USN-2413-1

See a problem?
Please try reporting it to the source first.
Source
https://ubuntu.com/security/notices/USN-2413-1
Import Source
https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2413-1.json
JSON Data
https://api.osv.dev/v1/vulns/USN-2413-1
Upstream
Related
Published
2014-11-20T20:57:09Z
Modified
2026-02-10T04:40:51Z
Summary
apparmor vulnerability
Details

An AppArmor policy miscompilation flaw was discovered in apparmor_parser. Under certain circumstances, a malicious application could use this flaw to perform operations that are not allowed by AppArmor policy. The flaw may also prevent applications from accessing resources that are allowed by AppArmor policy.

References

Affected packages

Ubuntu:14.04:LTS / apparmor

Package

Name
apparmor
Purl
pkg:deb/ubuntu/apparmor@2.8.95~2430-0ubuntu5.1?arch=source&distro=trusty

Affected ranges

Type
ECOSYSTEM
Events
Introduced
0Unknown introduced version / All previous versions are affected
Fixed
2.8.95~2430-0ubuntu5.1

Affected versions

2.*
2.8.0-0ubuntu31
2.8.0-0ubuntu32
2.8.0-0ubuntu33
2.8.0-0ubuntu34
2.8.0-0ubuntu35
2.8.0-0ubuntu37
2.8.0-0ubuntu38
2.8.95~2430-0ubuntu1
2.8.95~2430-0ubuntu2
2.8.95~2430-0ubuntu3
2.8.95~2430-0ubuntu5

Ecosystem specific 

{
    "binaries": [
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "apparmor"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "apparmor-docs"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "apparmor-easyprof"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "apparmor-notify"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "apparmor-profiles"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "apparmor-utils"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "dh-apparmor"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "libapache2-mod-apparmor"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "libapparmor-dev"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "libapparmor-perl"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "libapparmor1"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "libpam-apparmor"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "python-apparmor"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "python-libapparmor"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "python3-apparmor"
        },
        {
            "binary_version": "2.8.95~2430-0ubuntu5.1",
            "binary_name": "python3-libapparmor"
        }
    ],
    "availability": "No subscription required"
}

Database specific

source 
"https://github.com/canonical/ubuntu-security-notices/blob/main/osv/usn/USN-2413-1.json"
cves_map 
{
    "ecosystem": "Ubuntu:14.04:LTS",
    "cves": [
        {
            "id": "CVE-2014-1424",
            "severity": [
                {
                    "type": "Ubuntu",
                    "score": "medium"
                }
            ]
        }
    ]
}