a86a930209
OBS-URL: https://build.opensuse.org/package/show/security:apparmor/apparmor?expand=0&rev=150
34 lines
1019 B
Diff
34 lines
1019 B
Diff
------------------------------------------------------------
|
|
revno: trunk r3449 / 2.10 branch r3331 / 2.9 branch r3009
|
|
committer: Christian Boltz <apparmor@cboltz.de>
|
|
branch nick: apparmor
|
|
timestamp: Wed 2016-05-18 21:18:10 +0200
|
|
message:
|
|
allow inet6 in ping profile
|
|
|
|
The latest iputils merged ping and ping6 into a single binary that does
|
|
both IPv4 and IPv6 pings (by default, it really does both).
|
|
This means we need to allow network inet6 raw in the ping profile.
|
|
|
|
References: https://bugzilla.opensuse.org/show_bug.cgi?id=980596
|
|
(contains more details and example output)
|
|
|
|
|
|
Acked-by: Steve Beattie <steve@nxnw.org> for trunk, 2.10 and 2.9
|
|
|
|
|
|
=== modified file 'profiles/apparmor.d/bin.ping'
|
|
--- profiles/apparmor.d/bin.ping 2015-10-20 21:12:35 +0000
|
|
+++ profiles/apparmor.d/bin.ping 2016-05-18 19:18:10 +0000
|
|
@@ -18,6 +18,7 @@
|
|
capability net_raw,
|
|
capability setuid,
|
|
network inet raw,
|
|
+ network inet6 raw,
|
|
|
|
/{,usr/}bin/ping mixr,
|
|
/etc/modules.conf r,
|
|
|
|
|
|
vim:ft=diff
|