For MySQL the call to proc/pid/status is done as part of a check to ensure no other processes are using the same socket file, so it affects the server's ability to detect an invalid configuration.
-- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to apparmor in Ubuntu. https://bugs.launchpad.net/bugs/1658239 Title: base abstraction missing glibc /proc/$pid/ things Status in AppArmor: Fix Committed Status in AppArmor 2.10 series: Fix Committed Status in AppArmor 2.11 series: Fix Committed Status in AppArmor 2.9 series: Fix Committed Status in AppArmor master series: Fix Committed Status in apparmor package in Ubuntu: New Bug description: There are yet more glibc-needed files missing from the base abstraction: --- base 2017-01-20 15:37:50.000000000 -0800 +++ /etc/apparmor.d/abstractions/base 2016-12-06 14:13:58.000000000 -0800 @@ -92,7 +92,7 @@ /sys/devices/system/cpu/online r, # glibc's *printf protections read the maps file - @{PROC}/@{pid}/maps r, + @{PROC}/@{pid}/{maps,auxv,status} r, # libgcrypt reads some flags from /proc @{PROC}/sys/crypto/* r, To manage notifications about this bug go to: https://bugs.launchpad.net/apparmor/+bug/1658239/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
