[Pkg-gnome-extras-maintainers] Bug#1127935: evince: AppArmor profile doesn't allow running bwrap
intrigeri
intrigeri at debian.org
Wed Mar 18 16:25:59 GMT 2026
Hi,
intrigeri (2026-02-24):
> Simon McVittie (2026-02-20):
>> Any package that has a non-trivial AppArmor profile and uses gdk-pixbuf,
>> such as papers, will need something similar. Perhaps the AppArmor team
>> could help to generalize this into something that isn't a sandbox
>> escape, and doesn't require something this extensive in every affected
>> package?
>
> If we determine it's worth the effort (#1128767), yes, I'm happy to
> help (which could include trying to pull more skilled people and
> coordinating the work).
>
> A good next step could be to check if we have affected packages whose
> policy is useful enough to be worth the effort. I'm adding this to my
> list. Either I find time for it tomorrow or it'll have to wait until
> mid-March, so help is welcome.
Higher work and non-work stuff has kept getting in the way, so I did
not make much progress here; and now I'm going AFK for some time, so
I won't be working on this before early April.
Cheers,
--
intrigeri
More information about the pkg-gnome-extras-maintainers
mailing list