mirrors/apparmor
1
0
Fork 0
mirror of https://gitlab.com/apparmor/apparmor.git synced 2025-03-04 08:24:42 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions

Add CAP_BPF and CAP_PERFMON to severity.db

Browse source 
These capabilities were introduced in Linux 5.8

MR: https://gitlab.com/apparmor/apparmor/-/merge_requests/589
References: https://bugs.launchpad.net/bugs/1890547
(cherry picked from commit ae01250209)
Signed-off-by: John Johansen <john.johansen@canonical.com>
This commit is contained in:
Christian Boltz 2020-08-07 22:37:19 +02:00 committed by John Johansen
parent 0acc2cd67c
commit 9f0415e1ab
1 changed files with 3 additions and 0 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

3
utils/severity.db
View file

@ -2,6 +2,7 @@
# #
# Copyright (C) 2002-2005 Novell/SUSE # Copyright (C) 2002-2005 Novell/SUSE
# Copyright (C) 2014 Canonical Ltd. # Copyright (C) 2014 Canonical Ltd.
# Copyright (C) 2020 Christian Boltz
# #
# This program is free software; you can redistribute it and/or # This program is free software; you can redistribute it and/or
# modify it under the terms of version 2 of the GNU General Public # modify it under the terms of version 2 of the GNU General Public
@ -28,6 +29,7 @@
CAP_SETGID 9 CAP_SETGID 9
CAP_SETUID 9 CAP_SETUID 9
CAP_FOWNER 9 CAP_FOWNER 9
CAP_BPF 9
# Denial of service, bypass audit controls, information leak # Denial of service, bypass audit controls, information leak
CAP_SYS_TIME 8 CAP_SYS_TIME 8
CAP_NET_ADMIN 8 CAP_NET_ADMIN 8
@ -49,6 +51,7 @@
CAP_BLOCK_SUSPEND 8 CAP_BLOCK_SUSPEND 8
CAP_DAC_READ_SEARCH 7 CAP_DAC_READ_SEARCH 7
CAP_AUDIT_READ 7 CAP_AUDIT_READ 7
CAP_PERFMON 7
# unused # unused
CAP_NET_BROADCAST 0 CAP_NET_BROADCAST 0