:55 super-R720 apparmor[4016]: ...fail! Apr 15 09:41:55 super-R720 systemd[1]: apparmor.service: control process exited, code=exited status=123 Apr 15 09:41:55 super-R720 systemd[1]: Failed to start LSB: AppArmor initialization. Apr 15 09:41:55 super-R720 systemd[1]: Unit apparmor.service entered failed state. Apr 15 09:41:55 super-R720 systemd[1]: apparmor.service failed. Not secure if one app fails and thus the whole of apparmor! Output of journalctl -xe -- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel -- -- Unit apparmor.service has failed. -- -- The result is failed. Apr 15 09:41:55 super-R720 systemd[1]: Unit apparmor.service entered failed stat Apr 15 09:41:55 super-R720 systemd[1]: apparmor.service failed. Apr 15 09:41:55 super-R720 polkitd(authority=local)[1197]: Unregistered Authenti Apr 15 09:41:55 super-R720 sudo[4010]: pam_unix(sudo:session): session closed fo Apr 15 09:42:11 super-R720 sudo[4121]: super : TTY=pts/1 ; PWD=/home/super ; USE Apr 15 09:42:11 super-R720 sudo[4121]: pam_unix(sudo:session): session opened fo Apr 15 09:42:11 super-R720 sudo[4121]: pam_unix(sudo:session): session closed fo Apr 15 09:42:25 super-R720 sudo[4123]: super : TTY=pts/1 ; PWD=/home/super ; USE Apr 15 09:42:25 super-R720 sudo[4123]: pam_unix(sudo:session): session opened fo Apr 15 09:42:25 super-R720 sudo[4123]: pam_unix(sudo:session): session closed fo Apr 15 09:43:59 super-R720 wpa_supplicant[1230]: wlan0: WPA: Group rekeying comp Apr 15 09:44:50 super-R720 kernel: [UFW BLOCK] IN=wlan0 OUT= MAC=00:26:c6:19:f1: Apr 15 09:44:50 super-R720 kernel: [UFW BLOCK] IN=wlan0 OUT= MAC=00:26:c6:19:f1: Apr 15 09:44:52 super-R720 kernel: [UFW BLOCK] IN=wlan0 OUT= MAC=00:26:c6:19:f1: Apr 15 09:50:10 super-R720 polkitd(authority=local)[1197]: Operator of unix-sess Apr 15 09:50:10 super-R720 pkexec[4587]: pam_unix(polkit-1:session): session ope Apr 15 09:50:10 super-R720 pkexec[4587]: pam_ck_connector(polkit-1:session): can Apr 15 09:50:10 super-R720 pkexec[4587]: super: Executing command [USER=root] [T lines 2814-2836/2836 (END) -- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel -- -- Unit apparmor.service has failed. -- -- The result is failed. Apr 15 09:41:55 super-R720 systemd[1]: Unit apparmor.service entered failed state. Apr 15 09:41:55 super-R720 systemd[1]: apparmor.service failed. Apr 15 09:41:55 super-R720 polkitd(authority=local)[1197]: Unregistered Authentication Agent for unix-process:4011:564372 (system bus name :1.6 Apr 15 09:41:55 super-R720 sudo[4010]: pam_unix(sudo:session): session closed for user root Apr 15 09:42:11 super-R720 sudo[4121]: super : TTY=pts/1 ; PWD=/home/super ; USER=root ; COMMAND=/bin/systemctl status apparmor.service Apr 15 09:42:11 super-R720 sudo[4121]: pam_unix(sudo:session): session opened for user root by super(uid=0) Apr 15 09:42:11 super-R720 sudo[4121]: pam_unix(sudo:session): session closed for user root Apr 15 09:42:25 super-R720 sudo[4123]: super : TTY=pts/1 ; PWD=/home/super ; USER=root ; COMMAND=/bin/systemctl status -l apparmor.service Apr 15 09:42:25 super-R720 sudo[4123]: pam_unix(sudo:session): session opened for user root by super(uid=0) Apr 15 09:42:25 super-R720 sudo[4123]: pam_unix(sudo:session): session closed for user root Apr 15 09:43:59 super-R720 wpa_supplicant[1230]: wlan0: WPA: Group rekeying completed with 00:1b:2f:40:85:86 [GTK=TKIP] Apr 15 09:44:50 super-R720 kernel: [UFW BLOCK] IN=wlan0 OUT= MAC=00:26:c6:19:f1:04:00:1b:2f:40:85:86:08:00
[Touch-packages] [Bug 1444356] Re: apparmor fails to initialise at startup
Curious, I wonder what happened to your abstractions/evince; you may need to re-install the evince-common package to get it back. It might be worth running debsums -sa to discover other surprisingly missing files. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1444356 Title: apparmor fails to initialise at startup Status in apparmor package in Ubuntu: New Bug description: apparmor is failing to intitialise and start. Systemctl status -l apparmor.service output is: sudo systemctl status -l apparmor.service ● apparmor.service - LSB: AppArmor initialization Loaded: loaded (/etc/init.d/apparmor) Active: failed (Result: exit-code) since Wed 2015-04-15 09:41:55 BST; 29s ago Docs: man:systemd-sysv-generator(8) Process: 4016 ExecStart=/etc/init.d/apparmor start (code=exited, status=123) Apr 15 09:41:55 super-R720 systemd[1]: Starting LSB: AppArmor initialization... Apr 15 09:41:55 super-R720 apparmor[4016]: * Starting AppArmor profiles Apr 15 09:41:55 super-R720 apparmor[4016]: AppArmor parser error for /etc/apparmor.d/usr.bin.evince in /etc/apparmor.d/usr.bin.evince at line 14: Could not open 'abstractions/evince' Apr 15 09:41:55 super-R720 apparmor[4016]: AppArmor parser error for /etc/apparmor.d/usr.bin.evince in /etc/apparmor.d/usr.bin.evince at line 14: Could not open 'abstractions/evince' Apr 15 09:41:55 super-R720 apparmor[4016]: ...fail! Apr 15 09:41:55 super-R720 systemd[1]: apparmor.service: control process exited, code=exited status=123 Apr 15 09:41:55 super-R720 systemd[1]: Failed to start LSB: AppArmor initialization. Apr 15 09:41:55 super-R720 systemd[1]: Unit apparmor.service entered failed state. Apr 15 09:41:55 super-R720 systemd[1]: apparmor.service failed. Not secure if one app fails and thus the whole of apparmor! Output of journalctl -xe -- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel -- -- Unit apparmor.service has failed. -- -- The result is failed. Apr 15 09:41:55 super-R720 systemd[1]: Unit apparmor.service entered failed stat Apr 15 09:41:55 super-R720 systemd[1]: apparmor.service failed. Apr 15 09:41:55 super-R720 polkitd(authority=local)[1197]: Unregistered Authenti Apr 15 09:41:55 super-R720 sudo[4010]: pam_unix(sudo:session): session closed fo Apr 15 09:42:11 super-R720 sudo[4121]: super : TTY=pts/1 ; PWD=/home/super ; USE Apr 15 09:42:11 super-R720 sudo[4121]: pam_unix(sudo:session): session opened fo Apr 15 09:42:11 super-R720 sudo[4121]: pam_unix(sudo:session): session closed fo Apr 15 09:42:25 super-R720 sudo[4123]: super : TTY=pts/1 ; PWD=/home/super ; USE Apr 15 09:42:25 super-R720 sudo[4123]: pam_unix(sudo:session): session opened fo Apr 15 09:42:25 super-R720 sudo[4123]: pam_unix(sudo:session): session closed fo Apr 15 09:43:59 super-R720 wpa_supplicant[1230]: wlan0: WPA: Group rekeying comp Apr 15 09:44:50 super-R720 kernel: [UFW BLOCK] IN=wlan0 OUT= MAC=00:26:c6:19:f1: Apr 15 09:44:50 super-R720 kernel: [UFW BLOCK] IN=wlan0 OUT= MAC=00:26:c6:19:f1: Apr 15 09:44:52 super-R720 kernel: [UFW BLOCK] IN=wlan0 OUT= MAC=00:26:c6:19:f1: Apr 15 09:50:10 super-R720 polkitd(authority=local)[1197]: Operator of unix-sess Apr 15 09:50:10 super-R720 pkexec[4587]: pam_unix(polkit-1:session): session ope Apr 15 09:50:10 super-R720 pkexec[4587]: pam_ck_connector(polkit-1:session): can Apr 15 09:50:10 super-R720 pkexec[4587]: super: Executing command [USER=root] [T lines 2814-2836/2836 (END) -- Support: http://lists.freedesktop.org/mailman/listinfo/systemd-devel -- -- Unit apparmor.service has failed. -- -- The result is failed. Apr 15 09:41:55 super-R720 systemd[1]: Unit apparmor.service entered failed state. Apr 15 09:41:55 super-R720 systemd[1]: apparmor.service failed. Apr 15 09:41:55 super-R720 polkitd(authority=local)[1197]: Unregistered Authentication Agent for unix-process:4011:564372 (system bus name :1.6 Apr 15 09:41:55 super-R720 sudo[4010]: pam_unix(sudo:session): session closed for user root Apr 15 09:42:11 super-R720 sudo[4121]: super : TTY=pts/1 ; PWD=/home/super ; USER=root ; COMMAND=/bin/systemctl status apparmor.service Apr 15 09:42:11 super-R720 sudo[4121]: pam_unix(sudo:session): session opened for user root by super(uid=0) Apr 15 09:42:11 super-R720 sudo[4121]: pam_unix(sudo:session): session closed for user root Apr 15 09:42:25 super-R720 sudo[4123]: super : TTY=pts/1 ; PWD=/home/super ; USER=root ; COMMAND=/bin/systemctl status -l apparmor.service Apr 15 09:42:25 super-R720 sudo[4123]: pam_unix(sudo:session): session opened for user root by super(uid=0) Apr 15 09:42:25 super-R720 sudo[4123]: pam_unix(sudo:session): session closed for user root Apr 15 09:43:59 super-R720 wpa_supplicant[1230]: wlan0: WPA: Group rekeying completed with
[Touch-packages] [Bug 1298611] Re: [FFe] apparmor signal and ptrace mediation
Ken, The ptrace mediation in 12.04 LTS is very rudimentary; if you add capability sys_ptrace, to a profile then processes running in that profile are allowed to trace any process the discretionary access controls allow. The fine-grained permissions introduced in 14.04 LTS require both the new kernel and userspace. I tested that the apparmor 2.7.102-0ubuntu3.10 package with the linux- generic-lts-trusty 3.13.0.49.43 package will allow ptrace using the capability sys_ptrace, permission via a strace profile: # cat usr.bin.strace # Last Modified: Sat Apr 11 03:38:35 2015 #include tunables/global /usr/bin/strace { #include abstractions/base capability sys_ptrace, /bin/ls rix, /home/*/ r, /proc/filesystems r, /usr/bin/strace mr, } I tested both strace /bin/ls and strace -p 1. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1298611 Title: [FFe] apparmor signal and ptrace mediation Status in apparmor package in Ubuntu: Fix Released Status in apparmor-easyprof-ubuntu package in Ubuntu: Fix Released Status in libvirt package in Ubuntu: Fix Released Status in lightdm package in Ubuntu: Fix Released Status in linux package in Ubuntu: Fix Released Status in lxc package in Ubuntu: Fix Released Bug description: Background: kernel and apparmor userspace updates to support signal and ptrace mediation. These packages are listed in one bug because they are related, but the FFes may be granted and the uploads may happen at different times. = linux = Summary: This feature freeze exception is requested for signal and ptrace mediation via apparmor in the kernel. When used with a compatible apparmor userspace, signals and ptrace rules are supported. When used without a compatible apparmor userspace (eg, on a precise system with a trusty backport kernel), signal and ptrace mediation is not enforced (ie, you can use this kernel with an old userspace without any issues). The fine grained mediation of signals and ptraces also incorporates improved versioning support that allows this kernel to better support older and newer userspaces. This allows for this version of the kernel to work as a backport kernel unmodified (currently a patch and config are used to provide backport kernels). The kernel patch is available at git://kernel.ubuntu.com/jj/ubuntu-trusty.git in the trusty-alpha6 branch apparmor-alpha6-sync Testing: * 12.04 system with backported kernel: DONE * test-apparmor.py: PASS (runs extensive tests (upstream and distro)) * exploratory manual testing: PASS (networking, aa-enforce with firefox, firefox works, apparmor blocks access, etc) * aa-status: PASS * lxc: PASS (containers can be created, started, shutdown) * libvirt: PASS (VMs started via openstack, and test-libvirt.py from QRT passes all tests) * 14.04 system (non-Touch) with current apparmor userspace: DONE (relevant parts of https://wiki.ubuntu.com/Process/Merges/TestPlans/AppArmor) * test-apparmor.py: PASS (runs extensive tests (upstream and distro)) * exploratory manual testing: PASS (networking, aa-enforce with firefox, firefox works, apparmor blocks access, etc) * aa-status: PASS * lxc: PASS (containers can be created, started, shutdown) * libvirt: PASS (QRT/script/test-libvirt.py (though there are 3 failures unrelated to apparmor)) * click-apparmor QRT touch image tests: PASS * apparmor-easyprof-ubuntu QRT touch image tests: PASS * 14.04 system (non-Touch) with updated apparmor userspace capable of supporting signal and ptrace mediation: DONE (relevant parts of https://wiki.ubuntu.com/Process/Merges/TestPlans/AppArmor. Note: this is marked 'done' from the kernel perspective-- the apparmor userspace upload is being prepared and tests assume userspace is using latest patches on the list) * test-apparmor.py: PASS (runs extensive tests (upstream and distro)) * exploratory manual testing: PASS (networking, aa-enforce with firefox, firefox works, apparmor blocks access, etc) * aa-status: PASS * lxc: PASS (containers can be created, started, shutdown) * libvirt: PASS (QRT/script/test-libvirt.py (though there are 3 failures unrelated to apparmor)) * click-apparmor QRT touch image tests: PASS * apparmor-easyprof-ubuntu QRT touch image tests: PASS Justification: This feature is required to support comprehensive application confinement on Ubuntu Touch. This feature adds a significant security benefit to libvirt's qemu guest isolation which is fundamental to Ubuntu on Server/Cloud. This feature also adds a welcome improvement to administrators wishing to further protect their systems. = apparmor userspace = Summary: This feature freeze exception is requested for signal and ptrace mediation for apparmor userspace. When used with a compatible kernel, signals and ptrace rules are
[Touch-packages] [Bug 1404762] Re: apparmor profile usr.sbin.clamd does not allow ScanOnAccess via fanotify
Hartwig, great find with the backup copied file! That would definitely complicate all debugging efforts. Please do report back now that you can make some forward progress. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1404762 Title: apparmor profile usr.sbin.clamd does not allow ScanOnAccess via fanotify Status in apparmor package in Ubuntu: Confirmed Bug description: I tried to enable the ScanOnAccess option in /etc/clamav.conf to get on-access scanning. Doing so, /var/log/clamav/clamav.log tells me: ERROR: ScanOnAccess: fanotify_init failed: Operation not permitted ScanOnAccess: clamd must be started by root Setting User to root in /etc/clamav/clamd.conf makes the clamav-daemon to fail with service clamav-daemon start * Starting ClamAV daemon clamd ERROR: initgroups() failed. I had to disable the apparmor.profile with a cd /etc/apparmor.d/disable ln -s ./../usr.sbin.clamd Then, the ERROR: initgroups() failed. disappears. The apparmor itself came via apt-get packages. I did not edit it. Description: Ubuntu 14.04.1 LTS Release: 14.04 apt-cache policy apparmor-profiles apparmor-profiles: Installiert: (keine) Installationskandidat: 2.8.95~2430-0ubuntu5.1 Versionstabelle: 2.8.95~2430-0ubuntu5.1 0 500 http://de.archive.ubuntu.com/ubuntu/ trusty-updates/main amd64 Packages 500 http://security.ubuntu.com/ubuntu/ trusty-security/main amd64 Packages 2.8.95~2430-0ubuntu5 0 500 http://de.archive.ubuntu.com/ubuntu/ trusty/main amd64 Packages ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: apparmor-profiles (not installed) ProcVersionSignature: Ubuntu 3.13.0-43.72-generic 3.13.11.11 Uname: Linux 3.13.0-43-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.6 Architecture: amd64 Date: Mon Dec 22 01:23:04 2014 InstallationDate: Installed on 2014-11-29 (22 days ago) InstallationMedia: Ubuntu 14.04.1 LTS Trusty Tahr - Release amd64 (20140722.2) ProcEnviron: LANGUAGE=de_DE TERM=xterm PATH=(custom, no user) LANG=de_DE.UTF-8 SHELL=/bin/bash ProcKernelCmdline: BOOT_IMAGE=/@/boot/vmlinuz-3.13.0-43-generic root=UUID=6408c2d9-1b60-43d7-9a7f-2dceeb40de28 ro rootflags=subvol=@ quiet splash vt.handoff=7 SourcePackage: apparmor Syslog: UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1404762/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1425398] Re: Apparmor uses rsyslogd profile for different processes - utopic HWE
Pavel, note that Steve closed the rsyslog/vivid task because that has been fixed; the rsyslog/trusty task is still open, as are the kernel portions of the bug. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1425398 Title: Apparmor uses rsyslogd profile for different processes - utopic HWE Status in apparmor package in Ubuntu: Invalid Status in linux package in Ubuntu: Confirmed Status in linux-lts-utopic package in Ubuntu: Invalid Status in rsyslog package in Ubuntu: Fix Released Status in apparmor source package in Trusty: Invalid Status in linux source package in Trusty: Confirmed Status in linux-lts-utopic source package in Trusty: Invalid Status in rsyslog source package in Trusty: Triaged Bug description: Hi. I've noticed that apparmor loads /usr/sbin/rsyslogd profile for completely unrelated processes: Feb 25 08:36:19 emma kernel: [ 134.796218] audit: type=1400 audit(1424842579.429:245): apparmor=DENIED operation=sendmsg profile=/usr/sbin/rsyslogd name=/dev/log pid=4002 comm=sshd requested_mask=r denied_mask=r fsuid=0 ouid=0 Feb 25 08:36:23 emma kernel: [ 139.330989] audit: type=1400 audit(1424842583.965:246): apparmor=DENIED operation=sendmsg profile=/usr/sbin/rsyslogd name=/dev/log pid=4080 comm=sudo requested_mask=r denied_mask=r fsuid=0 ouid=0 Feb 25 08:35:42 emma kernel: [ 97.912402] audit: type=1400 audit(1424842542.565:241): apparmor=DENIED operation=sendmsg profile=/usr/sbin/rsyslogd name=/dev/log pid=2436 comm=whoopsie requested_mask=r denied_mask=r fsuid=103 ouid=0 Feb 25 08:34:43 emma kernel: [ 38.867998] audit: type=1400 audit(1424842483.546:226): apparmor=DENIED operation=sendmsg profile=/usr/sbin/rsyslogd name=/dev/log pid=3762 comm=ntpd requested_mask=r denied_mask=r fsuid=0 ouid=0 I'm not sure how apparmor decides which profile to use for which task, but is shouldn't load '/usr/sbin/rsyslogd' profile for sshd/ntpd/etc. I'm running: # lsb_release -rd Description: Ubuntu 14.04.2 LTS Release: 14.04 # dpkg -l | grep apparmor ii apparmor2.8.95~2430-0ubuntu5.1 amd64User-space parser utility for AppArmor ii apparmor-profiles 2.8.95~2430-0ubuntu5.1 all Profiles for AppArmor Security policies ii apparmor-utils 2.8.95~2430-0ubuntu5.1 amd64Utilities for controlling AppArmor ii libapparmor-perl2.8.95~2430-0ubuntu5.1 amd64AppArmor library Perl bindings ii libapparmor1:amd64 2.8.95~2430-0ubuntu5.1 amd64changehat AppArmor library ii python3-apparmor2.8.95~2430-0ubuntu5.1 amd64AppArmor Python3 utility library ii python3-libapparmor 2.8.95~2430-0ubuntu5.1 amd64AppArmor library Python3 bindings # uname -a Linux emma 3.16.0-31-generic #41~14.04.1-Ubuntu SMP Wed Feb 11 19:30:13 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1425398/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1393318] Re: Media-Hub can't play a file (*.mp3) downloaded with DownloadManager 0.1
** Changed in: apparmor-easyprof-ubuntu (Ubuntu) Status: Incomplete = New -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor-easyprof-ubuntu in Ubuntu. https://bugs.launchpad.net/bugs/1393318 Title: Media-Hub can't play a file (*.mp3) downloaded with DownloadManager 0.1 Status in apparmor-easyprof-ubuntu package in Ubuntu: New Bug description: When download *.mp3 file with DownloadManager 0.1, can't play it with MediaPlayer. The error in media-hub is: Client denied access to open_uri() the code: Rectangle { width: parent.width height: units.gu(20) TextField { id: text text: http://www.everyayah.com/data/Ghamadi_40kbps/001001.mp3; height: 50 anchors { left: parent.left right: button.left rightMargin: units.gu(2) } } Button { id: button text: Download height: 50 anchors.right: parent.right onClicked: { single.download(text.text); } } ProgressBar { minimumValue: 0 maximumValue: 100 value: single.progress anchors { left: parent.left right: parent.right bottom: parent.bottom } SingleDownload { id: single } } } MediaPlayer{ id: playSound } Button { text:Play file Downloaded onClicked: { playSound.source= /home/phablet/.local/share/ubuntu-download-manager/com.ubuntu.developer.myApp/Downloads/001001.mp3 playSound.play() } } When click on the Button (Play file Downloaded) le file is not playing To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor-easyprof-ubuntu/+bug/1393318/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1404762] Re: apparmor profile usr.sbin.clamd does not allow ScanOnAccess via fanotify
Hartwig, are there still AppArmor DENIED lines in your /var/log/syslog or /var/log/audit/audit.log files even after adding all those extra capabilities? Granted, a profiled application with all those capabilities is likely powerful enough to do great damage to the system anyway... Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1404762 Title: apparmor profile usr.sbin.clamd does not allow ScanOnAccess via fanotify Status in apparmor package in Ubuntu: Confirmed Bug description: I tried to enable the ScanOnAccess option in /etc/clamav.conf to get on-access scanning. Doing so, /var/log/clamav/clamav.log tells me: ERROR: ScanOnAccess: fanotify_init failed: Operation not permitted ScanOnAccess: clamd must be started by root Setting User to root in /etc/clamav/clamd.conf makes the clamav-daemon to fail with service clamav-daemon start * Starting ClamAV daemon clamd ERROR: initgroups() failed. I had to disable the apparmor.profile with a cd /etc/apparmor.d/disable ln -s ./../usr.sbin.clamd Then, the ERROR: initgroups() failed. disappears. The apparmor itself came via apt-get packages. I did not edit it. Description: Ubuntu 14.04.1 LTS Release: 14.04 apt-cache policy apparmor-profiles apparmor-profiles: Installiert: (keine) Installationskandidat: 2.8.95~2430-0ubuntu5.1 Versionstabelle: 2.8.95~2430-0ubuntu5.1 0 500 http://de.archive.ubuntu.com/ubuntu/ trusty-updates/main amd64 Packages 500 http://security.ubuntu.com/ubuntu/ trusty-security/main amd64 Packages 2.8.95~2430-0ubuntu5 0 500 http://de.archive.ubuntu.com/ubuntu/ trusty/main amd64 Packages ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: apparmor-profiles (not installed) ProcVersionSignature: Ubuntu 3.13.0-43.72-generic 3.13.11.11 Uname: Linux 3.13.0-43-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.6 Architecture: amd64 Date: Mon Dec 22 01:23:04 2014 InstallationDate: Installed on 2014-11-29 (22 days ago) InstallationMedia: Ubuntu 14.04.1 LTS Trusty Tahr - Release amd64 (20140722.2) ProcEnviron: LANGUAGE=de_DE TERM=xterm PATH=(custom, no user) LANG=de_DE.UTF-8 SHELL=/bin/bash ProcKernelCmdline: BOOT_IMAGE=/@/boot/vmlinuz-3.13.0-43-generic root=UUID=6408c2d9-1b60-43d7-9a7f-2dceeb40de28 ro rootflags=subvol=@ quiet splash vt.handoff=7 SourcePackage: apparmor Syslog: UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1404762/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1440070] Re: openssh-server attempts to connect to upstart and the connection is refused
** Tags added: systemd-boot -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/1440070 Title: openssh-server attempts to connect to upstart and the connection is refused Status in openssh package in Ubuntu: New Bug description: lsb_release -rd: Description: Ubuntu Vivid Vervet (development branch) Release: 15.04 pkg-name: christian@Moustachio:~/Code$ apt-cache policy openssh-server openssh-server: Installed: 1:6.7p1-5 Candidate: 1:6.7p1-5 Version table: *** 1:6.7p1-5 0 500 http://us.archive.ubuntu.com/ubuntu/ vivid/main amd64 Packages 100 /var/lib/dpkg/status On Ubuntu 15.04 (Vivid Ververt) the installation of the package openssh-server displays the following error message: initctl: Unable to connect to Upstart: Failed to connect to socket /com/ubuntu/upstart: Connection refused Running 'systemctl status ssh' shows that systemd knows about the service: christian@Moustachio:~/Code$ ubuntu-bug openssh-server Gtk-Message: GtkDialog mapped without a transient parent. This is discouraged. (process:12244): GLib-CRITICAL **: g_slice_set_config: assertion 'sys_page_size == 0' failed christian@Moustachio:~/Code$ systemctl status ssh ● ssh.service - OpenBSD Secure Shell server Loaded: loaded (/lib/systemd/system/ssh.service; enabled; vendor preset: enabled) Active: active (running) since Fri 2015-04-03 07:43:01 MDT; 4min 41s ago Main PID: 11689 (sshd) CGroup: /system.slice/ssh.service └─11689 /usr/sbin/sshd -D Apr 03 07:43:01 Moustachio systemd[1]: Started OpenBSD Secure Shell server. Apr 03 07:43:01 Moustachio systemd[1]: Starting OpenBSD Secure Shell server... Apr 03 07:43:01 Moustachio sshd[11689]: Server listening on 0.0.0.0 port 22. Apr 03 07:43:01 Moustachio sshd[11689]: Server listening on :: port 22. It appears that sshd is attempting to register with upstart and with systemd. SInce Ubuntu 15.04 upstart has been replaced with systemd. I expected openssh-server on Ubuntu 15.04 to not want to use upstart. It does properly use systemd, it just prints an error about trying to tallk to upstart. ProblemType: Bug DistroRelease: Ubuntu 15.04 Package: openssh-server 1:6.7p1-5 ProcVersionSignature: Ubuntu 3.19.0-10.10-generic 3.19.2 Uname: Linux 3.19.0-10-generic x86_64 ApportVersion: 2.17-0ubuntu1 Architecture: amd64 CurrentDesktop: Unity Date: Fri Apr 3 07:45:13 2015 InstallationDate: Installed on 2015-03-23 (11 days ago) InstallationMedia: Ubuntu 15.04 Vivid Vervet - Alpha amd64 (20150322) SourcePackage: openssh UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1440070/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1439136] Re: Messages readable when phone locked..
** Tags added: bq ** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to indicator-messages in Ubuntu. https://bugs.launchpad.net/bugs/1439136 Title: Messages readable when phone locked.. Status in indicator-messages package in Ubuntu: New Bug description: When the phone is in a locked state swiping down you are able to get access to the notification tab, from here you are able to read recent SMS messages -- which is all well and good if you want quick access to your text messages but you are also able to reply to the text message without unlocking the phone. in summary; You are able to read and send SMS messages without unlocking the phone. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/indicator-messages/+bug/1439136/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1439041] Re: Address-Book lists contacts from second google account without permission
** Tags added: bq ** Information type changed from Public to Public Security -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to address-book-app in Ubuntu. https://bugs.launchpad.net/bugs/1439041 Title: Address-Book lists contacts from second google account without permission Status in address-book-app package in Ubuntu: New Bug description: Hello, I am using the BQ phone. I have two google accounts registered in my online-accounts. The first account has access to all applications listed in online accounts. The second account is supposed to deliver only the calendar events of my wife. Hence I enabled for the second account only access to calendar and com.ubuntu.developer However my address-book lists all contacts of my wife even though no access is granted in online accounts. The behavior not only affects the usability but is also a security issue. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/address-book-app/+bug/1439041/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1426316] Re: Java applets won't run in Firefox with Apparmor profile activated
Franck, thanks for the patch, but I'm curious; the DENIED in the description is for dconf, the DENIED in the automatic tools is for a dbus access, and the patch you've included is for some /run/user icedteaplugin files. Do you know which if the other two are important or unimportant? Do you know if you added rules for them, too? Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1426316 Title: Java applets won't run in Firefox with Apparmor profile activated Status in apparmor package in Ubuntu: New Bug description: After activating firefox profile, be it in complain or enforce mode, no applet will run with OpenJDK. The culprit seems to be: apparmor=DENIED operation=open profile=/usr/lib/firefox/firefox{,[^s][^h]}//browser_openjdk name=/run/user/1000/dconf/user pid=11973 comm=64636F6E6620776F726B6572 requested_mask=wrc denied_mask=wrc fsuid=1000 ouid=1000 The rules that prevent the applets to run belong to Apparmor abstractions, specifically /etc/apparmor.d/abstractions/ubuntu- browser.d/java These rules will be enforced, even when usr.in.firefox is in complain mode (I don't know why exactly) Adding write access to the line owner /run/user/*/icedteaplugin-*/ rw in /etc/apparmor.d/abstractions/ubuntu-browser.d/java seems to solve the problem. ProblemType: Bug DistroRelease: Ubuntu 14.10 Package: apparmor-profiles 2.8.98-0ubuntu2 ProcVersionSignature: Ubuntu 3.16.0-31.41-lowlatency 3.16.7-ckt5 Uname: Linux 3.16.0-31-lowlatency x86_64 ApportVersion: 2.14.7-0ubuntu8.2 Architecture: amd64 CurrentDesktop: Unity Date: Fri Feb 27 11:05:20 2015 InstallationDate: Installed on 2014-12-13 (75 days ago) InstallationMedia: Ubuntu 14.10 Utopic Unicorn - Release amd64 (20141022.1) PackageArchitecture: all ProcKernelCmdline: BOOT_IMAGE=/vmlinuz-3.16.0-31-lowlatency root=/dev/mapper/ubuntu--vg-lv--root ro threadirqs quiet splash vt.handoff=7 SourcePackage: apparmor Syslog: Feb 27 09:42:45 franck-ThinkPad-T430s dbus[3940]: apparmor=DENIED operation=dbus_method_call bus=session path=/org/freedesktop/DBus interface=org.freedesktop.DBus member=Hello mask=send name=org.freedesktop.DBus pid=9748 profile=/usr/lib/firefox/firefox{,*[^s][^h]}//browser_openjdk peer_profile=unconfined UpgradeStatus: No upgrade log present (probably fresh install) modified.conffile..etc.apparmor.d.usr.sbin.dnsmasq: [modified] modified.conffile..etc.apparmor.d.usr.sbin.traceroute: [modified] mtime.conffile..etc.apparmor.d.usr.sbin.dnsmasq: 2015-02-20T14:58:28.130461 mtime.conffile..etc.apparmor.d.usr.sbin.traceroute: 2015-02-20T15:04:02.437880 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1426316/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1432126] Re: Evince denied from opening
** Also affects: apparmor Importance: Undecided Status: New ** Changed in: apparmor Status: New = Fix Committed -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1432126 Title: Evince denied from opening Status in AppArmor Linux application security framework: Fix Committed Status in Ubuntu GNOME: New Status in apparmor package in Ubuntu: Confirmed Bug description: Apparmor is denying evince from running. It initially started when I tried opening a PDF attachment in Thunderbird. Saving the file to disk and opening via nautilus renders the same result. Trying to just open evince without a file doesn't work as well. Mar 14 11:10:00 host evince[27787]: audit-1400 apparmor=DENIED operation=open profile=/usr/bin/evince name=/run/user/1000/gdm/Xauthority pid=27787 comm=evince requested_mask=r denied_mask=r fsuid=1000 ouid=1000 Mar 14 11:10:00 host kernel: audit: type=1400 audit(1426324200.744:33): apparmor=DENIED operation=open profile=/usr/bin/evince name=/run/user/1000/gdm/Xauthority pid=27787 comm=evince requested_mask=r denied_mask=r fsuid=1000 ouid=1000 Mar 14 11:10:00 host evince.desktop[27787]: No protocol specified Mar 14 11:10:00 host evince.desktop[27787]: ** (evince:27787): WARNING **: Could not open X display Mar 14 11:10:00 host evince[27787]: audit-1400 apparmor=DENIED operation=open profile=/usr/bin/evince name=/run/user/1000/gdm/Xauthority pid=27787 comm=evince requested_mask=r denied_mask=r fsuid=1000 ouid=1000 ProblemType: Bug DistroRelease: Ubuntu 15.04 Package: apparmor 2.9.1-0ubuntu7 ProcVersionSignature: Ubuntu 3.19.0-7.7-generic 3.19.0 Uname: Linux 3.19.0-7-generic x86_64 ApportVersion: 2.16.2-0ubuntu3 Architecture: amd64 CurrentDesktop: GNOME Date: Sat Mar 14 11:07:03 2015 InstallationDate: Installed on 2015-02-08 (33 days ago) InstallationMedia: Ubuntu-GNOME 15.04 Vivid Vervet - Alpha amd64 (20150207) ProcKernelCmdline: BOOT_IMAGE=/boot/vmlinuz-3.19.0-7-generic root=UUID=80974ebe-fd7c-446d-89c5-23bf40b9b915 ro quiet splash SourcePackage: apparmor Syslog: Mar 14 00:31:22 tanagra dbus[775]: [system] AppArmor D-Bus mediation is enabled UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/apparmor/+bug/1432126/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1432126] Re: Evince denied from opening
Brandon, I think you're right; I'm not sure what decided the .Xauthority files needed to move to somewhere else, but there it is, no longer in your home directory. Try adding the following line to your /etc/apparmor.d/abstractions/X file: owner /run/user/*/gdm/Xauthority r, Then sudo apparmor_parser --replace /etc/apparmor.d/ Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1432126 Title: Evince denied from opening Status in Ubuntu GNOME: New Status in apparmor package in Ubuntu: Confirmed Bug description: Apparmor is denying evince from running. It initially started when I tried opening a PDF attachment in Thunderbird. Saving the file to disk and opening via nautilus renders the same result. Trying to just open evince without a file doesn't work as well. Mar 14 11:10:00 host evince[27787]: audit-1400 apparmor=DENIED operation=open profile=/usr/bin/evince name=/run/user/1000/gdm/Xauthority pid=27787 comm=evince requested_mask=r denied_mask=r fsuid=1000 ouid=1000 Mar 14 11:10:00 host kernel: audit: type=1400 audit(1426324200.744:33): apparmor=DENIED operation=open profile=/usr/bin/evince name=/run/user/1000/gdm/Xauthority pid=27787 comm=evince requested_mask=r denied_mask=r fsuid=1000 ouid=1000 Mar 14 11:10:00 host evince.desktop[27787]: No protocol specified Mar 14 11:10:00 host evince.desktop[27787]: ** (evince:27787): WARNING **: Could not open X display Mar 14 11:10:00 host evince[27787]: audit-1400 apparmor=DENIED operation=open profile=/usr/bin/evince name=/run/user/1000/gdm/Xauthority pid=27787 comm=evince requested_mask=r denied_mask=r fsuid=1000 ouid=1000 ProblemType: Bug DistroRelease: Ubuntu 15.04 Package: apparmor 2.9.1-0ubuntu7 ProcVersionSignature: Ubuntu 3.19.0-7.7-generic 3.19.0 Uname: Linux 3.19.0-7-generic x86_64 ApportVersion: 2.16.2-0ubuntu3 Architecture: amd64 CurrentDesktop: GNOME Date: Sat Mar 14 11:07:03 2015 InstallationDate: Installed on 2015-02-08 (33 days ago) InstallationMedia: Ubuntu-GNOME 15.04 Vivid Vervet - Alpha amd64 (20150207) ProcKernelCmdline: BOOT_IMAGE=/boot/vmlinuz-3.19.0-7-generic root=UUID=80974ebe-fd7c-446d-89c5-23bf40b9b915 ro quiet splash SourcePackage: apparmor Syslog: Mar 14 00:31:22 tanagra dbus[775]: [system] AppArmor D-Bus mediation is enabled UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-gnome/+bug/1432126/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1435420] Re: package linux-image-extra-3.16.0-33-generic 3.16.0-33.44 failed to install/upgrade: run-parts: /etc/kernel/postinst.d/initramfs-tools exited with return code 1
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to initramfs-tools in Ubuntu. https://bugs.launchpad.net/bugs/1435420 Title: package linux-image-extra-3.16.0-33-generic 3.16.0-33.44 failed to install/upgrade: run-parts: /etc/kernel/postinst.d/initramfs-tools exited with return code 1 Status in initramfs-tools package in Ubuntu: New Bug description: i don t know ProblemType: Package DistroRelease: Ubuntu 14.10 Package: linux-image-extra-3.16.0-33-generic 3.16.0-33.44 ProcVersionSignature: Ubuntu 3.16.0-33.44-generic 3.16.7-ckt7 Uname: Linux 3.16.0-33-generic x86_64 ApportVersion: 2.14.7-0ubuntu8.2 Architecture: amd64 AudioDevicesInUse: USERPID ACCESS COMMAND /dev/snd/controlC0: mizael 2574 F pulseaudio Date: Sun Mar 22 12:04:32 2015 DuplicateSignature: package:linux-image-extra-3.16.0-33-generic:3.16.0-33.44:run-parts: /etc/kernel/postinst.d/initramfs-tools exited with return code 1 ErrorMessage: run-parts: /etc/kernel/postinst.d/initramfs-tools exited with return code 1 InstallationDate: Installed on 2015-01-08 (73 days ago) InstallationMedia: Ubuntu 14.10 Utopic Unicorn - Release amd64 (20141022.1) MachineType: POSITIVO POSITIVO MOBILE ProcFB: 0 inteldrmfb ProcKernelCmdLine: BOOT_IMAGE=/vmlinuz-3.16.0-33-generic root=/dev/mapper/ubuntu--vg-root ro quiet splash vt.handoff=7 PulseList: Error: command ['pacmd', 'list'] failed with exit code 1: No PulseAudio daemon running, or not running as session daemon. RelatedPackageVersions: grub-pc 2.02~beta2-15 RfKill: 0: phy0: Wireless LAN Soft blocked: no Hard blocked: no SourcePackage: initramfs-tools Title: package linux-image-extra-3.16.0-33-generic 3.16.0-33.44 failed to install/upgrade: run-parts: /etc/kernel/postinst.d/initramfs-tools exited with return code 1 UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 10/24/2012 dmi.bios.vendor: American Megatrends Inc. dmi.bios.version: A14HV3AST_V1.0_PST_FDE dmi.board.asset.tag: To be filled by O.E.M. dmi.board.name: A14HV3A dmi.board.vendor: POSITIVO dmi.board.version: POSITIVO dmi.chassis.asset.tag: To Be Filled By O.E.M. dmi.chassis.type: 3 dmi.chassis.vendor: POSITIVO dmi.chassis.version: POSITIVO dmi.modalias: dmi:bvnAmericanMegatrendsInc.:bvrA14HV3AST_V1.0_PST_FDE:bd10/24/2012:svnPOSITIVO:pnPOSITIVOMOBILE:pvrAHV3APST.100_FDE:rvnPOSITIVO:rnA14HV3A:rvrPOSITIVO:cvnPOSITIVO:ct3:cvrPOSITIVO: dmi.product.name: POSITIVO MOBILE dmi.product.version: AHV3APST.100_FDE dmi.sys.vendor: POSITIVO To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/initramfs-tools/+bug/1435420/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1434486] Re: System management options on lockscreen
The intention is to prevent someone local to the computer from just pulling the power cord or hitting the reset button when the system is locked and they want to shut it down or log in as a different user. I believe these dialog options are configurable via PolicyKit if you've taken the time to harden the local environment as for kiosk use or similar, Thanks ** Information type changed from Private Security to Public Security ** Changed in: lightdm (Ubuntu) Status: New = Opinion -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to lightdm in Ubuntu. https://bugs.launchpad.net/bugs/1434486 Title: System management options on lockscreen Status in lightdm package in Ubuntu: Opinion Bug description: When I'm lock the screen it's possible to turn off computer or restart it. This possibility on lock screen makes all lock screen idea no sense. When I'm lock the screen I want to no one was able to unlock it, turn off or reboot. ProblemType: Bug DistroRelease: Ubuntu 14.10 Package: lightdm 1.12.2-0ubuntu1 ProcVersionSignature: Ubuntu 3.16.0-26.35-generic 3.16.7-ckt1 Uname: Linux 3.16.0-26-generic x86_64 ApportVersion: 2.14.7-0ubuntu8.2 Architecture: amd64 CurrentDesktop: Unity Date: Fri Mar 20 10:47:07 2015 InstallationDate: Installed on 2014-04-19 (335 days ago) InstallationMedia: Ubuntu-Server 14.04 LTS Trusty Tahr - Release amd64 (20140416.2) SourcePackage: lightdm UpgradeStatus: Upgraded to utopic on 2014-11-06 (133 days ago) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/lightdm/+bug/1434486/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1414930] Re: [Lenovo ThinkPad X1 Carbon 20BT] Buttons of Synaptics trackpad doesn't work
The following temporary hack will enable the trackpoint buttons and if the trackpad is disabled in the bios will also disable the trackpad. (I don't remember where I saw this, sorry for non-attribution) sudo modprobe -rv psmouse; sudo modprobe -v psmouse proto=imps -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to systemd in Ubuntu. https://bugs.launchpad.net/bugs/1414930 Title: [Lenovo ThinkPad X1 Carbon 20BT] Buttons of Synaptics trackpad doesn't work Status in HWE Next Project: In Progress Status in The Linux Kernel: In Progress Status in libinput package in Ubuntu: Fix Released Status in linux package in Ubuntu: Confirmed Status in systemd package in Ubuntu: Fix Released Status in xserver-xorg-input-synaptics package in Ubuntu: New Status in linux source package in Trusty: Confirmed Status in systemd source package in Trusty: New Status in xserver-xorg-input-synaptics source package in Trusty: Confirmed Status in linux source package in Utopic: New Status in systemd source package in Utopic: New Status in xserver-xorg-input-synaptics source package in Utopic: New Bug description: Lenovo X1 3rd Carbon (201411-16196) Steps to reproduce the bug: 1, Log in to system 2, Click left/right/middle buttons of the touchpad Actual result: No response after clicking the buttons Expected results: Buttons work as expected behavirour ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: linux-image-3.13.0-45-generic 3.13.0-45.74 [modified: boot/vmlinuz-3.13.0-45-generic] ProcVersionSignature: Ubuntu 3.13.0-45.74-generic 3.13.11-ckt13 Uname: Linux 3.13.0-45-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.6 Architecture: amd64 AudioDevicesInUse: USERPID ACCESS COMMAND /dev/snd/controlC1: u 1598 F pulseaudio /dev/snd/controlC0: u 1598 F pulseaudio CurrentDesktop: Unity Date: Tue Jan 27 02:48:23 2015 HibernationDevice: RESUME=UUID=c553e9ba-b74b-43ad-8cf2-496531261e0f InstallationDate: Installed on 2015-01-27 (0 days ago) InstallationMedia: Ubuntu 14.04.1 LTS Trusty Tahr - Release amd64 (20150126) MachineType: LENOVO 20BTZ09ZUS ProcFB: 0 inteldrmfb ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.13.0-45-generic root=UUID=1d34e685-c98b-41f3-b649-87770517b194 ro quiet splash vt.handoff=7 RelatedPackageVersions: linux-restricted-modules-3.13.0-45-generic N/A linux-backports-modules-3.13.0-45-generic N/A linux-firmware 1.127.11 SourcePackage: linux UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 10/27/2014 dmi.bios.vendor: LENOVO dmi.bios.version: N14ET24W (1.02 ) dmi.board.asset.tag: Not Available dmi.board.name: 20BTZ09ZUS dmi.board.vendor: LENOVO dmi.board.version: SDK0E50510 WIN dmi.chassis.asset.tag: No Asset Information dmi.chassis.type: 10 dmi.chassis.vendor: LENOVO dmi.chassis.version: None dmi.modalias: dmi:bvnLENOVO:bvrN14ET24W(1.02):bd10/27/2014:svnLENOVO:pn20BTZ09ZUS:pvrThinkPadX1Carbon3rd:rvnLENOVO:rn20BTZ09ZUS:rvrSDK0E50510WIN:cvnLENOVO:ct10:cvrNone: dmi.product.name: 20BTZ09ZUS dmi.product.version: ThinkPad X1 Carbon 3rd dmi.sys.vendor: LENOVO To manage notifications about this bug go to: https://bugs.launchpad.net/hwe-next/+bug/1414930/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1434006] Re: Information leak
You can configure this with /etc/pam.d/sshd -- simply remove the pam_motd lines from your PAM sshd configuration and this information will no longer be shown when users successfully authenticate. (Neither sshd nor pam_motd.so care if your users are using bash or false or nologin for their shell; they successfully authenticated, which is all the pam_motd.so cares about.) Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/1434006 Title: Information leak Status in openssh package in Ubuntu: Invalid Bug description: I have configured ssh server. I have added user with nologin shell, because he's use sftp client to transfer files, not to login to shell. But if that user try to login to shell server returns information about server: $ ssh u...@someserver.org user@someserver's password: Welcome to Ubuntu 14.04.2 LTS (GNU/Linux 3.13.0-45-generic x86_64) * Documentation: https://help.ubuntu.com/ System information as of Thu Mar 19 11:16:13 CET 2015 System load:0.0 Processes: 131 Usage of /home: 52.4% of 295.16GB Users logged in: 1 Memory usage: 11% IP address for eth0: xxx.x.xxx.xxx Swap usage: 1% IP address for eth1: xx.xx.xxx.xxx Graph this data and manage this system at: https://landscape.canonical.com/ 10 packages can be updated. 10 updates are security updates. Last login: Thu Mar 19 11:16:13 2015 from xx.xxx.xx.xx This account is currently not available. Connection to someserver.org closed. ProblemType: Bug DistroRelease: Ubuntu 14.10 Package: openssh-server 1:6.6p1-8 ProcVersionSignature: Ubuntu 3.16.0-26.35-generic 3.16.7-ckt1 Uname: Linux 3.16.0-26-generic x86_64 ApportVersion: 2.14.7-0ubuntu8.2 Architecture: amd64 CurrentDesktop: Unity Date: Thu Mar 19 11:18:02 2015 InstallationDate: Installed on 2014-04-19 (334 days ago) InstallationMedia: Ubuntu-Server 14.04 LTS Trusty Tahr - Release amd64 (20140416.2) SourcePackage: openssh UpgradeStatus: Upgraded to utopic on 2014-11-06 (133 days ago) upstart.ssh.override: manual To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1434006/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1434006] Re: Information leak
** Information type changed from Private Security to Public Security ** Changed in: openssh (Ubuntu) Status: New = Invalid -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssh in Ubuntu. https://bugs.launchpad.net/bugs/1434006 Title: Information leak Status in openssh package in Ubuntu: Invalid Bug description: I have configured ssh server. I have added user with nologin shell, because he's use sftp client to transfer files, not to login to shell. But if that user try to login to shell server returns information about server: $ ssh u...@someserver.org user@someserver's password: Welcome to Ubuntu 14.04.2 LTS (GNU/Linux 3.13.0-45-generic x86_64) * Documentation: https://help.ubuntu.com/ System information as of Thu Mar 19 11:16:13 CET 2015 System load:0.0 Processes: 131 Usage of /home: 52.4% of 295.16GB Users logged in: 1 Memory usage: 11% IP address for eth0: xxx.x.xxx.xxx Swap usage: 1% IP address for eth1: xx.xx.xxx.xxx Graph this data and manage this system at: https://landscape.canonical.com/ 10 packages can be updated. 10 updates are security updates. Last login: Thu Mar 19 11:16:13 2015 from xx.xxx.xx.xx This account is currently not available. Connection to someserver.org closed. ProblemType: Bug DistroRelease: Ubuntu 14.10 Package: openssh-server 1:6.6p1-8 ProcVersionSignature: Ubuntu 3.16.0-26.35-generic 3.16.7-ckt1 Uname: Linux 3.16.0-26-generic x86_64 ApportVersion: 2.14.7-0ubuntu8.2 Architecture: amd64 CurrentDesktop: Unity Date: Thu Mar 19 11:18:02 2015 InstallationDate: Installed on 2014-04-19 (334 days ago) InstallationMedia: Ubuntu-Server 14.04 LTS Trusty Tahr - Release amd64 (20140416.2) SourcePackage: openssh UpgradeStatus: Upgraded to utopic on 2014-11-06 (133 days ago) upstart.ssh.override: manual To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/1434006/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1327692] Re: package libssl1.0.0 1.0.1f-1ubuntu2.2 failed to install/upgrade: trying to overwrite shared '/usr/share/doc/libssl1.0.0/changelog.Debian.gz', which is different from
How did you get to the situation of installing 14.10 OpenSSL packages by hand over the 12.04 LTS packages? Why would you do this? Why would you also do them piecemeal instead of upgrading all the replaced packages simultaneously? Thanks ** Changed in: openssl (Ubuntu) Status: Confirmed = Incomplete -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to openssl in Ubuntu. https://bugs.launchpad.net/bugs/1327692 Title: package libssl1.0.0 1.0.1f-1ubuntu2.2 failed to install/upgrade: trying to overwrite shared '/usr/share/doc/libssl1.0.0/changelog.Debian.gz', which is different from other instances of package libssl1.0.0:i386 Status in openssl package in Ubuntu: Incomplete Bug description: Broken Packages Problem ProblemType: Package DistroRelease: Ubuntu 14.04 Package: libssl1.0.0 1.0.1f-1ubuntu2.2 ProcVersionSignature: Ubuntu 3.13.0-24.47-generic 3.13.9 Uname: Linux 3.13.0-24-generic x86_64 NonfreeKernelModules: sep3_10 pax apwr3_1 ApportVersion: 2.14.1-0ubuntu3.2 Architecture: amd64 Date: Sat Jun 7 17:26:33 2014 DpkgTerminalLog: Preparing to unpack .../libssl1.0.0_1.0.1f-1ubuntu2.2_i386.deb ... Unpacking libssl1.0.0:i386 (1.0.1f-1ubuntu2.2) over (1.0.1f-1ubuntu2.1) ... dpkg: error processing archive /var/cache/apt/archives/libssl1.0.0_1.0.1f-1ubuntu2.2_i386.deb (--unpack): trying to overwrite shared '/usr/share/doc/libssl1.0.0/changelog.Debian.gz', which is different from other instances of package libssl1.0.0:i386 DuplicateSignature: package:libssl1.0.0:1.0.1f-1ubuntu2.2:trying to overwrite shared '/usr/share/doc/libssl1.0.0/changelog.Debian.gz', which is different from other instances of package libssl1.0.0:i386 ErrorMessage: trying to overwrite shared '/usr/share/doc/libssl1.0.0/changelog.Debian.gz', which is different from other instances of package libssl1.0.0:i386 InstallationDate: Installed on 2014-05-26 (12 days ago) InstallationMedia: Ubuntu-GNOME 14.04 LTS Trusty Tahr - Release amd64 (20140416.2) SourcePackage: openssl Title: package libssl1.0.0 1.0.1f-1ubuntu2.2 failed to install/upgrade: trying to overwrite shared '/usr/share/doc/libssl1.0.0/changelog.Debian.gz', which is different from other instances of package libssl1.0.0:i386 UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/openssl/+bug/1327692/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1433879] Re: package libavcodec-extra 6:9.18-0ubuntu0.14.04.1 failed to install/upgrade: package is in a very bad inconsistent state; you should reinstall it before attempting c
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to libav in Ubuntu. https://bugs.launchpad.net/bugs/1433879 Title: package libavcodec-extra 6:9.18-0ubuntu0.14.04.1 failed to install/upgrade: package is in a very bad inconsistent state; you should reinstall it before attempting configuration Status in libav package in Ubuntu: New Bug description: I have no idea ProblemType: Package DistroRelease: Ubuntu 14.04 Package: libavcodec-extra 6:9.18-0ubuntu0.14.04.1 ProcVersionSignature: Ubuntu 3.13.0-48.80-generic 3.13.11-ckt16 Uname: Linux 3.13.0-48-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.8 Architecture: amd64 Date: Thu Mar 19 06:27:41 2015 DuplicateSignature: package:libavcodec-extra:6:9.18-0ubuntu0.14.04.1:package is in a very bad inconsistent state; you should reinstall it before attempting configuration ErrorMessage: package is in a very bad inconsistent state; you should reinstall it before attempting configuration InstallationDate: Installed on 2014-04-24 (328 days ago) InstallationMedia: Ubuntu 13.10 Saucy Salamander - Release amd64 (20131016.1) PackageArchitecture: all SourcePackage: libav SystemImageInfo: Error: [Errno 2] No such file or directory: 'system-image-cli' Title: package libavcodec-extra 6:9.18-0ubuntu0.14.04.1 failed to install/upgrade: package is in a very bad inconsistent state; you should reinstall it before attempting configuration UpgradeStatus: Upgraded to trusty on 2014-04-28 (324 days ago) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libav/+bug/1433879/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1433557] Re: systemd-udev-settle.service failes, 3min boot delay
** Tags added: systemd-boot -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to dbus in Ubuntu. https://bugs.launchpad.net/bugs/1433557 Title: systemd-udev-settle.service failes, 3min boot delay Status in dbus package in Ubuntu: New Bug description: During boot, systemd-udev-settle.service failes causing a 3min boot delay. Journal report this: root@alice:~# journalctl -u systemd-udev-settle -- Logs begin at Wed 2015-03-18 12:38:16 CET, end at Wed 2015-03-18 12:47:32 CET. -- Mar 18 12:38:16 alice systemd[1]: Starting udev Wait for Complete Device Initialization... Mar 18 12:41:16 alice systemd[1]: systemd-udev-settle.service start operation timed out. Terminating. Mar 18 12:41:16 alice systemd[1]: Failed to start udev Wait for Complete Device Initialization. Mar 18 12:41:16 alice systemd[1]: Unit systemd-udev-settle.service entered failed state. Mar 18 12:41:16 alice systemd[1]: systemd-udev-settle.service failed. Mar 18 12:41:17 alice systemd[1]: Starting udev Wait for Complete Device Initialization... Mar 18 12:41:18 alice systemd[1]: Started udev Wait for Complete Device Initialization. The dmesg output arround that time is: [8.537560] Adding 16723964k swap on /dev/sda4. Priority:-1 extents:1 across:16723964k FS [9.559871] input: ST LIS3LV02DL Accelerometer as /devices/platform/lis3lv02d/input/input23 [ 189.205551] Bluetooth: Core ver 2.20 [ 189.205565] NET: Registered protocol family 31 ProblemType: Bug DistroRelease: Ubuntu 15.04 Package: dbus 1.8.12-1ubuntu3 ProcVersionSignature: Ubuntu 3.19.0-9.9-generic 3.19.1 Uname: Linux 3.19.0-9-generic x86_64 NonfreeKernelModules: fglrx ApportVersion: 2.16.2-0ubuntu3 Architecture: amd64 CurrentDesktop: XFCE Date: Wed Mar 18 12:51:08 2015 SourcePackage: dbus UpgradeStatus: Upgraded to vivid on 2015-03-02 (15 days ago) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/dbus/+bug/1433557/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1432395] Re: Hard showing some error
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1432395 Title: Hard showing some error Status in xorg package in Ubuntu: New Bug description: My hard disk is showing some error ProblemType: Bug DistroRelease: Ubuntu 14.10 Package: xorg 1:7.7+7ubuntu2 ProcVersionSignature: Ubuntu 3.16.0-33.44-generic 3.16.7-ckt7 Uname: Linux 3.16.0-33-generic x86_64 .tmp.unity.support.test.0: ApportVersion: 2.14.7-0ubuntu8.2 Architecture: amd64 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: compiz CompositorUnredirectDriverBlacklist: '(nouveau|Intel).*Mesa 8.0' CompositorUnredirectFSW: true Date: Sun Mar 15 22:49:11 2015 DistUpgraded: Fresh install DistroCodename: utopic DistroVariant: ubuntu GraphicsCard: Intel Corporation 2nd Generation Core Processor Family Integrated Graphics Controller [8086:0116] (rev 09) (prog-if 00 [VGA controller]) Subsystem: Toshiba America Info Systems Device [1179:fc50] InstallationDate: Installed on 2015-02-22 (20 days ago) InstallationMedia: Ubuntu 14.10 Utopic Unicorn - Release amd64 (20141022.1) MachineType: TOSHIBA Satellite L750-I5010 ProcEnviron: LANGUAGE=en_IN:en PATH=(custom, no user) LANG=en_IN SHELL=/bin/bash ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.16.0-33-generic root=UUID=5659b315-532a-4930-8ebc-c5bf11ec54c3 ro quiet splash vt.handoff=7 SourcePackage: xorg UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 06/26/2012 dmi.bios.vendor: INSYDE dmi.bios.version: 3.60 dmi.board.asset.tag: Base Board Asset Tag dmi.board.name: Base Board Product Name dmi.board.vendor: Intel Corp. dmi.board.version: Base Board Version dmi.chassis.asset.tag: No Asset Tag dmi.chassis.type: 10 dmi.chassis.vendor: OEM Chassis Manufacturer dmi.chassis.version: OEM Chassis Version dmi.modalias: dmi:bvnINSYDE:bvr3.60:bd06/26/2012:svnTOSHIBA:pnSatelliteL750-I5010:pvrPSK1YG-02F00H:rvnIntelCorp.:rnBaseBoardProductName:rvrBaseBoardVersion:cvnOEMChassisManufacturer:ct10:cvrOEMChassisVersion: dmi.product.name: Satellite L750-I5010 dmi.product.version: PSK1YG-02F00H dmi.sys.vendor: TOSHIBA version.compiz: compiz 1:0.9.12+14.10.20140918-0ubuntu1 version.ia32-libs: ia32-libs N/A version.libdrm2: libdrm2 2.4.56-1 version.libgl1-mesa-dri: libgl1-mesa-dri 10.3.2-0ubuntu0.1 version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx 10.3.2-0ubuntu0.1 version.xserver-xorg-core: xserver-xorg-core 2:1.16.0-1ubuntu1.3 version.xserver-xorg-input-evdev: xserver-xorg-input-evdev 1:2.9.0-1ubuntu2 version.xserver-xorg-video-ati: xserver-xorg-video-ati 1:7.4.0-2ubuntu2 version.xserver-xorg-video-intel: xserver-xorg-video-intel 2:2.99.914-1~exp1ubuntu4.2 version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau 1:1.0.11-1ubuntu2 xserver.bootTime: Sun Mar 15 21:47:57 2015 xserver.configfile: default xserver.errors: xserver.logfile: /var/log/Xorg.0.log xserver.outputs: product id 732 vendor LGD xserver.version: 2:1.16.0-1ubuntu1.3 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1432395/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1432395] Re: Hard showing some error
There were plenty of messages in your dmesg about an external hard drive; it may be dying, or the usb equipment used to attach it to the computer may be bad, but it looks like something worth worrying about. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1432395 Title: Hard showing some error Status in xorg package in Ubuntu: New Bug description: My hard disk is showing some error ProblemType: Bug DistroRelease: Ubuntu 14.10 Package: xorg 1:7.7+7ubuntu2 ProcVersionSignature: Ubuntu 3.16.0-33.44-generic 3.16.7-ckt7 Uname: Linux 3.16.0-33-generic x86_64 .tmp.unity.support.test.0: ApportVersion: 2.14.7-0ubuntu8.2 Architecture: amd64 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: compiz CompositorUnredirectDriverBlacklist: '(nouveau|Intel).*Mesa 8.0' CompositorUnredirectFSW: true Date: Sun Mar 15 22:49:11 2015 DistUpgraded: Fresh install DistroCodename: utopic DistroVariant: ubuntu GraphicsCard: Intel Corporation 2nd Generation Core Processor Family Integrated Graphics Controller [8086:0116] (rev 09) (prog-if 00 [VGA controller]) Subsystem: Toshiba America Info Systems Device [1179:fc50] InstallationDate: Installed on 2015-02-22 (20 days ago) InstallationMedia: Ubuntu 14.10 Utopic Unicorn - Release amd64 (20141022.1) MachineType: TOSHIBA Satellite L750-I5010 ProcEnviron: LANGUAGE=en_IN:en PATH=(custom, no user) LANG=en_IN SHELL=/bin/bash ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.16.0-33-generic root=UUID=5659b315-532a-4930-8ebc-c5bf11ec54c3 ro quiet splash vt.handoff=7 SourcePackage: xorg UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 06/26/2012 dmi.bios.vendor: INSYDE dmi.bios.version: 3.60 dmi.board.asset.tag: Base Board Asset Tag dmi.board.name: Base Board Product Name dmi.board.vendor: Intel Corp. dmi.board.version: Base Board Version dmi.chassis.asset.tag: No Asset Tag dmi.chassis.type: 10 dmi.chassis.vendor: OEM Chassis Manufacturer dmi.chassis.version: OEM Chassis Version dmi.modalias: dmi:bvnINSYDE:bvr3.60:bd06/26/2012:svnTOSHIBA:pnSatelliteL750-I5010:pvrPSK1YG-02F00H:rvnIntelCorp.:rnBaseBoardProductName:rvrBaseBoardVersion:cvnOEMChassisManufacturer:ct10:cvrOEMChassisVersion: dmi.product.name: Satellite L750-I5010 dmi.product.version: PSK1YG-02F00H dmi.sys.vendor: TOSHIBA version.compiz: compiz 1:0.9.12+14.10.20140918-0ubuntu1 version.ia32-libs: ia32-libs N/A version.libdrm2: libdrm2 2.4.56-1 version.libgl1-mesa-dri: libgl1-mesa-dri 10.3.2-0ubuntu0.1 version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx 10.3.2-0ubuntu0.1 version.xserver-xorg-core: xserver-xorg-core 2:1.16.0-1ubuntu1.3 version.xserver-xorg-input-evdev: xserver-xorg-input-evdev 1:2.9.0-1ubuntu2 version.xserver-xorg-video-ati: xserver-xorg-video-ati 1:7.4.0-2ubuntu2 version.xserver-xorg-video-intel: xserver-xorg-video-intel 2:2.99.914-1~exp1ubuntu4.2 version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau 1:1.0.11-1ubuntu2 xserver.bootTime: Sun Mar 15 21:47:57 2015 xserver.configfile: default xserver.errors: xserver.logfile: /var/log/Xorg.0.log xserver.outputs: product id 732 vendor LGD xserver.version: 2:1.16.0-1ubuntu1.3 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1432395/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1432396] Re: Hard showing some error
*** This bug is a duplicate of bug 1432395 *** https://bugs.launchpad.net/bugs/1432395 ** This bug has been marked a duplicate of bug 1432395 Hard showing some error ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1432396 Title: Hard showing some error Status in xorg package in Ubuntu: New Bug description: My hard disk is showing some error ProblemType: Bug DistroRelease: Ubuntu 14.10 Package: xorg 1:7.7+7ubuntu2 ProcVersionSignature: Ubuntu 3.16.0-33.44-generic 3.16.7-ckt7 Uname: Linux 3.16.0-33-generic x86_64 .tmp.unity.support.test.0: ApportVersion: 2.14.7-0ubuntu8.2 Architecture: amd64 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: compiz CompositorUnredirectDriverBlacklist: '(nouveau|Intel).*Mesa 8.0' CompositorUnredirectFSW: true Date: Sun Mar 15 22:49:11 2015 DistUpgraded: Fresh install DistroCodename: utopic DistroVariant: ubuntu GraphicsCard: Intel Corporation 2nd Generation Core Processor Family Integrated Graphics Controller [8086:0116] (rev 09) (prog-if 00 [VGA controller]) Subsystem: Toshiba America Info Systems Device [1179:fc50] InstallationDate: Installed on 2015-02-22 (20 days ago) InstallationMedia: Ubuntu 14.10 Utopic Unicorn - Release amd64 (20141022.1) MachineType: TOSHIBA Satellite L750-I5010 ProcEnviron: LANGUAGE=en_IN:en PATH=(custom, no user) LANG=en_IN SHELL=/bin/bash ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.16.0-33-generic root=UUID=5659b315-532a-4930-8ebc-c5bf11ec54c3 ro quiet splash vt.handoff=7 SourcePackage: xorg UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 06/26/2012 dmi.bios.vendor: INSYDE dmi.bios.version: 3.60 dmi.board.asset.tag: Base Board Asset Tag dmi.board.name: Base Board Product Name dmi.board.vendor: Intel Corp. dmi.board.version: Base Board Version dmi.chassis.asset.tag: No Asset Tag dmi.chassis.type: 10 dmi.chassis.vendor: OEM Chassis Manufacturer dmi.chassis.version: OEM Chassis Version dmi.modalias: dmi:bvnINSYDE:bvr3.60:bd06/26/2012:svnTOSHIBA:pnSatelliteL750-I5010:pvrPSK1YG-02F00H:rvnIntelCorp.:rnBaseBoardProductName:rvrBaseBoardVersion:cvnOEMChassisManufacturer:ct10:cvrOEMChassisVersion: dmi.product.name: Satellite L750-I5010 dmi.product.version: PSK1YG-02F00H dmi.sys.vendor: TOSHIBA version.compiz: compiz 1:0.9.12+14.10.20140918-0ubuntu1 version.ia32-libs: ia32-libs N/A version.libdrm2: libdrm2 2.4.56-1 version.libgl1-mesa-dri: libgl1-mesa-dri 10.3.2-0ubuntu0.1 version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx 10.3.2-0ubuntu0.1 version.xserver-xorg-core: xserver-xorg-core 2:1.16.0-1ubuntu1.3 version.xserver-xorg-input-evdev: xserver-xorg-input-evdev 1:2.9.0-1ubuntu2 version.xserver-xorg-video-ati: xserver-xorg-video-ati 1:7.4.0-2ubuntu2 version.xserver-xorg-video-intel: xserver-xorg-video-intel 2:2.99.914-1~exp1ubuntu4.2 version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau 1:1.0.11-1ubuntu2 xserver.bootTime: Sun Mar 15 21:47:57 2015 xserver.configfile: default xserver.errors: xserver.logfile: /var/log/Xorg.0.log xserver.outputs: product id 732 vendor LGD xserver.version: 2:1.16.0-1ubuntu1.3 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1432396/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1432363] Re: error message
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1432363 Title: error message Status in xorg package in Ubuntu: New Bug description: Please report this bug against the 'update-manager' package and include the following error message: E:Could not open file /var/lib/apt/lists/extras.ubuntu.com_ubuntu_dists_trusty_main_binary-i386_Packages - open (2: No such file or directory), E:Could not open file /var/lib/apt/lists/extras.ubuntu.com_ubuntu_dists_trusty_main_binary-amd64_Packages - open (2: No such file or directory), E:Could not open file /var/lib/apt/lists/archive.canonical.com_ubuntu_dists_trusty_partner_i18n_Translation-en - open (2: No such file or directory), E:Could not open file /var/lib/apt/lists/archive.canonical.com_ubuntu_dists_trusty_partner_binary-i386_Packages - open (2: No such file or directory), E:Could not open file /var/lib/apt/lists/archive.canonical.com_ubuntu_dists_trusty_partner_binary-amd64_Packages - open (2: No such file or directory), E:Could not open file /var/lib/apt/lists/security.ubuntu.com_ubuntu_dists_trusty-security_main_binary-amd64_Packages - open (2: No such file or directory), E:Could not open file /var/lib/apt/lists/us.archive.ubuntu.com_ubuntu_dists_trusty_multiverse_bina ry-amd64_Packages - open (2: No such file or directory), E:Could not open file /var/lib/apt/lists/us.archive.ubuntu.com_ubuntu_dists_trusty_universe_binary-amd64_Packages - open (2: No such file or directory), E:Could not open file /var/lib/apt/lists/us.archive.ubuntu.com_ubuntu_dists_trusty_restricted_binary-amd64_Packages - open (2: No such file or directory), E:Could not open file /var/lib/apt/lists/us.archive.ubuntu.com_ubuntu_dists_trusty_main_binary-amd64_Packages - open (2: No such file or directory) ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: xorg 1:7.7+1ubuntu8.1 ProcVersionSignature: Ubuntu 3.16.0-33.44~14.04.1-generic 3.16.7-ckt7 Uname: Linux 3.16.0-33-generic x86_64 .tmp.unity.support.test.0: ApportVersion: 2.14.1-0ubuntu3.7 Architecture: amd64 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: compiz CompositorUnredirectDriverBlacklist: '(nouveau|Intel).*Mesa 8.0' CompositorUnredirectFSW: true Date: Sun Mar 15 08:11:48 2015 DistUpgraded: Fresh install DistroCodename: trusty DistroVariant: ubuntu ExtraDebuggingInterest: No GraphicsCard: Advanced Micro Devices, Inc. [AMD/ATI] Kabini [Radeon HD 8400] [1002:9830] (prog-if 00 [VGA controller]) Subsystem: Toshiba America Info Systems Device [1179:fa26] InstallationDate: Installed on 2015-03-01 (14 days ago) InstallationMedia: Ubuntu 14.04.2 LTS Trusty Tahr - Release amd64 (20150218.1) MachineType: TOSHIBA Satellite C55Dt-A ProcEnviron: LANGUAGE=en_US PATH=(custom, no user) LANG=en_US.UTF-8 SHELL=/bin/bash ProcKernelCmdLine: BOOT_IMAGE=/vmlinuz-3.16.0-33-generic.efi.signed root=/dev/mapper/ubuntu--vg-root ro splash quiet plymouth:debug=1 SourcePackage: xorg UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 01/27/2014 dmi.bios.vendor: Insyde Corp. dmi.bios.version: 1.80 dmi.board.asset.tag: Base Board Asset Tag dmi.board.name: Portable PC dmi.board.vendor: TOSHIBA dmi.board.version: MP dmi.chassis.asset.tag: No Asset Tag dmi.chassis.type: 10 dmi.chassis.vendor: OEM Chassis Manufacturer dmi.chassis.version: OEM Chassis Version dmi.modalias: dmi:bvnInsydeCorp.:bvr1.80:bd01/27/2014:svnTOSHIBA:pnSatelliteC55Dt-A:pvrPSCFWU-02C02Y:rvnTOSHIBA:rnPortablePC:rvrMP:cvnOEMChassisManufacturer:ct10:cvrOEMChassisVersion: dmi.product.name: Satellite C55Dt-A dmi.product.version: PSCFWU-02C02Y dmi.sys.vendor: TOSHIBA version.compiz: compiz 1:0.9.11.3+14.04.20150122-0ubuntu1 version.ia32-libs: ia32-libs N/A version.libdrm2: libdrm2 2.4.56-1~ubuntu2 version.libgl1-mesa-dri: libgl1-mesa-dri N/A version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx N/A version.xserver-xorg-core: xserver-xorg-core N/A version.xserver-xorg-input-evdev: xserver-xorg-input-evdev N/A version.xserver-xorg-video-ati: xserver-xorg-video-ati N/A version.xserver-xorg-video-intel: xserver-xorg-video-intel N/A version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau N/A xserver.bootTime: Sun Mar 15
[Touch-packages] [Bug 1432254] [NEW] stale openvpn dns servers left in /etc/resolv.conf
Public bug reported: I use an openvpn vpn through network manager to connect to the canonical vpn; when I suspend and resume my laptop the openvpn vpn does not come up again. However the DNS server that it inserted into my /etc/resolv.conf is left there, causing all dns lookups to take six seconds longer, until I either bring up the vpn again or hand-edit my resolv.conf. I want the DNS server to be removed when the VPN is no longer functional. (The indicator knows the VPN is down, so presumably this is knowable.) Thanks ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: network-manager 0.9.8.8-0ubuntu7 ProcVersionSignature: Ubuntu 3.13.0-46.79-generic 3.13.11-ckt15 Uname: Linux 3.13.0-46-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.7 Architecture: amd64 CurrentDesktop: Unity Date: Sat Mar 14 15:27:30 2015 IfupdownConfig: auto lo iface lo inet loopback InstallationDate: Installed on 2012-10-18 (877 days ago) InstallationMedia: Ubuntu 12.04.1 LTS Precise Pangolin - Release amd64 (20120823.1) IpRoute: default via 192.168.1.1 dev wlan0 proto static 192.168.1.0/24 dev wlan0 proto kernel scope link src 192.168.1.2 metric 9 192.168.122.0/24 dev virbr0 proto kernel scope link src 192.168.122.1 NetworkManager.state: [main] NetworkingEnabled=true WirelessEnabled=true WWANEnabled=true WimaxEnabled=true SourcePackage: network-manager UpgradeStatus: Upgraded to trusty on 2014-04-12 (336 days ago) mtime.conffile..etc.NetworkManager.NetworkManager.conf: 2013-11-05T17:49:23 nmcli-dev: DEVICE TYPE STATE DBUS-PATH wlan0 802-11-wireless connected /org/freedesktop/NetworkManager/Devices/1 eth0 802-3-ethernetdisconnected /org/freedesktop/NetworkManager/Devices/0 nmcli-nm: RUNNING VERSIONSTATE NET-ENABLED WIFI-HARDWARE WIFI WWAN-HARDWARE WWAN running 0.9.8.8connected enabled enabled enabledenabled enabled ** Affects: network-manager (Ubuntu) Importance: Undecided Status: New ** Tags: amd64 apport-bug trusty -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to network-manager in Ubuntu. https://bugs.launchpad.net/bugs/1432254 Title: stale openvpn dns servers left in /etc/resolv.conf Status in network-manager package in Ubuntu: New Bug description: I use an openvpn vpn through network manager to connect to the canonical vpn; when I suspend and resume my laptop the openvpn vpn does not come up again. However the DNS server that it inserted into my /etc/resolv.conf is left there, causing all dns lookups to take six seconds longer, until I either bring up the vpn again or hand-edit my resolv.conf. I want the DNS server to be removed when the VPN is no longer functional. (The indicator knows the VPN is down, so presumably this is knowable.) Thanks ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: network-manager 0.9.8.8-0ubuntu7 ProcVersionSignature: Ubuntu 3.13.0-46.79-generic 3.13.11-ckt15 Uname: Linux 3.13.0-46-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.7 Architecture: amd64 CurrentDesktop: Unity Date: Sat Mar 14 15:27:30 2015 IfupdownConfig: auto lo iface lo inet loopback InstallationDate: Installed on 2012-10-18 (877 days ago) InstallationMedia: Ubuntu 12.04.1 LTS Precise Pangolin - Release amd64 (20120823.1) IpRoute: default via 192.168.1.1 dev wlan0 proto static 192.168.1.0/24 dev wlan0 proto kernel scope link src 192.168.1.2 metric 9 192.168.122.0/24 dev virbr0 proto kernel scope link src 192.168.122.1 NetworkManager.state: [main] NetworkingEnabled=true WirelessEnabled=true WWANEnabled=true WimaxEnabled=true SourcePackage: network-manager UpgradeStatus: Upgraded to trusty on 2014-04-12 (336 days ago) mtime.conffile..etc.NetworkManager.NetworkManager.conf: 2013-11-05T17:49:23 nmcli-dev: DEVICE TYPE STATE DBUS-PATH wlan0 802-11-wireless connected /org/freedesktop/NetworkManager/Devices/1 eth0 802-3-ethernetdisconnected /org/freedesktop/NetworkManager/Devices/0 nmcli-nm: RUNNING VERSIONSTATE NET-ENABLED WIFI-HARDWARE WIFI WWAN-HARDWARE WWAN running 0.9.8.8connected enabled enabled enabledenabled enabled To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/network-manager/+bug/1432254/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1432234] [NEW] Reboot after quick and dirty openFrameworks workaround
Public bug reported: code $ uname -a Linux nil-NV57H 3.16.0-30-generic #40~14.04.1-Ubuntu SMP Thu Jan 15 17:43:14 UTC 2015 x86 64 x86_64 GNU/Linux /code The laptop trackpad has ceased its functioning after the steps outlined below. I have attempted reloading the psmouse module via code modprobe -r !$ modprobe !$ ; /code to no avail. Ubuntu still responds to the left/0 button, however. code egrep Name|Handlers /proc/bus/input/devices ; /code Defines code Name=ETPS/2 Elantech Touchpad Handlers=mouse0 event6 /code as the mouse handler. // FOOT NOTE ON INSTALLING OPENFRAMEWORKS openFrame works shell script at ${ofRoot}/scripts/linux/ubuntu/install_dependancies.sh WILL NOT RUN in the manner defined by the openFrameworks documentation: code sudo ./install_dependancies.sh ; /code The error message suggested that my internet connection may be failing; however, this was not true, so I installed the gstreamer plug-ins in the final if block (of the referenced script, snippet to follow) via codeapt-get install; /code code apt-get update GSTREAMER_VERSION=0.10 GSTREAMER_FFMPEG=gstreamer${GSTREAMER_VERSION}-ffmpeg echo detecting latest gstreamer version apt-cache show libgstreamer1.0-dev exit_code=$? if [ $exit_code = 0 ]; then echo selecting gstreamer 1.0 GSTREAMER_VERSION=1.0 GSTREAMER_FFMPEG=gstreamer${GSTREAMER_VERSION}-libav fi # {...} echo installing gstreamer apt-get install libgstreamer${GSTREAMER_VERSION}-dev libgstreamer-plugins-base${GSTREAMER_VERSION}-dev ${GSTREAMER_FFMPEG} gstreamer${GSTREAMER_VERSION}-pulseaudio gstreamer${GSTREAMER_VERSION}-x gstreamer${GSTREAMER_VERSION}-plugins-bad gstreamer${GSTREAMER_VERSION}-alsa gstreamer${GSTREAMER_VERSION}-plugins-base gstreamer${GSTREAMER_VERSION}-plugins-good exit_code=$? if [ $exit_code != 0 ]; then echo error installing gstreamer, there could be an error with your internet connection echo if the error persists, please report an issue in github: http://github.com/openframeworks/openFrameworks/issues; exit $exit_code fi /code I installed gstreamer 1.0, and (of course, to my chagrin) that did not solve the dependancy issue. I attempted to install each of the dependancies with apt-get individually (the ones in this if block, where i thought the problem was), and found that gstreamer0.10-ffmpeg package is not available in the standard repositories. I did install the gstreamer0.10-ffmpeg package from a third party. However, the script still did not recognize that all of the dependancies were installed! A clever person on the openFrameworks community forum announced that if you (fix broken and install the packages freeglut3 freeglut3-dev freeglut3-dbg) via synaptic install_dependancies.sh runs without errors. By some freak twist of package manangement abstraction the script only worked properly after that operation. I did just go ahead and install synaptic to replicate the experiment accurately: I do not know if I could have just installed those packages through apt-get without broken dependancies. If so, openFrameworks should know that freeglut3 et al should be in their linux/ubuntu/install_dependancies.sh script. ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: xorg 1:7.7+1ubuntu8.1 ProcVersionSignature: Ubuntu 3.16.0-30.40~14.04.1-generic 3.16.7-ckt3 Uname: Linux 3.16.0-30-generic x86_64 .tmp.unity.support.test.0: ApportVersion: 2.14.1-0ubuntu3.7 Architecture: amd64 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: compiz CompositorUnredirectDriverBlacklist: '(nouveau|Intel).*Mesa 8.0' CompositorUnredirectFSW: true CurrentDesktop: Unity Date: Sat Mar 14 15:34:04 2015 DistUpgraded: Fresh install DistroCodename: trusty DistroVariant: ubuntu EcryptfsInUse: Yes ExtraDebuggingInterest: Yes GraphicsCard: Intel Corporation 2nd Generation Core Processor Family Integrated Graphics Controller [8086:0126] (rev 09) (prog-if 00 [VGA controller]) Subsystem: Acer Incorporated [ALI] Device [1025:0511] InstallationDate: Installed on 2015-03-13 (1 days ago) InstallationMedia: Ubuntu 14.04.2 LTS Trusty Tahr - Release amd64 (20150218.1) Lsusb: Bus 002 Device 002: ID 8087:0024 Intel Corp. Integrated Rate Matching Hub Bus 002 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub Bus 001 Device 003: ID 04f2:b2dc Chicony Electronics Co., Ltd Bus 001 Device 002: ID 8087:0024 Intel Corp. Integrated Rate Matching Hub Bus 001 Device 001: ID 1d6b:0002 Linux Foundation 2.0 root hub MachineType: Gateway NV57H ProcKernelCmdLine: BOOT_IMAGE=/vmlinuz-3.16.0-30-generic root=/dev/mapper/ubuntu--vg-root ro quiet splash vt.handoff=7 SourcePackage: xorg UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 02/17/2012 dmi.bios.vendor: Gateway dmi.bios.version: V1.19 dmi.board.asset.tag: Base Board Asset Tag dmi.board.name: SJV50_HR dmi.board.vendor: Gateway dmi.board.version: Base Board Version dmi.chassis.type: 10 dmi.chassis.vendor:
[Touch-packages] [Bug 1431598] Re: Microsoft experts infiltrate ubuntu to delete bug reports
** Information type changed from Private Security to Public ** Changed in: xorg (Ubuntu) Status: New = Invalid -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1431598 Title: Microsoft experts infiltrate ubuntu to delete bug reports Status in xorg package in Ubuntu: Invalid Bug description: why are they even allowed here? why are they allowed to delete bug reports information? Is sabotage is part of the ubuntu code of conduct ? To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1431598/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1425685] Re: Missing input sanitation in upstart logrotation cronjob
Jann, thanks for the comment; I believe the checks aren't strictly necessary; the grep command used to extract one specific variable with the given legal values is the more important part of this patch. That said, /run/user is a filesystem in its own right, so cross-mount hardlinks aren't possible, and at least on my system, all the directories are mode 700, so hardlinking to another user's file on the filesystem will be difficult. Have you thought of anything else in the meantime? Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to upstart in Ubuntu. https://bugs.launchpad.net/bugs/1425685 Title: Missing input sanitation in upstart logrotation cronjob Status in upstart package in Ubuntu: Fix Released Bug description: Ubuntu Vivid 1504 (development branch) installs an insecure upstart logrotation script which will read user-supplied data from /run/user/[uid]/upstart/sessions and pass then unsanitized to an env command. As user run directory is user-writable, the user may inject arbitrary commands into the logrotation script, which will be executed during daily cron job execution around midnight with root privileges. Problematic part of /etc/cron.daily/upstart: for session in /run/user/*/upstart/sessions/* do env $(cat $session) /sbin/initctl emit rotate-logs /dev/null 21 || true done On a system with e.g. libpam-systemd installed, standard login on TTY or via SSH will create the directory /run/user/[uid] writable to the user. By preparing a suitable session file, user supplied code will be run during the daily cron-jobs. See [1] for more information. # lsb_release -rd Description:Ubuntu Vivid Vervet (development branch) Release:15.04 # apt-cache policy upstart-bin upstart-bin: Installed: 1.13.2-0ubuntu7 Candidate: 1.13.2-0ubuntu7 Version table: *** 1.13.2-0ubuntu7 0 500 http://archive.ubuntu.com/ubuntu/ vivid/main i386 Packages 100 /var/lib/dpkg/status [1] http://www.halfdog.net/Security/2015/UpstartLogrotationPrivilegeEscalation/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/upstart/+bug/1425685/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1414930] Re: [Lenovo ThinkPad X1 Carbon 20BT] Buttons of Synaptics trackpad doesn't work
I have a thinkpad T450s. The buttons do not work on it. How can I help? -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to systemd in Ubuntu. https://bugs.launchpad.net/bugs/1414930 Title: [Lenovo ThinkPad X1 Carbon 20BT] Buttons of Synaptics trackpad doesn't work Status in HWE Next Project: In Progress Status in The Linux Kernel: In Progress Status in libinput package in Ubuntu: Fix Released Status in linux package in Ubuntu: Confirmed Status in systemd package in Ubuntu: Fix Released Status in xserver-xorg-input-synaptics package in Ubuntu: New Status in linux source package in Trusty: Confirmed Status in systemd source package in Trusty: New Status in xserver-xorg-input-synaptics source package in Trusty: Confirmed Status in linux source package in Utopic: New Status in systemd source package in Utopic: New Status in xserver-xorg-input-synaptics source package in Utopic: New Bug description: Lenovo X1 3rd Carbon (201411-16196) Steps to reproduce the bug: 1, Log in to system 2, Click left/right/middle buttons of the touchpad Actual result: No response after clicking the buttons Expected results: Buttons work as expected behavirour ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: linux-image-3.13.0-45-generic 3.13.0-45.74 [modified: boot/vmlinuz-3.13.0-45-generic] ProcVersionSignature: Ubuntu 3.13.0-45.74-generic 3.13.11-ckt13 Uname: Linux 3.13.0-45-generic x86_64 ApportVersion: 2.14.1-0ubuntu3.6 Architecture: amd64 AudioDevicesInUse: USERPID ACCESS COMMAND /dev/snd/controlC1: u 1598 F pulseaudio /dev/snd/controlC0: u 1598 F pulseaudio CurrentDesktop: Unity Date: Tue Jan 27 02:48:23 2015 HibernationDevice: RESUME=UUID=c553e9ba-b74b-43ad-8cf2-496531261e0f InstallationDate: Installed on 2015-01-27 (0 days ago) InstallationMedia: Ubuntu 14.04.1 LTS Trusty Tahr - Release amd64 (20150126) MachineType: LENOVO 20BTZ09ZUS ProcFB: 0 inteldrmfb ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.13.0-45-generic root=UUID=1d34e685-c98b-41f3-b649-87770517b194 ro quiet splash vt.handoff=7 RelatedPackageVersions: linux-restricted-modules-3.13.0-45-generic N/A linux-backports-modules-3.13.0-45-generic N/A linux-firmware 1.127.11 SourcePackage: linux UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 10/27/2014 dmi.bios.vendor: LENOVO dmi.bios.version: N14ET24W (1.02 ) dmi.board.asset.tag: Not Available dmi.board.name: 20BTZ09ZUS dmi.board.vendor: LENOVO dmi.board.version: SDK0E50510 WIN dmi.chassis.asset.tag: No Asset Information dmi.chassis.type: 10 dmi.chassis.vendor: LENOVO dmi.chassis.version: None dmi.modalias: dmi:bvnLENOVO:bvrN14ET24W(1.02):bd10/27/2014:svnLENOVO:pn20BTZ09ZUS:pvrThinkPadX1Carbon3rd:rvnLENOVO:rn20BTZ09ZUS:rvrSDK0E50510WIN:cvnLENOVO:ct10:cvrNone: dmi.product.name: 20BTZ09ZUS dmi.product.version: ThinkPad X1 Carbon 3rd dmi.sys.vendor: LENOVO To manage notifications about this bug go to: https://bugs.launchpad.net/hwe-next/+bug/1414930/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1419436] Re: tls_socket_read (Decryption has failed.)
Donn, was it a different kind of usb NIC or the same kind? Perhaps there's a kernel bug to fix or perhaps you just need to throw away the old NIC, depending upon what changed. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to gnutls26 in Ubuntu. https://bugs.launchpad.net/bugs/1419436 Title: tls_socket_read (Decryption has failed.) Status in gnutls26 package in Ubuntu: New Bug description: Since moving from Ubunutu 12.04 (armel) to 14.04 (armhf) on a Beagleboard I have a persistent problem using mutt where (especially) larger messages fail to download resulting in the error: tls_socket_read (Decryption has failed.) The failure is reproducable in that I can almost never download messages with attachments larger than 10MB (it will inevitably fail at some point during the transfer). 12.04 (armel) had gnutls26 verison 2.12.14-5ubuntu3.8, and I never had this problem. 14.04 uses 2.12.23-12ubuntu2.1. Strangely enough my amd64 machines which also run 14.04 and 2.12.23-12ubuntu2.1 do not have this problem. In attempting to debug I tried setting GNUTLS_DEBUG_LEVEL=6, which didn't produce any output from libgnutls26. Next I tried forcing mutt to use libgnutls28 (3.2.11-2ubuntu1) with LD_PRELOAD. Then setting GNUTLS_DEBUG_LEVEL=6 and redirecting stderr to a file yields the following log: ... gnutls[4]: REC[0x16cb240]: Expected Packet Application Data(23) gnutls[4]: REC[0x16cb240]: Received Packet Application Data(23) with length: 1395 gnutls[4]: REC[0x16cb240]: Decrypted Packet[4742] Application Data(23) with length: 1371 gnutls[6]: BUF[REC]: Inserted 1371 bytes of Data(23) gnutls[4]: REC[0x16cb240]: SSL 3.3 Application Data packet received. Epoch 0, length: 1395 gnutls[4]: REC[0x16cb240]: Expected Packet Application Data(23) gnutls[4]: REC[0x16cb240]: Received Packet Application Data(23) with length: 1395 gnutls[4]: REC[0x16cb240]: Decrypted Packet[4743] Application Data(23) with length: 1371 gnutls[6]: BUF[REC]: Inserted 1371 bytes of Data(23) gnutls[4]: REC[0x16cb240]: SSL 3.3 Application Data packet received. Epoch 0, length: 1378 gnutls[4]: REC[0x16cb240]: Expected Packet Application Data(23) gnutls[4]: REC[0x16cb240]: Received Packet Application Data(23) with length: 1378 gnutls[4]: REC[0x16cb240]: Decrypted Packet[4744] Application Data(23) with length: 1354 gnutls[6]: BUF[REC]: Inserted 1354 bytes of Data(23) gnutls[4]: REC[0x16cb240]: SSL 3.3 Application Data packet received. Epoch 0, length: 1395 gnutls[4]: REC[0x16cb240]: Expected Packet Application Data(23) gnutls[4]: REC[0x16cb240]: Received Packet Application Data(23) with length: 1395 gnutls[2]: ASSERT: gnutls_cipher.c:951 gnutls[2]: ASSERT: gnutls_cipher.c:199 gnutls[2]: ASSERT: gnutls_record.c:1223 gnutls[1]: Discarded message[4745] due to invalid decryption gnutls[2]: ASSERT: gnutls_record.c:1407 gnutls[2]: ASSERT: gnutls_buffers.c:624 gnutls[4]: REC: Sending Alert[1|0] - Close notify gnutls[4]: REC[0x16cb240]: Preparing Packet Alert(21) with length: 2 and min pad: 0 gnutls[4]: REC[0x16cb240]: Sent Packet[10] Alert(21) in epoch 1 and length: 31 gnutls[2]: ASSERT: gnutls_record.c:1384 gnutls[2]: ASSERT: gnutls_record.c:334 gnutls[4]: REC[0x16cb240]: Start of epoch cleanup gnutls[4]: REC[0x16cb240]: End of epoch cleanup gnutls[4]: REC[0x16cb240]: Epoch #1 freed So this problem (at least on armhf) seems to affect both gnutls26 and gnutls28. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnutls26/+bug/1419436/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1425398] Re: Apparmor uses rsyslogd profile for different processes - utopic HWE
** Changed in: linux (Ubuntu Trusty) Status: Incomplete = Confirmed ** Changed in: linux (Ubuntu) Status: Incomplete = Confirmed -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1425398 Title: Apparmor uses rsyslogd profile for different processes - utopic HWE Status in apparmor package in Ubuntu: New Status in linux package in Ubuntu: Confirmed Status in linux-lts-utopic package in Ubuntu: Invalid Status in apparmor source package in Trusty: New Status in linux source package in Trusty: Confirmed Status in linux-lts-utopic source package in Trusty: Invalid Bug description: Hi. I've noticed that apparmor loads /usr/sbin/rsyslogd profile for completely unrelated processes: Feb 25 08:36:19 emma kernel: [ 134.796218] audit: type=1400 audit(1424842579.429:245): apparmor=DENIED operation=sendmsg profile=/usr/sbin/rsyslogd name=/dev/log pid=4002 comm=sshd requested_mask=r denied_mask=r fsuid=0 ouid=0 Feb 25 08:36:23 emma kernel: [ 139.330989] audit: type=1400 audit(1424842583.965:246): apparmor=DENIED operation=sendmsg profile=/usr/sbin/rsyslogd name=/dev/log pid=4080 comm=sudo requested_mask=r denied_mask=r fsuid=0 ouid=0 Feb 25 08:35:42 emma kernel: [ 97.912402] audit: type=1400 audit(1424842542.565:241): apparmor=DENIED operation=sendmsg profile=/usr/sbin/rsyslogd name=/dev/log pid=2436 comm=whoopsie requested_mask=r denied_mask=r fsuid=103 ouid=0 Feb 25 08:34:43 emma kernel: [ 38.867998] audit: type=1400 audit(1424842483.546:226): apparmor=DENIED operation=sendmsg profile=/usr/sbin/rsyslogd name=/dev/log pid=3762 comm=ntpd requested_mask=r denied_mask=r fsuid=0 ouid=0 I'm not sure how apparmor decides which profile to use for which task, but is shouldn't load '/usr/sbin/rsyslogd' profile for sshd/ntpd/etc. I'm running: # lsb_release -rd Description: Ubuntu 14.04.2 LTS Release: 14.04 # dpkg -l | grep apparmor ii apparmor2.8.95~2430-0ubuntu5.1 amd64User-space parser utility for AppArmor ii apparmor-profiles 2.8.95~2430-0ubuntu5.1 all Profiles for AppArmor Security policies ii apparmor-utils 2.8.95~2430-0ubuntu5.1 amd64Utilities for controlling AppArmor ii libapparmor-perl2.8.95~2430-0ubuntu5.1 amd64AppArmor library Perl bindings ii libapparmor1:amd64 2.8.95~2430-0ubuntu5.1 amd64changehat AppArmor library ii python3-apparmor2.8.95~2430-0ubuntu5.1 amd64AppArmor Python3 utility library ii python3-libapparmor 2.8.95~2430-0ubuntu5.1 amd64AppArmor library Python3 bindings # uname -a Linux emma 3.16.0-31-generic #41~14.04.1-Ubuntu SMP Wed Feb 11 19:30:13 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1425398/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 997269] Re: dovecot imap broken by apparmor policy
Valentin, do you have any DENIED messages from AppArmor in your dmesg output, /var/log/syslog, or /var/log/audit/audit.log files? Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/997269 Title: dovecot imap broken by apparmor policy Status in apparmor package in Ubuntu: Fix Released Status in dovecot package in Ubuntu: Invalid Status in apparmor package in Debian: Fix Released Bug description: Syslog output: Apr 29 10:59:06 host12 dovecot: imap(foobar): Error: fcntl(unlock) locking failed for file /home/foobar/Maildir/dovecot.index.log: No such file or directory Apr 29 10:59:06 host12 dovecot: imap(foobar): Error: fstat() failed with file /home/foobar/Maildir/dovecot.index.log: No such file or directory Apr 29 10:59:37 dovecot: last message repeated 122 times Apr 29 11:00:38 dovecot: last message repeated 248 times Apr 29 11:01:54 dovecot: last message repeated 203 times audit.log, lots of entries similar to the following: type=AVC msg=audit(1335712674.515:655016): apparmor=ALLOWED operation=getattr parent=10922 profile=/usr/sbin/dovecot//null-107 //null-10b//null-118 name=/home/foobar/Maildir/.foobar/dovecot.index.log pid=10937 comm=imap requested_mask=r denied_mask=r fsuid=1000 ouid=1000 The apparmor policy is as shipped with 12.04. The strange thing here is that audit.log says that the access was allowed and the apparmor policy has flags=(complain), but the imap server still fails accessing some files in the Maildir folders. Workaround: # ln -s /etc/apparmor.d/usr.sbin.dovecot /etc/apparmor.d/disable/ After disabling the usr.sbin.dovecot apparmor policy everything works fine. There is no need to disable the usr.lib.dovecot.imap policy. It looks like the imap process is incorrectly running under the dovecot main daemon's apparmor profile. And for some odd reason the profile is enforcing things even though it should be in complain mode. What are these //null-NNN/ strings in the logged apparmor profile name? I do not know apparmor well enough to debug this further at this point. Someone else has encountered this also, see thread at: http://comments.gmane.org/gmane.mail.imap.dovecot/60533 ProblemType: Bug DistroRelease: Ubuntu 12.04 Package: dovecot-imapd 1:2.0.19-0ubuntu1 ProcVersionSignature: User Name 3.2.0-24.37-virtual 3.2.14 Uname: Linux 3.2.0-24-virtual x86_64 ApportVersion: 2.0.1-0ubuntu7 Architecture: amd64 Date: Wed May 9 18:36:11 2012 ProcEnviron: SHELL=/bin/bash TERM=screen LANG=en_US.UTF-8 SourcePackage: dovecot UpgradeStatus: Upgraded to precise on 2012-04-27 (12 days ago) --- ApportVersion: 2.0.1-0ubuntu8 Architecture: amd64 DistroRelease: Ubuntu 12.04 InstallationMedia: Ubuntu-Server 12.04 LTS Precise Pangolin - Release amd64 (20120424.1) Package: apparmor 2.7.102-0ubuntu3.1 PackageArchitecture: amd64 ProcEnviron: TERM=linux PATH=(custom, no user) LANG=en_US.UTF-8 SHELL=/bin/bash ProcKernelCmdline: BOOT_IMAGE=/boot/vmlinuz-3.2.0-23-generic root=UUID=7e6df5b7-d31e-4757-a388-f4f477187a63 ro ProcVersionSignature: Ubuntu 3.2.0-23.36-generic 3.2.14 Tags: precise Uname: Linux 3.2.0-23-generic x86_64 UpgradeStatus: No upgrade log present (probably fresh install) UserGroups: To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/997269/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1425398] Re: Apparmor uses rsyslogd profile for different processes - utopic HWE
There's a chance this is the AppArmor cross profile IPC check; when one process performs an IPC operation with a second process, in different profiles, both profiles have to allow the operation. If my guess is right, these ought to be silenced by changing: /dev/log wl, to /dev/log rwl, in the /etc/apparmor.d/usr.sbin.rsyslogd file and reloading the policy with apparmor_parser --replace /etc/apparmor.d/usr.sbin.rsyslogd Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1425398 Title: Apparmor uses rsyslogd profile for different processes - utopic HWE Status in apparmor package in Ubuntu: New Status in linux-lts-utopic package in Ubuntu: New Bug description: Hi. I've noticed that apparmor loads /usr/sbin/rsyslogd profile for completely unrelated processes: Feb 25 08:36:19 emma kernel: [ 134.796218] audit: type=1400 audit(1424842579.429:245): apparmor=DENIED operation=sendmsg profile=/usr/sbin/rsyslogd name=/dev/log pid=4002 comm=sshd requested_mask=r denied_mask=r fsuid=0 ouid=0 Feb 25 08:36:23 emma kernel: [ 139.330989] audit: type=1400 audit(1424842583.965:246): apparmor=DENIED operation=sendmsg profile=/usr/sbin/rsyslogd name=/dev/log pid=4080 comm=sudo requested_mask=r denied_mask=r fsuid=0 ouid=0 Feb 25 08:35:42 emma kernel: [ 97.912402] audit: type=1400 audit(1424842542.565:241): apparmor=DENIED operation=sendmsg profile=/usr/sbin/rsyslogd name=/dev/log pid=2436 comm=whoopsie requested_mask=r denied_mask=r fsuid=103 ouid=0 Feb 25 08:34:43 emma kernel: [ 38.867998] audit: type=1400 audit(1424842483.546:226): apparmor=DENIED operation=sendmsg profile=/usr/sbin/rsyslogd name=/dev/log pid=3762 comm=ntpd requested_mask=r denied_mask=r fsuid=0 ouid=0 I'm not sure how apparmor decides which profile to use for which task, but is shouldn't load '/usr/sbin/rsyslogd' profile for sshd/ntpd/etc. I'm running: # lsb_release -rd Description: Ubuntu 14.04.2 LTS Release: 14.04 # dpkg -l | grep apparmor ii apparmor2.8.95~2430-0ubuntu5.1 amd64User-space parser utility for AppArmor ii apparmor-profiles 2.8.95~2430-0ubuntu5.1 all Profiles for AppArmor Security policies ii apparmor-utils 2.8.95~2430-0ubuntu5.1 amd64Utilities for controlling AppArmor ii libapparmor-perl2.8.95~2430-0ubuntu5.1 amd64AppArmor library Perl bindings ii libapparmor1:amd64 2.8.95~2430-0ubuntu5.1 amd64changehat AppArmor library ii python3-apparmor2.8.95~2430-0ubuntu5.1 amd64AppArmor Python3 utility library ii python3-libapparmor 2.8.95~2430-0ubuntu5.1 amd64AppArmor library Python3 bindings # uname -a Linux emma 3.16.0-31-generic #41~14.04.1-Ubuntu SMP Wed Feb 11 19:30:13 UTC 2015 x86_64 x86_64 x86_64 GNU/Linux To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1425398/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1425685] Re: Missing input sanitation in upstart logrotation cronjob
** Information type changed from Private Security to Public Security -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to upstart in Ubuntu. https://bugs.launchpad.net/bugs/1425685 Title: Missing input sanitation in upstart logrotation cronjob Status in upstart package in Ubuntu: New Bug description: Ubuntu Vivid 1504 (development branch) installs an insecure upstart logrotation script which will read user-supplied data from /run/user/[uid]/upstart/sessions and pass then unsanitized to an env command. As user run directory is user-writable, the user may inject arbitrary commands into the logrotation script, which will be executed during daily cron job execution around midnight with root privileges. Problematic part of /etc/cron.daily/upstart: for session in /run/user/*/upstart/sessions/* do env $(cat $session) /sbin/initctl emit rotate-logs /dev/null 21 || true done On a system with e.g. libpam-systemd installed, standard login on TTY or via SSH will create the directory /run/user/[uid] writable to the user. By preparing a suitable session file, user supplied code will be run during the daily cron-jobs. See [1] for more information. # lsb_release -rd Description:Ubuntu Vivid Vervet (development branch) Release:15.04 # apt-cache policy upstart-bin upstart-bin: Installed: 1.13.2-0ubuntu7 Candidate: 1.13.2-0ubuntu7 Version table: *** 1.13.2-0ubuntu7 0 500 http://archive.ubuntu.com/ubuntu/ vivid/main i386 Packages 100 /var/lib/dpkg/status [1] http://www.halfdog.net/Security/2015/UpstartLogrotationPrivilegeEscalation/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/upstart/+bug/1425685/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1424071] Re: usb mouse
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1424071 Title: usb mouse Status in xorg package in Ubuntu: New Bug description: stop working ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: xorg 1:7.7+1ubuntu8.1 ProcVersionSignature: Ubuntu 3.13.0-45.74-generic 3.13.11-ckt13 Uname: Linux 3.13.0-45-generic x86_64 .tmp.unity.support.test.0: ApportVersion: 2.14.1-0ubuntu3.7 Architecture: amd64 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: compiz CompositorUnredirectDriverBlacklist: '(nouveau|Intel).*Mesa 8.0' CompositorUnredirectFSW: true CurrentDesktop: Unity Date: Fri Feb 20 22:29:34 2015 DistUpgraded: Fresh install DistroCodename: trusty DistroVariant: ubuntu DkmsStatus: nvidia-304, 304.125, 3.13.0-45-generic, x86_64: installed virtualbox, 4.3.10, 3.13.0-45-generic, x86_64: installed GraphicsCard: Intel Corporation Haswell-ULT Integrated Graphics Controller [8086:0a16] (rev 0b) (prog-if 00 [VGA controller]) Subsystem: Dell Device [1028:0651] InstallationDate: Installed on 2015-02-14 (6 days ago) InstallationMedia: Ubuntu 14.04.1 LTS Trusty Tahr - Release amd64 (20140722.2) LightdmGreeterLog: (lightdm-webkit-greeter:1373): GLib-GObject-WARNING **: /build/buildd/glib2.0-2.40.2/./gobject/gsignal.c:2462: signal 'show-error' is invalid for instance '0x10a6170' of type 'LightDMGreeter' (lightdm-webkit-greeter:1373): GLib-GObject-WARNING **: /build/buildd/glib2.0-2.40.2/./gobject/gsignal.c:2462: signal 'timed-login' is invalid for instance '0x10a6170' of type 'LightDMGreeter' (lightdm-webkit-greeter:1373): GLib-GObject-WARNING **: /build/buildd/glib2.0-2.40.2/./gobject/gsignal.c:2462: signal 'quit' is invalid for instance '0x10a6170' of type 'LightDMGreeter' LightdmGreeterLogOld: (lightdm-webkit-greeter:1385): GLib-GObject-WARNING **: /build/buildd/glib2.0-2.40.2/./gobject/gsignal.c:2462: signal 'show-error' is invalid for instance '0x7e0170' of type 'LightDMGreeter' (lightdm-webkit-greeter:1385): GLib-GObject-WARNING **: /build/buildd/glib2.0-2.40.2/./gobject/gsignal.c:2462: signal 'timed-login' is invalid for instance '0x7e0170' of type 'LightDMGreeter' (lightdm-webkit-greeter:1385): GLib-GObject-WARNING **: /build/buildd/glib2.0-2.40.2/./gobject/gsignal.c:2462: signal 'quit' is invalid for instance '0x7e0170' of type 'LightDMGreeter' MachineType: Dell Inc. Inspiron 3542 ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.13.0-45-generic root=UUID=dbc01855-84aa-47fd-8a9c-12b4f1dc0e1f ro quiet splash vt.handoff=7 SourcePackage: xorg UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 11/14/2014 dmi.bios.vendor: Dell Inc. dmi.bios.version: A05 dmi.board.name: 09V1VC dmi.board.vendor: Dell Inc. dmi.board.version: A05 dmi.chassis.type: 8 dmi.chassis.vendor: Dell Inc. dmi.chassis.version: Not Specified dmi.modalias: dmi:bvnDellInc.:bvrA05:bd11/14/2014:svnDellInc.:pnInspiron3542:pvrNotSpecified:rvnDellInc.:rn09V1VC:rvrA05:cvnDellInc.:ct8:cvrNotSpecified: dmi.product.name: Inspiron 3542 dmi.product.version: Not Specified dmi.sys.vendor: Dell Inc. version.compiz: compiz 1:0.9.11.3+14.04.20150122-0ubuntu1 version.ia32-libs: ia32-libs N/A version.libdrm2: libdrm2 2.4.56-1~ubuntu2 version.libgl1-mesa-dri: libgl1-mesa-dri 10.1.3-0ubuntu0.3 version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx 10.1.3-0ubuntu0.3 version.xserver-xorg-core: xserver-xorg-core 2:1.15.1-0ubuntu2.7 version.xserver-xorg-input-evdev: xserver-xorg-input-evdev 1:2.8.2-1ubuntu2 version.xserver-xorg-video-ati: xserver-xorg-video-ati 1:7.3.0-1ubuntu3.1 version.xserver-xorg-video-intel: xserver-xorg-video-intel 2:2.99.910-0ubuntu1.4 version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau 1:1.0.10-1ubuntu2 xserver.bootTime: Fri Feb 20 22:21:45 2015 xserver.configfile: default xserver.errors: xserver.logfile: /var/log/Xorg.0.log xserver.outputs: product id 16620 vendor AUO xserver.version: 2:1.15.1-0ubuntu2.7 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1424071/+subscriptions -- Mailing list:
[Touch-packages] [Bug 1423890] Re: AppArmor support for the XDG Base Directory spec is incomplete
Some discussion on xdg paths has happened here, https://lists.ubuntu.com/archives/apparmor/2013-August/004183.html -- it'd be nice to revive this. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1423890 Title: AppArmor support for the XDG Base Directory spec is incomplete Status in apparmor package in Ubuntu: New Bug description: Based on the version of apparmor in trusty-updates: Various profiles grant permissions for files in @{HOME}/.cache/. This is only sufficient as long as one hasn't set the environment variable XDG_CACHE_HOME to point somewhere else. (Use case: store caches locally when home directories are on a remote fileserver.) I'd suggest defining a new tunable @{XDG_CACHE_HOME}=@{HOME}/.cache/ which local administrators could augment as needed (e.g., @{XDG_CACHE_HOME}+=/var/cache/xdg/*/ or whatever the local convention may be). Similar treatment may be needed for the other environment variables mentioned in the XDG basedir spec: XDG_CONFIG_HOME for @{HOME}/.config XDG_DATA_HOME for @{HOME}/.local/share (and/or @{HOME}/.local ?) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1423890/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1293439] Re: Apparmor prevents icedtea-7-plugin from creating necessary files
Franck, you may wish to file a new bug as this one is marked 'Fix released'. Be sure to include DENIED lines from your kernel logs or audit logs. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1293439 Title: Apparmor prevents icedtea-7-plugin from creating necessary files Status in apparmor package in Ubuntu: Fix Released Bug description: Apparmor prevents icedtea-7-plugin from creating /run/user/UID/icedteaplugin-login-random/, needed to work: Mar 17 10:48:52 ad2 kernel: [2831863.964092] type=1400 audit(1395046132.183:851): apparmor=DENIED operation=mkdir parent=6425 profile=/usr/lib/firefox/firefox{,*[^s][^h]} name=/run/user/1000/icedteaplugin-pseudo-7DURO0/ pid=30285 comm =plugin-containe requested_mask=c denied_mask=c fsuid=1000 ouid=1000 ~ lsb_release -rd Description: Ubuntu 13.10 Release: 13.10 ~ apt-cache policy apparmor apparmor: Installed: 2.8.0-0ubuntu31.1 Candidate: 2.8.0-0ubuntu31.1 Version table: *** 2.8.0-0ubuntu31.1 0 500 http://archive.ubuntu.com/ubuntu/ saucy-updates/main amd64 Packages 100 /var/lib/dpkg/status 2.8.0-0ubuntu31 0 500 http://archive.ubuntu.com/ubuntu/ saucy/main amd64 Packages ProblemType: Bug DistroRelease: Ubuntu 13.10 Package: apparmor 2.8.0-0ubuntu31.1 ProcVersionSignature: Ubuntu 3.11.0-15.25-generic 3.11.10 Uname: Linux 3.11.0-15-generic x86_64 ApportVersion: 2.12.5-0ubuntu2.2 Architecture: amd64 Date: Mon Mar 17 10:59:53 2014 MarkForUpload: True ProcKernelCmdline: BOOT_IMAGE=/boot/vmlinuz-3.11.0-15-generic root=UUID=16001ea5-4e94-44ae-9838-da89b0f3f88e ro SourcePackage: apparmor Syslog: UpgradeStatus: Upgraded to saucy on 2013-09-10 (187 days ago) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1293439/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1420436] Re: error
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1420436 Title: error Status in xorg package in Ubuntu: New Bug description: error ProblemType: Bug DistroRelease: Ubuntu 10.04 Package: xorg 1:7.5+5ubuntu1.1 ProcVersionSignature: Ubuntu 2.6.32-38.83-generic 2.6.32.52+drm33.21 Uname: Linux 2.6.32-38-generic i686 Architecture: i386 Date: Wed Feb 11 01:43:40 2015 DkmsStatus: Error: [Errno 2] No such file or directory GdmLog2: Error: command ['gksu', '-D', 'Apport', '--', 'cat', '/var/log/gdm/:0.log.2'] failed with exit code 1: cat: /var/log/gdm/:0.log.2: No such file or directory InstallationMedia: Ubuntu 10.04.4 LTS Lucid Lynx - Release i386 (20120214.2) MachineType: Hewlett-Packard Presario CQ43 Notebook PC ProcCmdLine: BOOT_IMAGE=/boot/vmlinuz-2.6.32-38-generic root=UUID=bd839ec0-1340-48bb-bba9-53b0cc94973d ro quiet splash ProcEnviron: PATH=(custom, no user) LANG=en_US.UTF-8 SHELL=/bin/bash SourcePackage: xorg dmi.bios.date: 12/18/2011 dmi.bios.vendor: Hewlett-Packard dmi.bios.version: F.39 dmi.board.asset.tag: Base Board Asset Tag dmi.board.name: 3673 dmi.board.vendor: Hewlett-Packard dmi.board.version: 23.4B dmi.chassis.asset.tag: Chassis Asset Tag dmi.chassis.type: 10 dmi.chassis.vendor: Hewlett-Packard dmi.chassis.version: Chassis Version dmi.modalias: dmi:bvnHewlett-Packard:bvrF.39:bd12/18/2011:svnHewlett-Packard:pnPresarioCQ43NotebookPC:pvr05941000491000260:rvnHewlett-Packard:rn3673:rvr23.4B:cvnHewlett-Packard:ct10:cvrChassisVersion: dmi.product.name: Presario CQ43 Notebook PC dmi.product.version: 05941000491000260 dmi.sys.vendor: Hewlett-Packard glxinfo: Error: [Errno 2] No such file or directory system: distro: Ubuntu codename: lucid architecture: i686 kernel: 2.6.32-38-generic To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1420436/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1421949] Re: Help
Thank you for using Ubuntu and taking the time to report a bug. Your report should contain, at a minimum, the following information so we can better find the source of the bug and work to resolve it. Submitting the bug about the proper source package is essential. For help see https://wiki.ubuntu.com/Bugs/FindRightPackage . Additionally, in the report please include: 1) The release of Ubuntu you are using, via 'cat /etc/lsb-release' or System - About Ubuntu. 2) The version of the package you are using, via 'dpkg -l PKGNAME | cat' or by checking in Synaptic. 3) What happened and what you expected to happen. The Ubuntu community has also created debugging procedures for a wide variety of packages at https://wiki.ubuntu.com/DebuggingProcedures . Following the debugging instructions for the affected package will make your bug report much more complete. Thanks! ** Information type changed from Private Security to Public ** Changed in: xorg (Ubuntu) Status: New = Invalid -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1421949 Title: Help Status in xorg package in Ubuntu: Invalid Bug description: Help ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: xorg 1:7.7+1ubuntu8 ProcVersionSignature: Ubuntu 3.13.0-24.47-generic 3.13.9 Uname: Linux 3.13.0-24-generic i686 ApportVersion: 2.14.1-0ubuntu3.6 Architecture: i386 CurrentDesktop: XFCE Date: Sat Feb 14 13:08:03 2015 InstallationDate: Installed on 2015-02-14 (0 days ago) InstallationMedia: Linux Lite 2.2 32-bit - Release i386 SourcePackage: xorg UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1421949/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1422808] Re: ClamTk not updating
Is this bug about xorg or about clamtk? Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1422808 Title: ClamTk not updating Status in xorg package in Ubuntu: New Bug description: I have been using Clamtk to clean my computer from suspicious programs, yet it has stopped updating. It says update available but it doesn't update it when I try. ProblemType: Bug DistroRelease: Ubuntu 14.10 Package: xorg 1:7.7+7ubuntu2 ProcVersionSignature: Ubuntu 3.16.0-30.40-generic 3.16.7-ckt3 Uname: Linux 3.16.0-30-generic x86_64 .tmp.unity.support.test.0: ApportVersion: 2.14.7-0ubuntu8.1 Architecture: amd64 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: compiz CompositorUnredirectDriverBlacklist: '(nouveau|Intel).*Mesa 8.0' CompositorUnredirectFSW: true Date: Tue Feb 17 11:40:13 2015 DistUpgraded: Fresh install DistroCodename: utopic DistroVariant: ubuntu ExtraDebuggingInterest: Yes, if not too technical GraphicsCard: Advanced Micro Devices, Inc. [AMD/ATI] RS880M [Mobility Radeon HD 4225/4250] [1002:9712] (prog-if 00 [VGA controller]) Subsystem: Hewlett-Packard Company Device [103c:1697] InstallationDate: Installed on 2015-01-27 (20 days ago) InstallationMedia: Ubuntu 14.10 Utopic Unicorn - Release amd64 (20141022.1) MachineType: Hewlett-Packard HP Pavilion G6 Notebook PC ProcEnviron: LANGUAGE=en_US PATH=(custom, no user) LANG=en_US.UTF-8 SHELL=/bin/bash ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.16.0-30-generic root=UUID=a7b53863-5c49-4fa5-9873-8774792e835f ro quiet splash vt.handoff=7 SourcePackage: xorg UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 12/25/2012 dmi.bios.vendor: Hewlett-Packard dmi.bios.version: F.49 dmi.board.asset.tag: Base Board Asset Tag dmi.board.name: 1697 dmi.board.vendor: Hewlett-Packard dmi.board.version: KBC Version 16.24 dmi.chassis.type: 10 dmi.chassis.vendor: Hewlett-Packard dmi.chassis.version: N/A dmi.modalias: dmi:bvnHewlett-Packard:bvrF.49:bd12/25/2012:svnHewlett-Packard:pnHPPavilionG6NotebookPC:pvr059A1020461020100:rvnHewlett-Packard:rn1697:rvrKBCVersion16.24:cvnHewlett-Packard:ct10:cvrN/A: dmi.product.name: HP Pavilion G6 Notebook PC dmi.product.version: 059A1020461020100 dmi.sys.vendor: Hewlett-Packard version.compiz: compiz 1:0.9.12+14.10.20140918-0ubuntu1 version.ia32-libs: ia32-libs N/A version.libdrm2: libdrm2 2.4.56-1 version.libgl1-mesa-dri: libgl1-mesa-dri 10.3.2-0ubuntu0.1 version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx 10.3.2-0ubuntu0.1 version.xserver-xorg-core: xserver-xorg-core 2:1.16.0-1ubuntu1.2 version.xserver-xorg-input-evdev: xserver-xorg-input-evdev 1:2.9.0-1ubuntu2 version.xserver-xorg-video-ati: xserver-xorg-video-ati 1:7.4.0-2ubuntu2 version.xserver-xorg-video-intel: xserver-xorg-video-intel 2:2.99.914-1~exp1ubuntu4.2 version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau 1:1.0.11-1ubuntu2 xserver.bootTime: Tue Feb 17 11:30:52 2015 xserver.configfile: default xserver.errors: xserver.logfile: /var/log/Xorg.0.log xserver.version: 2:1.16.0-1ubuntu1.2 xserver.video_driver: radeon To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1422808/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1422101] Re: xorg
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1422101 Title: xorg Status in xorg package in Ubuntu: New Bug description: xorg ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: xorg 1:7.7+1ubuntu8 ProcVersionSignature: Ubuntu 3.13.0-45.74-generic 3.13.11-ckt13 Uname: Linux 3.13.0-45-generic x86_64 .tmp.unity.support.test.0: ApportVersion: 2.14.1-0ubuntu3.6 Architecture: amd64 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: compiz CompositorUnredirectDriverBlacklist: '(nouveau|Intel).*Mesa 8.0' CompositorUnredirectFSW: true Date: Sun Feb 15 16:26:10 2015 DistUpgraded: Fresh install DistroCodename: trusty DistroVariant: ubuntu DkmsStatus: virtualbox, 4.3.10, 3.13.0-45-generic, x86_64: installed GraphicsCard: Intel Corporation 2nd Generation Core Processor Family Integrated Graphics Controller [8086:0102] (rev 09) (prog-if 00 [VGA controller]) Subsystem: Gigabyte Technology Co., Ltd Device [1458:d000] MachineType: Gigabyte Technology Co., Ltd. To be filled by O.E.M. ProcEnviron: LANGUAGE=en_IN:en PATH=(custom, no user) XDG_RUNTIME_DIR=set LANG=en_IN SHELL=/bin/bash ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.13.0-45-generic.efi.signed root=UUID=20657cfd-db57-444d-bfb8-b592cd5ebd85 ro quiet splash vt.handoff=7 SourcePackage: xorg UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 03/23/2012 dmi.bios.vendor: American Megatrends Inc. dmi.bios.version: F7 dmi.board.asset.tag: To be filled by O.E.M. dmi.board.name: H61M-DS2 dmi.board.vendor: Gigabyte Technology Co., Ltd. dmi.board.version: To be filled by O.E.M. dmi.chassis.asset.tag: To Be Filled By O.E.M. dmi.chassis.type: 3 dmi.chassis.vendor: Gigabyte Technology Co., Ltd. dmi.chassis.version: To Be Filled By O.E.M. dmi.modalias: dmi:bvnAmericanMegatrendsInc.:bvrF7:bd03/23/2012:svnGigabyteTechnologyCo.,Ltd.:pnTobefilledbyO.E.M.:pvrTobefilledbyO.E.M.:rvnGigabyteTechnologyCo.,Ltd.:rnH61M-DS2:rvrTobefilledbyO.E.M.:cvnGigabyteTechnologyCo.,Ltd.:ct3:cvrToBeFilledByO.E.M.: dmi.product.name: To be filled by O.E.M. dmi.product.version: To be filled by O.E.M. dmi.sys.vendor: Gigabyte Technology Co., Ltd. version.compiz: compiz 1:0.9.11.2+14.04.20140714-0ubuntu1 version.ia32-libs: ia32-libs N/A version.libdrm2: libdrm2 2.4.56-1~ubuntu1 version.libgl1-mesa-dri: libgl1-mesa-dri 10.1.3-0ubuntu0.3 version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx 10.1.3-0ubuntu0.3 version.xserver-xorg-core: xserver-xorg-core 2:1.15.1-0ubuntu2.6 version.xserver-xorg-input-evdev: xserver-xorg-input-evdev 1:2.8.2-1ubuntu2 version.xserver-xorg-video-ati: xserver-xorg-video-ati 1:7.3.0-1ubuntu3.1 version.xserver-xorg-video-intel: xserver-xorg-video-intel 2:2.99.910-0ubuntu1.4 version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau 1:1.0.10-1ubuntu2 xserver.bootTime: Sun Feb 15 12:19:05 2015 xserver.configfile: default xserver.devices: inputPower Button KEYBOARD, id 6 inputVideo BusKEYBOARD, id 7 inputPower Button KEYBOARD, id 8 inputAT Translated Set 2 keyboard KEYBOARD, id 9 inputImPS/2 Generic Wheel Mouse MOUSE, id 10 xserver.errors: xserver.logfile: /var/log/Xorg.0.log xserver.outputs: product id 15235 vendor GSM xserver.version: 2:1.15.1-0ubuntu2.6 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1422101/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1422808] Re: ClamTk not updating
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1422808 Title: ClamTk not updating Status in xorg package in Ubuntu: New Bug description: I have been using Clamtk to clean my computer from suspicious programs, yet it has stopped updating. It says update available but it doesn't update it when I try. ProblemType: Bug DistroRelease: Ubuntu 14.10 Package: xorg 1:7.7+7ubuntu2 ProcVersionSignature: Ubuntu 3.16.0-30.40-generic 3.16.7-ckt3 Uname: Linux 3.16.0-30-generic x86_64 .tmp.unity.support.test.0: ApportVersion: 2.14.7-0ubuntu8.1 Architecture: amd64 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: compiz CompositorUnredirectDriverBlacklist: '(nouveau|Intel).*Mesa 8.0' CompositorUnredirectFSW: true Date: Tue Feb 17 11:40:13 2015 DistUpgraded: Fresh install DistroCodename: utopic DistroVariant: ubuntu ExtraDebuggingInterest: Yes, if not too technical GraphicsCard: Advanced Micro Devices, Inc. [AMD/ATI] RS880M [Mobility Radeon HD 4225/4250] [1002:9712] (prog-if 00 [VGA controller]) Subsystem: Hewlett-Packard Company Device [103c:1697] InstallationDate: Installed on 2015-01-27 (20 days ago) InstallationMedia: Ubuntu 14.10 Utopic Unicorn - Release amd64 (20141022.1) MachineType: Hewlett-Packard HP Pavilion G6 Notebook PC ProcEnviron: LANGUAGE=en_US PATH=(custom, no user) LANG=en_US.UTF-8 SHELL=/bin/bash ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.16.0-30-generic root=UUID=a7b53863-5c49-4fa5-9873-8774792e835f ro quiet splash vt.handoff=7 SourcePackage: xorg UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 12/25/2012 dmi.bios.vendor: Hewlett-Packard dmi.bios.version: F.49 dmi.board.asset.tag: Base Board Asset Tag dmi.board.name: 1697 dmi.board.vendor: Hewlett-Packard dmi.board.version: KBC Version 16.24 dmi.chassis.type: 10 dmi.chassis.vendor: Hewlett-Packard dmi.chassis.version: N/A dmi.modalias: dmi:bvnHewlett-Packard:bvrF.49:bd12/25/2012:svnHewlett-Packard:pnHPPavilionG6NotebookPC:pvr059A1020461020100:rvnHewlett-Packard:rn1697:rvrKBCVersion16.24:cvnHewlett-Packard:ct10:cvrN/A: dmi.product.name: HP Pavilion G6 Notebook PC dmi.product.version: 059A1020461020100 dmi.sys.vendor: Hewlett-Packard version.compiz: compiz 1:0.9.12+14.10.20140918-0ubuntu1 version.ia32-libs: ia32-libs N/A version.libdrm2: libdrm2 2.4.56-1 version.libgl1-mesa-dri: libgl1-mesa-dri 10.3.2-0ubuntu0.1 version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx 10.3.2-0ubuntu0.1 version.xserver-xorg-core: xserver-xorg-core 2:1.16.0-1ubuntu1.2 version.xserver-xorg-input-evdev: xserver-xorg-input-evdev 1:2.9.0-1ubuntu2 version.xserver-xorg-video-ati: xserver-xorg-video-ati 1:7.4.0-2ubuntu2 version.xserver-xorg-video-intel: xserver-xorg-video-intel 2:2.99.914-1~exp1ubuntu4.2 version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau 1:1.0.11-1ubuntu2 xserver.bootTime: Tue Feb 17 11:30:52 2015 xserver.configfile: default xserver.errors: xserver.logfile: /var/log/Xorg.0.log xserver.version: 2:1.16.0-1ubuntu1.2 xserver.video_driver: radeon To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1422808/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1419436] Re: tls_socket_read (Decryption has failed.)
It appears your patch disables authentication entirely; if I'm correct, a MITM attacker can modify bytes at will and you're unlikely to discover that they have been modified while in transit. I'm sorry that I don't have anything better to recommend; it'd be worth running some stressors on your hardware and seeing if they can run to completion, e.g. kernel compiles or http://kernel.ubuntu.com/~cking /stress-ng/ Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to gnutls26 in Ubuntu. https://bugs.launchpad.net/bugs/1419436 Title: tls_socket_read (Decryption has failed.) Status in gnutls26 package in Ubuntu: New Bug description: Since moving from Ubunutu 12.04 (armel) to 14.04 (armhf) on a Beagleboard I have a persistent problem using mutt where (especially) larger messages fail to download resulting in the error: tls_socket_read (Decryption has failed.) The failure is reproducable in that I can almost never download messages with attachments larger than 10MB (it will inevitably fail at some point during the transfer). 12.04 (armel) had gnutls26 verison 2.12.14-5ubuntu3.8, and I never had this problem. 14.04 uses 2.12.23-12ubuntu2.1. Strangely enough my amd64 machines which also run 14.04 and 2.12.23-12ubuntu2.1 do not have this problem. In attempting to debug I tried setting GNUTLS_DEBUG_LEVEL=6, which didn't produce any output from libgnutls26. Next I tried forcing mutt to use libgnutls28 (3.2.11-2ubuntu1) with LD_PRELOAD. Then setting GNUTLS_DEBUG_LEVEL=6 and redirecting stderr to a file yields the following log: ... gnutls[4]: REC[0x16cb240]: Expected Packet Application Data(23) gnutls[4]: REC[0x16cb240]: Received Packet Application Data(23) with length: 1395 gnutls[4]: REC[0x16cb240]: Decrypted Packet[4742] Application Data(23) with length: 1371 gnutls[6]: BUF[REC]: Inserted 1371 bytes of Data(23) gnutls[4]: REC[0x16cb240]: SSL 3.3 Application Data packet received. Epoch 0, length: 1395 gnutls[4]: REC[0x16cb240]: Expected Packet Application Data(23) gnutls[4]: REC[0x16cb240]: Received Packet Application Data(23) with length: 1395 gnutls[4]: REC[0x16cb240]: Decrypted Packet[4743] Application Data(23) with length: 1371 gnutls[6]: BUF[REC]: Inserted 1371 bytes of Data(23) gnutls[4]: REC[0x16cb240]: SSL 3.3 Application Data packet received. Epoch 0, length: 1378 gnutls[4]: REC[0x16cb240]: Expected Packet Application Data(23) gnutls[4]: REC[0x16cb240]: Received Packet Application Data(23) with length: 1378 gnutls[4]: REC[0x16cb240]: Decrypted Packet[4744] Application Data(23) with length: 1354 gnutls[6]: BUF[REC]: Inserted 1354 bytes of Data(23) gnutls[4]: REC[0x16cb240]: SSL 3.3 Application Data packet received. Epoch 0, length: 1395 gnutls[4]: REC[0x16cb240]: Expected Packet Application Data(23) gnutls[4]: REC[0x16cb240]: Received Packet Application Data(23) with length: 1395 gnutls[2]: ASSERT: gnutls_cipher.c:951 gnutls[2]: ASSERT: gnutls_cipher.c:199 gnutls[2]: ASSERT: gnutls_record.c:1223 gnutls[1]: Discarded message[4745] due to invalid decryption gnutls[2]: ASSERT: gnutls_record.c:1407 gnutls[2]: ASSERT: gnutls_buffers.c:624 gnutls[4]: REC: Sending Alert[1|0] - Close notify gnutls[4]: REC[0x16cb240]: Preparing Packet Alert(21) with length: 2 and min pad: 0 gnutls[4]: REC[0x16cb240]: Sent Packet[10] Alert(21) in epoch 1 and length: 31 gnutls[2]: ASSERT: gnutls_record.c:1384 gnutls[2]: ASSERT: gnutls_record.c:334 gnutls[4]: REC[0x16cb240]: Start of epoch cleanup gnutls[4]: REC[0x16cb240]: End of epoch cleanup gnutls[4]: REC[0x16cb240]: Epoch #1 freed So this problem (at least on armhf) seems to affect both gnutls26 and gnutls28. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/gnutls26/+bug/1419436/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1362469] Re: AppArmor unrequested reply protection generates unallowable denials
Good work. I think you're right, most policy authors would rather just drop the unrequested replies, so dropping them on the floor silently feels like the path of least surprise. Maybe it would be useful to provide some debug logging option for these but I doubt it'd ever repay the time it would take to add one. If it's easier than I suspect, though, maybe.. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to dbus in Ubuntu. https://bugs.launchpad.net/bugs/1362469 Title: AppArmor unrequested reply protection generates unallowable denials Status in dbus package in Ubuntu: Triaged Bug description: Starting with utopic's dbus 1.8.6-1ubuntu1 package, the new AppArmor unrequested reply protections can generate some denials that can't easily be allowed in policy. For example, when running a confined pasaffe, you see these denials when starting and closing pasaffe: apparmor=DENIED operation=dbus_error bus=session error_name=org.freedesktop.DBus.Error.UnknownMethod mask=send name=:1.22 pid=4993 profile=/usr/bin/pasaffe peer_pid=3624 peer_profile=unconfined It isn't obvious how to construct an AppArmor D-Bus rule to allow that operation. A bare dbus, rule allows it but that's not acceptable for profiles implementing tight D-Bus confinement. The code that implements unrequested reply protections should be reviewed for issues and, if everything looks good there, investigations into how to allow the operation that triggers the above denial should occur. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/dbus/+bug/1362469/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1417804] Re: Ubuntu 14.04 LTS i915 hatası
I'm sorry, I don't know when this can be fixed; I only made the bug visible to everyone. Thanks -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1417804 Title: Ubuntu 14.04 LTS i915 hatası Status in xorg package in Ubuntu: New Bug description: açılışta i915 hatası veriyor. ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: xorg 1:7.7+1ubuntu8 ProcVersionSignature: Ubuntu 3.13.0-45.74-generic 3.13.11-ckt13 Uname: Linux 3.13.0-45-generic x86_64 .tmp.unity.support.test.0: ApportVersion: 2.14.1-0ubuntu3.6 Architecture: amd64 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: compiz CompositorUnredirectDriverBlacklist: '(nouveau|Intel).*Mesa 8.0' CompositorUnredirectFSW: true CurrentDesktop: Unity Date: Wed Feb 4 00:46:14 2015 DistUpgraded: Fresh install DistroCodename: trusty DistroVariant: ubuntu DkmsStatus: i915-3.16-3.13, 1, 3.13.0-45-generic, x86_64: installed GraphicsCard: Intel Corporation 4 Series Chipset Integrated Graphics Controller [8086:2e32] (rev 03) (prog-if 00 [VGA controller]) Subsystem: Fujitsu Technology Solutions Device [1734:114c] InstallationDate: Installed on 2015-02-02 (1 days ago) InstallationMedia: Ubuntu 14.04.1 LTS Trusty Tahr - Release amd64 (20140722.2) MachineType: ARCELIK AS 1YA-ARCELIK 5440 ProcEnviron: LANGUAGE=tr PATH=(custom, no user) XDG_RUNTIME_DIR=set LANG=tr_TR.UTF-8 SHELL=/bin/bash ProcKernelCmdLine: BOOT_IMAGE=/vmlinuz-3.13.0-45-generic root=/dev/mapper/ubuntu--vg-root ro splash quiet vt.handoff=7 SourcePackage: xorg Symptom: display UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 11/09/2010 dmi.bios.vendor: FUJITSU // Phoenix Technologies Ltd. dmi.bios.version: 6.00 R1.02.3041.A1 dmi.board.name: D3041-A1 dmi.board.vendor: FUJITSU dmi.board.version: S26361-D3041-A1 dmi.chassis.asset.tag: 93742010006534 dmi.chassis.type: 6 dmi.chassis.vendor: ARCELIK AS dmi.modalias: dmi:bvnFUJITSU//PhoenixTechnologiesLtd.:bvr6.00R1.02.3041.A1:bd11/09/2010:svnARCELIKAS:pn1YA-ARCELIK5440:pvrV102:rvnFUJITSU:rnD3041-A1:rvrS26361-D3041-A1:cvnARCELIKAS:ct6:cvr: dmi.product.name: 1YA-ARCELIK 5440 dmi.product.version: V102 dmi.sys.vendor: ARCELIK AS version.compiz: compiz 1:0.9.11.3+14.04.20141104-0ubuntu1 version.ia32-libs: ia32-libs N/A version.libdrm2: libdrm2 2.4.56-1 version.libgl1-mesa-dri: libgl1-mesa-dri 10.3.0-0ubuntu2intel1 version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx 10.3.0-0ubuntu2intel1 version.xserver-xorg-core: xserver-xorg-core 2:1.15.1-0ubuntu2.6 version.xserver-xorg-input-evdev: xserver-xorg-input-evdev 1:2.8.2-1ubuntu2 version.xserver-xorg-video-ati: xserver-xorg-video-ati 1:7.3.0-1ubuntu3.1 version.xserver-xorg-video-intel: xserver-xorg-video-intel 2:2.99.911-0intel1 version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau 1:1.0.10-1ubuntu2 xserver.bootTime: Wed Feb 4 00:40:59 2015 xserver.configfile: default xserver.devices: inputPower Button KEYBOARD, id 6 inputPower Button KEYBOARD, id 7 inputHID 04f3:0103KEYBOARD, id 8 inputHID 04f3:0103KEYBOARD, id 9 inputSIGMACHIP Usb Mouse MOUSE, id 10 xserver.errors: xserver.logfile: /var/log/Xorg.0.log xserver.outputs: product id2001 vendor PTS xserver.version: 2:1.15.1-0ubuntu2.6 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1417804/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1417832] Re: i don't know
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1417832 Title: i don't know Status in xorg package in Ubuntu: New Bug description: I don't know ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: xorg 1:7.7+1ubuntu8 ProcVersionSignature: Ubuntu 3.13.0-45.74-generic 3.13.11-ckt13 Uname: Linux 3.13.0-45-generic x86_64 .tmp.unity.support.test.0: ApportVersion: 2.14.1-0ubuntu3.6 Architecture: amd64 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: compiz CompositorUnredirectDriverBlacklist: '(nouveau|Intel).*Mesa 8.0' CompositorUnredirectFSW: true Date: Wed Feb 4 06:38:54 2015 DistUpgraded: Fresh install DistroCodename: trusty DistroVariant: ubuntu GraphicsCard: Intel Corporation 2nd Generation Core Processor Family Integrated Graphics Controller [8086:0102] (rev 09) (prog-if 00 [VGA controller]) Subsystem: Gigabyte Technology Co., Ltd Device [1458:d000] InstallationDate: Installed on 2015-02-03 (0 days ago) InstallationMedia: Ubuntu 14.04.1 LTS Trusty Tahr - Release amd64 (20140722.2) MachineType: Gigabyte Technology Co., Ltd. To be filled by O.E.M. ProcEnviron: LANGUAGE=en_IN:en PATH=(custom, no user) LANG=en_IN SHELL=/bin/bash ProcKernelCmdLine: BOOT_IMAGE=/boot/vmlinuz-3.13.0-45-generic.efi.signed root=UUID=670c1268-29c3-42c4-987a-f6cde1229a56 ro quiet splash vt.handoff=7 SourcePackage: xorg UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 03/23/2012 dmi.bios.vendor: American Megatrends Inc. dmi.bios.version: F7 dmi.board.asset.tag: To be filled by O.E.M. dmi.board.name: H61M-DS2 dmi.board.vendor: Gigabyte Technology Co., Ltd. dmi.board.version: To be filled by O.E.M. dmi.chassis.asset.tag: To Be Filled By O.E.M. dmi.chassis.type: 3 dmi.chassis.vendor: Gigabyte Technology Co., Ltd. dmi.chassis.version: To Be Filled By O.E.M. dmi.modalias: dmi:bvnAmericanMegatrendsInc.:bvrF7:bd03/23/2012:svnGigabyteTechnologyCo.,Ltd.:pnTobefilledbyO.E.M.:pvrTobefilledbyO.E.M.:rvnGigabyteTechnologyCo.,Ltd.:rnH61M-DS2:rvrTobefilledbyO.E.M.:cvnGigabyteTechnologyCo.,Ltd.:ct3:cvrToBeFilledByO.E.M.: dmi.product.name: To be filled by O.E.M. dmi.product.version: To be filled by O.E.M. dmi.sys.vendor: Gigabyte Technology Co., Ltd. version.compiz: compiz 1:0.9.11.2+14.04.20140714-0ubuntu1 version.ia32-libs: ia32-libs N/A version.libdrm2: libdrm2 2.4.56-1~ubuntu1 version.libgl1-mesa-dri: libgl1-mesa-dri 10.1.3-0ubuntu0.3 version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx 10.1.3-0ubuntu0.3 version.xserver-xorg-core: xserver-xorg-core 2:1.15.1-0ubuntu2.6 version.xserver-xorg-input-evdev: xserver-xorg-input-evdev 1:2.8.2-1ubuntu2 version.xserver-xorg-video-ati: xserver-xorg-video-ati 1:7.3.0-1ubuntu3.1 version.xserver-xorg-video-intel: xserver-xorg-video-intel 2:2.99.910-0ubuntu1.3 version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau 1:1.0.10-1ubuntu2 xserver.bootTime: Wed Feb 4 05:35:06 2015 xserver.configfile: default xserver.devices: inputPower Button KEYBOARD, id 6 inputVideo BusKEYBOARD, id 7 inputPower Button KEYBOARD, id 8 inputAT Translated Set 2 keyboard KEYBOARD, id 9 inputImPS/2 Generic Wheel Mouse MOUSE, id 10 xserver.errors: xserver.logfile: /var/log/Xorg.0.log xserver.outputs: product id 15235 vendor GSM xserver.version: 2:1.15.1-0ubuntu2.6 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1417832/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1417804] Re: Ubuntu 14.04 LTS i915 hatası
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Public Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to xorg in Ubuntu. https://bugs.launchpad.net/bugs/1417804 Title: Ubuntu 14.04 LTS i915 hatası Status in xorg package in Ubuntu: New Bug description: açılışta i915 hatası veriyor. ProblemType: Bug DistroRelease: Ubuntu 14.04 Package: xorg 1:7.7+1ubuntu8 ProcVersionSignature: Ubuntu 3.13.0-45.74-generic 3.13.11-ckt13 Uname: Linux 3.13.0-45-generic x86_64 .tmp.unity.support.test.0: ApportVersion: 2.14.1-0ubuntu3.6 Architecture: amd64 CompizPlugins: No value set for `/apps/compiz-1/general/screen0/options/active_plugins' CompositorRunning: compiz CompositorUnredirectDriverBlacklist: '(nouveau|Intel).*Mesa 8.0' CompositorUnredirectFSW: true CurrentDesktop: Unity Date: Wed Feb 4 00:46:14 2015 DistUpgraded: Fresh install DistroCodename: trusty DistroVariant: ubuntu DkmsStatus: i915-3.16-3.13, 1, 3.13.0-45-generic, x86_64: installed GraphicsCard: Intel Corporation 4 Series Chipset Integrated Graphics Controller [8086:2e32] (rev 03) (prog-if 00 [VGA controller]) Subsystem: Fujitsu Technology Solutions Device [1734:114c] InstallationDate: Installed on 2015-02-02 (1 days ago) InstallationMedia: Ubuntu 14.04.1 LTS Trusty Tahr - Release amd64 (20140722.2) MachineType: ARCELIK AS 1YA-ARCELIK 5440 ProcEnviron: LANGUAGE=tr PATH=(custom, no user) XDG_RUNTIME_DIR=set LANG=tr_TR.UTF-8 SHELL=/bin/bash ProcKernelCmdLine: BOOT_IMAGE=/vmlinuz-3.13.0-45-generic root=/dev/mapper/ubuntu--vg-root ro splash quiet vt.handoff=7 SourcePackage: xorg Symptom: display UpgradeStatus: No upgrade log present (probably fresh install) dmi.bios.date: 11/09/2010 dmi.bios.vendor: FUJITSU // Phoenix Technologies Ltd. dmi.bios.version: 6.00 R1.02.3041.A1 dmi.board.name: D3041-A1 dmi.board.vendor: FUJITSU dmi.board.version: S26361-D3041-A1 dmi.chassis.asset.tag: 93742010006534 dmi.chassis.type: 6 dmi.chassis.vendor: ARCELIK AS dmi.modalias: dmi:bvnFUJITSU//PhoenixTechnologiesLtd.:bvr6.00R1.02.3041.A1:bd11/09/2010:svnARCELIKAS:pn1YA-ARCELIK5440:pvrV102:rvnFUJITSU:rnD3041-A1:rvrS26361-D3041-A1:cvnARCELIKAS:ct6:cvr: dmi.product.name: 1YA-ARCELIK 5440 dmi.product.version: V102 dmi.sys.vendor: ARCELIK AS version.compiz: compiz 1:0.9.11.3+14.04.20141104-0ubuntu1 version.ia32-libs: ia32-libs N/A version.libdrm2: libdrm2 2.4.56-1 version.libgl1-mesa-dri: libgl1-mesa-dri 10.3.0-0ubuntu2intel1 version.libgl1-mesa-dri-experimental: libgl1-mesa-dri-experimental N/A version.libgl1-mesa-glx: libgl1-mesa-glx 10.3.0-0ubuntu2intel1 version.xserver-xorg-core: xserver-xorg-core 2:1.15.1-0ubuntu2.6 version.xserver-xorg-input-evdev: xserver-xorg-input-evdev 1:2.8.2-1ubuntu2 version.xserver-xorg-video-ati: xserver-xorg-video-ati 1:7.3.0-1ubuntu3.1 version.xserver-xorg-video-intel: xserver-xorg-video-intel 2:2.99.911-0intel1 version.xserver-xorg-video-nouveau: xserver-xorg-video-nouveau 1:1.0.10-1ubuntu2 xserver.bootTime: Wed Feb 4 00:40:59 2015 xserver.configfile: default xserver.devices: inputPower Button KEYBOARD, id 6 inputPower Button KEYBOARD, id 7 inputHID 04f3:0103KEYBOARD, id 8 inputHID 04f3:0103KEYBOARD, id 9 inputSIGMACHIP Usb Mouse MOUSE, id 10 xserver.errors: xserver.logfile: /var/log/Xorg.0.log xserver.outputs: product id2001 vendor PTS xserver.version: 2:1.15.1-0ubuntu2.6 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/xorg/+bug/1417804/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1416712] Re: package ifupdown 0.7.48.1ubuntu5 failed to install/upgrade: el subproceso instalado el script post-installation devolvió el código de salida de error 1
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a regular (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find. ** Information type changed from Private Security to Public -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to ifupdown in Ubuntu. https://bugs.launchpad.net/bugs/1416712 Title: package ifupdown 0.7.48.1ubuntu5 failed to install/upgrade: el subproceso instalado el script post-installation devolvió el código de salida de error 1 Status in ifupdown package in Ubuntu: New Bug description: package ifupdown 0.7.48.1ubuntu5 failed to install/upgrade: el subproceso instalado el script post-installation devolvió el código de salida de error 1 ProblemType: Package DistroRelease: Ubuntu 14.10 Package: ifupdown 0.7.48.1ubuntu5 ProcVersionSignature: Ubuntu 3.16.0-30.40-generic 3.16.7-ckt3 Uname: Linux 3.16.0-30-generic x86_64 ApportVersion: 2.14.7-0ubuntu8.1 AptOrdering: netscript-2.4: Remove ifupdown: Install upstart: Install ifupdown: Configure upstart: Configure Architecture: amd64 Date: Fri Jan 30 20:48:37 2015 DuplicateSignature: package:ifupdown:0.7.48.1ubuntu5:el subproceso instalado el script post-installation devolvió el código de salida de error 1 ErrorMessage: el subproceso instalado el script post-installation devolvió el código de salida de error 1 InstallationDate: Installed on 2014-08-25 (159 days ago) InstallationMedia: Ubuntu 14.04 LTS Trusty Tahr - Release amd64 (20140417) SourcePackage: ifupdown Title: package ifupdown 0.7.48.1ubuntu5 failed to install/upgrade: el subproceso instalado el script post-installation devolvió el código de salida de error 1 UpgradeStatus: No upgrade log present (probably fresh install) To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/ifupdown/+bug/1416712/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp