[Bug 1062531] Re: apparmor prevents evince from accessing /run/user/
For anyone, like me, who is naive enough to think that it's possible to set XDG_CACHE_HOME or DCONF_PROFILE to values other than the default, note that this fix _only_ allows access to the "user" profile. If you rename your user profile, you cannot use any apparmor-enabled application that uses dconf. I know there's nothing to be done about this, but I'm leaving this comment here lest anyone else encounter this situation. -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1062531 Title: apparmor prevents evince from accessing /run/user/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/1062531/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1062531] Re: apparmor prevents evince from accessing /run/user/
Thank you for the quick fix! -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1062531 Title: apparmor prevents evince from accessing /run/user/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/1062531/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1062531] Re: apparmor prevents evince from accessing /run/user/
This bug was fixed in the package evince - 3.6.0-0ubuntu2 --- evince (3.6.0-0ubuntu2) quantal; urgency=low * debian/apparmor-profile: for evince and evince-previewer, allow owner 'rw' access to /{,var/}run/user/*/dconf/user (LP: #1062531) -- Jamie StrandbogeTue, 09 Oct 2012 08:51:50 -0500 ** Changed in: evince (Ubuntu Quantal) Status: Fix Committed => Fix Released -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1062531 Title: apparmor prevents evince from accessing /run/user/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/1062531/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1062531] Re: apparmor prevents evince from accessing /run/user/
Uploaded 3.6.0-0ubuntu2. ** Changed in: evince (Ubuntu Quantal) Status: In Progress => Fix Committed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1062531 Title: apparmor prevents evince from accessing /run/user/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/1062531/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1062531] Re: apparmor prevents evince from accessing /run/user/
** Changed in: evince (Ubuntu Quantal) Status: Triaged => In Progress ** Changed in: evince (Ubuntu Quantal) Milestone: None => ubuntu-12.10 -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1062531 Title: apparmor prevents evince from accessing /run/user/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/1062531/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1062531] Re: apparmor prevents evince from accessing /run/user/
** Changed in: evince (Ubuntu Quantal) Status: Confirmed => Triaged -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1062531 Title: apparmor prevents evince from accessing /run/user/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/1062531/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1062531] Re: apparmor prevents evince from accessing /run/user/
** Changed in: evince (Ubuntu Quantal) Assignee: Ubuntu Security Team (ubuntu-security) => Jamie Strandboge (jdstrand) -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1062531 Title: apparmor prevents evince from accessing /run/user/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/1062531/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1062531] Re: apparmor prevents evince from accessing /run/user/
Hey ubuntu-security, could somebody in your team look at that? I guess it's a change similar to the one done to other sources recently e.g adding " owner /{,var/}run/user/*/dconf/ w, owner /{,var/}run/user/*/dconf/user rw," to the profile, but I would prefer to have somebody who knows apparmor better than me to confirm before doing that ** Changed in: evince (Ubuntu) Assignee: (unassigned) => Ubuntu Security Team (ubuntu-security) ** Changed in: evince (Ubuntu) Importance: Undecided => High ** Also affects: evince (Ubuntu Quantal) Importance: High Assignee: Ubuntu Security Team (ubuntu-security) Status: Confirmed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1062531 Title: apparmor prevents evince from accessing /run/user/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/1062531/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1062531] Re: apparmor prevents evince from accessing /run/user/
to reproduce, just start evince, no need to do anything else. It also happens when closing it. to fix, edit /etc/apparmor.d/usr.bin.evince and add this line in the /usr/bin/evince section: owner /{,var/}run/user/*/dconf/user rw, then reload the profile with: sudo apparmor_parser -r /etc/apparmor.d/usr.bin.evince -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1062531 Title: apparmor prevents evince from accessing /run/user/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/1062531/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1062531] Re: apparmor prevents evince from accessing /run/user/
Status changed to 'Confirmed' because the bug affects multiple users. ** Changed in: evince (Ubuntu) Status: New => Confirmed -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1062531 Title: apparmor prevents evince from accessing /run/user/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/1062531/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
[Bug 1062531] Re: apparmor prevents evince from accessing /run/user/
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1062531 Title: apparmor prevents evince from accessing /run/user/ To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/evince/+bug/1062531/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs