Hi Martin, my particular fix on proc/*/cmdline (the one you hit atm) I didn't upstream yet [1] for the potential security risk (I wanted to wait for an idea how to do it even better, but had no better idea in my discussions with smb yet). But it was just recently discussed as someone else was not so shy and brought it up [2].
TL;DR the fix will be in 3.10 for everyone. [1]: https://git.launchpad.net/~libvirt-maintainers/ubuntu/+source/libvirt/commit/?h=ubuntu/artful-3.6&id=649921baa4d4af7b215a6ebfbde228c84b37cde8 [2]: https://libvirt.org/git/?p=libvirt.git;a=blobdiff;f=examples/apparmor/libvirt-qemu;h=d4fad85a1801fd6c65d23d528f51bd19ba039415;hp=73bdbae87253e1e6347805fa8c0ea4af10acb4f5;hb=0af5ced4b81b68be7016d1f8755db3d0c3249278;hpb=684c0f181110dc0123e8cdc50ee855a1a0c4e41d -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1680384 Title: libvirt-qemu apparmor profiles misses several important entries To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/libvirt/+bug/1680384/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
