Candidate: CVE-2014-1424
PublicDate: 2014-11-24 15:59:00 UTC
References: 
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1424
Description:
 apparmor_parser in the apparmor package before 2.8.95~2430-0ubuntu5.1 in
 Ubuntu 14.04 allows attackers to bypass AppArmor policies via unspecified
 vectors, related to a "miscompilation flaw."
Ubuntu-Description: 
Notes: 
 mdeslaur> caused by incomplete backport in trusty
 tyhicks> Ptrace, mount, and possibly other rule types are affected
 tyhicks> Issue was specific to Ubuntu. The final version of the patch that was
          committed upstream was not vulnerable.
Bugs: 
 https://bugs.launchpad.net/ubuntu/+source/apparmor/+bug/1390592
Priority: medium
Discovered-by:
Assigned-to: tyhicks
CVSS: 

Patches_apparmor:
upstream_apparmor: not-affected
lucid_apparmor: not-affected
precise_apparmor: not-affected
trusty_apparmor: released (2.8.95~2430-0ubuntu5.1)
trusty/esm_apparmor: released (2.8.95~2430-0ubuntu5.1)
utopic_apparmor: not-affected
devel_apparmor: not-affected