CVE-2017-6507

24.03.2017, 07:59

An issue was discovered in AppArmor before 2.12. Incorrect handling of unknown AppArmor profiles in AppArmor init scripts, upstart jobs, and/or systemd unit files allows an attacker to possibly have increased attack surfaces of processes that were intended to be confined by AppArmor. This is due to the common logic to handle 'restart' operations removing AppArmor profiles that aren't found in the typical filesystem locations, such as /etc/apparmor.d/. Userspace projects that manage their own AppArmor profiles in atypical directories, such as what's done by LXD and Docker, are affected by this flaw in the AppArmor init script logic.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	Primary	5.9 MEDIUM	NETWORK	HIGH	NONE	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

Base Score

CVSS 3.x

EPSS Score

Percentile: 56%

Affected Products (NVD)

Vendor	Product	Version
apparmor	apparmor	𝑥 ≤ 2.11
canonical	ubuntu_core	15.04
canonical	ubuntu_touch	15.04

𝑥

= Vulnerable software versions

Debian Releases

Debian Product

Codename

apparmor

bookworm	3.0.8-3 fixed
bullseye	2.13.6-10 fixed
jessie	no-dsa
sid	3.1.7-1 fixed
trixie	3.1.7-1 fixed
wheezy	no-dsa

Ubuntu Releases

Ubuntu Product

Codename

apparmor

precise	Fixed 2.7.102-0ubuntu3.11 released
trusty	Fixed 2.10.95-0ubuntu2.6~14.04.1 released
xenial	Fixed 2.10.95-0ubuntu2.6 released
yakkety	Fixed 2.10.95-4ubuntu5.3 released
zesty	Fixed 2.11.0-2ubuntu3 released

openSUSE / SLES Releases

openSUSE Product

Release

apache2-mod_apparmor

suse enterprise sap 12 SP1	2.8.2-54.1 fixed
suse enterprise sap 12 SP2	2.8.2-54.1 fixed
suse enterprise sap 12 SP5	2.8.2-51.18.3 fixed
suse enterprise server 12 SP1	2.8.2-54.1 fixed
suse enterprise server 12 SP2	2.8.2-54.1 fixed
suse enterprise server 12 SP3	2.8.2-49.21 fixed
suse enterprise server 12 SP4	2.8.2-49.21 fixed
suse enterprise server 12 SP5	2.8.2-51.18.3 fixed

apparmor-abstractions

suse enterprise desktop 15	2.12-5.9 fixed
suse enterprise desktop 15 SP1	2.12.2-7.17.1 fixed
suse enterprise desktop 15 SP2	2.13.4-1.4 fixed
suse enterprise desktop 15 SP3	2.13.6-1.31 fixed
suse enterprise desktop 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise desktop 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise desktop 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise desktop 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise sap 15	2.12-5.9 fixed
suse enterprise sap 15 SP1	2.12.2-7.17.1 fixed
suse enterprise sap 15 SP2	2.13.4-1.4 fixed
suse enterprise sap 15 SP3	2.13.6-1.31 fixed
suse enterprise sap 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise sap 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise sap 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise sap 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise server 15	2.12-5.9 fixed
suse enterprise server 15 SP1	2.12.2-7.17.1 fixed
suse enterprise server 15 SP2	2.13.4-1.4 fixed
suse enterprise server 15 SP3	2.13.6-1.31 fixed
suse enterprise server 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise server 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise server 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise server 15 SP7	3.1.7-150600.5.6.1 fixed

apparmor-docs

suse enterprise desktop 15	2.12-5.9 fixed
suse enterprise desktop 15 SP1	2.12.2-7.17.1 fixed
suse enterprise desktop 15 SP2	2.13.4-1.4 fixed
suse enterprise desktop 15 SP3	2.13.6-1.31 fixed
suse enterprise desktop 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise desktop 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise desktop 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise desktop 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise sap 12 SP1	2.8.2-54.1 fixed
suse enterprise sap 12 SP2	2.8.2-54.1 fixed
suse enterprise sap 12 SP5	2.8.2-51.18.3 fixed
suse enterprise sap 15	2.12-5.9 fixed
suse enterprise sap 15 SP1	2.12.2-7.17.1 fixed
suse enterprise sap 15 SP2	2.13.4-1.4 fixed
suse enterprise sap 15 SP3	2.13.6-1.31 fixed
suse enterprise sap 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise sap 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise sap 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise sap 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise server 12 SP1	2.8.2-54.1 fixed
suse enterprise server 12 SP2	2.8.2-54.1 fixed
suse enterprise server 12 SP3	2.8.2-49.21 fixed
suse enterprise server 12 SP4	2.8.2-49.21 fixed
suse enterprise server 12 SP5	2.8.2-51.18.3 fixed
suse enterprise server 15	2.12-5.9 fixed
suse enterprise server 15 SP1	2.12.2-7.17.1 fixed
suse enterprise server 15 SP2	2.13.4-1.4 fixed
suse enterprise server 15 SP3	2.13.6-1.31 fixed
suse enterprise server 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise server 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise server 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise server 15 SP7	3.1.7-150600.5.6.1 fixed

apparmor-parser

suse enterprise desktop 15	2.12-5.9 fixed
suse enterprise desktop 15 SP1	2.12.2-7.17.1 fixed
suse enterprise desktop 15 SP2	2.13.4-1.4 fixed
suse enterprise desktop 15 SP3	2.13.6-1.31 fixed
suse enterprise desktop 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise desktop 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise desktop 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise desktop 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise sap 12 SP1	2.8.2-54.1 fixed
suse enterprise sap 12 SP2	2.8.2-54.1 fixed
suse enterprise sap 12 SP5	2.8.2-51.18.3 fixed
suse enterprise sap 15	2.12-5.9 fixed
suse enterprise sap 15 SP1	2.12.2-7.17.1 fixed
suse enterprise sap 15 SP2	2.13.4-1.4 fixed
suse enterprise sap 15 SP3	2.13.6-1.31 fixed
suse enterprise sap 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise sap 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise sap 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise sap 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise server 12 SP1	2.8.2-54.1 fixed
suse enterprise server 12 SP2	2.8.2-54.1 fixed
suse enterprise server 12 SP3	2.8.2-49.21 fixed
suse enterprise server 12 SP4	2.8.2-49.21 fixed
suse enterprise server 12 SP5	2.8.2-51.18.3 fixed
suse enterprise server 15	2.12-5.9 fixed
suse enterprise server 15 SP1	2.12.2-7.17.1 fixed
suse enterprise server 15 SP2	2.13.4-1.4 fixed
suse enterprise server 15 SP3	2.13.6-1.31 fixed
suse enterprise server 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise server 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise server 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise server 15 SP7	3.1.7-150600.5.6.1 fixed

apparmor-parser-lang

suse enterprise desktop 15	2.12-5.9 fixed
suse enterprise desktop 15 SP1	2.12.2-7.17.1 fixed
suse enterprise desktop 15 SP2	2.13.4-1.4 fixed
suse enterprise desktop 15 SP3	2.13.6-1.31 fixed
suse enterprise desktop 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise desktop 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise desktop 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise desktop 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise sap 15	2.12-5.9 fixed
suse enterprise sap 15 SP1	2.12.2-7.17.1 fixed
suse enterprise sap 15 SP2	2.13.4-1.4 fixed
suse enterprise sap 15 SP3	2.13.6-1.31 fixed
suse enterprise sap 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise sap 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise sap 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise sap 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise server 15	2.12-5.9 fixed
suse enterprise server 15 SP1	2.12.2-7.17.1 fixed
suse enterprise server 15 SP2	2.13.4-1.4 fixed
suse enterprise server 15 SP3	2.13.6-1.31 fixed
suse enterprise server 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise server 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise server 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise server 15 SP7	3.1.7-150600.5.6.1 fixed

apparmor-profiles

suse enterprise desktop 15	2.12-5.9 fixed
suse enterprise desktop 15 SP1	2.12.2-7.17.1 fixed
suse enterprise desktop 15 SP2	2.13.4-1.4 fixed
suse enterprise desktop 15 SP3	2.13.6-1.31 fixed
suse enterprise desktop 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise desktop 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise desktop 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise desktop 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise sap 12 SP1	2.8.2-54.1 fixed
suse enterprise sap 12 SP2	2.8.2-54.1 fixed
suse enterprise sap 12 SP5	2.8.2-51.18.3 fixed
suse enterprise sap 15	2.12-5.9 fixed
suse enterprise sap 15 SP1	2.12.2-7.17.1 fixed
suse enterprise sap 15 SP2	2.13.4-1.4 fixed
suse enterprise sap 15 SP3	2.13.6-1.31 fixed
suse enterprise sap 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise sap 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise sap 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise sap 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise server 12 SP1	2.8.2-54.1 fixed
suse enterprise server 12 SP2	2.8.2-54.1 fixed
suse enterprise server 12 SP3	2.8.2-49.21 fixed
suse enterprise server 12 SP4	2.8.2-49.21 fixed
suse enterprise server 12 SP5	2.8.2-51.18.3 fixed
suse enterprise server 15	2.12-5.9 fixed
suse enterprise server 15 SP1	2.12.2-7.17.1 fixed
suse enterprise server 15 SP2	2.13.4-1.4 fixed
suse enterprise server 15 SP3	2.13.6-1.31 fixed
suse enterprise server 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise server 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise server 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise server 15 SP7	3.1.7-150600.5.6.1 fixed

apparmor-utils

suse enterprise desktop 15	2.12-5.9 fixed
suse enterprise desktop 15 SP1	2.12.2-7.17.1 fixed
suse enterprise desktop 15 SP2	2.13.4-1.4 fixed
suse enterprise desktop 15 SP3	2.13.6-1.31 fixed
suse enterprise desktop 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise desktop 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise desktop 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise desktop 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise sap 12 SP1	2.8.2-54.1 fixed
suse enterprise sap 12 SP2	2.8.2-54.1 fixed
suse enterprise sap 12 SP5	2.8.2-51.18.3 fixed
suse enterprise sap 15	2.12-5.9 fixed
suse enterprise sap 15 SP1	2.12.2-7.17.1 fixed
suse enterprise sap 15 SP2	2.13.4-1.4 fixed
suse enterprise sap 15 SP3	2.13.6-1.31 fixed
suse enterprise sap 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise sap 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise sap 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise sap 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise server 12 SP1	2.8.2-54.1 fixed
suse enterprise server 12 SP2	2.8.2-54.1 fixed
suse enterprise server 12 SP3	2.8.2-49.21 fixed
suse enterprise server 12 SP4	2.8.2-49.21 fixed
suse enterprise server 12 SP5	2.8.2-51.18.3 fixed
suse enterprise server 15	2.12-5.9 fixed
suse enterprise server 15 SP1	2.12.2-7.17.1 fixed
suse enterprise server 15 SP2	2.13.4-1.4 fixed
suse enterprise server 15 SP3	2.13.6-1.31 fixed
suse enterprise server 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise server 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise server 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise server 15 SP7	3.1.7-150600.5.6.1 fixed

apparmor-utils-lang

suse enterprise desktop 15	2.12-5.9 fixed
suse enterprise desktop 15 SP1	2.12.2-7.17.1 fixed
suse enterprise desktop 15 SP2	2.13.4-1.4 fixed
suse enterprise desktop 15 SP3	2.13.6-1.31 fixed
suse enterprise desktop 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise desktop 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise desktop 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise desktop 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise sap 15	2.12-5.9 fixed
suse enterprise sap 15 SP1	2.12.2-7.17.1 fixed
suse enterprise sap 15 SP2	2.13.4-1.4 fixed
suse enterprise sap 15 SP3	2.13.6-1.31 fixed
suse enterprise sap 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise sap 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise sap 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise sap 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise server 15	2.12-5.9 fixed
suse enterprise server 15 SP1	2.12.2-7.17.1 fixed
suse enterprise server 15 SP2	2.13.4-1.4 fixed
suse enterprise server 15 SP3	2.13.6-1.31 fixed
suse enterprise server 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise server 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise server 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise server 15 SP7	3.1.7-150600.5.6.1 fixed

libapparmor-devel

suse enterprise desktop 15 SP4	3.0.4-150400.3.3 fixed
suse enterprise desktop 15 SP5	3.0.4-150500.9.1 fixed
suse enterprise desktop 15 SP6	3.1.7-150600.3.1 fixed
suse enterprise desktop 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise sap 15 SP4	3.0.4-150400.3.3 fixed
suse enterprise sap 15 SP5	3.0.4-150500.9.1 fixed
suse enterprise sap 15 SP6	3.1.7-150600.3.1 fixed
suse enterprise sap 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise server 15 SP4	3.0.4-150400.3.3 fixed
suse enterprise server 15 SP5	3.0.4-150500.9.1 fixed
suse enterprise server 15 SP6	3.1.7-150600.3.1 fixed
suse enterprise server 15 SP7	3.1.7-150600.5.6.1 fixed

libapparmor1

suse enterprise desktop 15 SP4	3.0.4-150400.3.3 fixed
suse enterprise desktop 15 SP5	3.0.4-150500.9.1 fixed
suse enterprise desktop 15 SP6	3.1.7-150600.3.1 fixed
suse enterprise desktop 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise sap 12 SP1	2.8.2-54.1 fixed
suse enterprise sap 12 SP2	2.8.2-54.1 fixed
suse enterprise sap 12 SP5	2.8.2-51.18.3 fixed
suse enterprise sap 15 SP4	3.0.4-150400.3.3 fixed
suse enterprise sap 15 SP5	3.0.4-150500.9.1 fixed
suse enterprise sap 15 SP6	3.1.7-150600.3.1 fixed
suse enterprise sap 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise server 12 SP1	2.8.2-54.1 fixed
suse enterprise server 12 SP2	2.8.2-54.1 fixed
suse enterprise server 12 SP3	2.8.2-49.21 fixed
suse enterprise server 12 SP4	2.8.2-49.21 fixed
suse enterprise server 12 SP5	2.8.2-51.18.3 fixed
suse enterprise server 15 SP4	3.0.4-150400.3.3 fixed
suse enterprise server 15 SP5	3.0.4-150500.9.1 fixed
suse enterprise server 15 SP6	3.1.7-150600.3.1 fixed
suse enterprise server 15 SP7	3.1.7-150600.5.6.1 fixed

libapparmor1-32bit

suse enterprise desktop 15 SP4	3.0.4-150400.3.3 fixed
suse enterprise desktop 15 SP5	3.0.4-150500.9.1 fixed
suse enterprise desktop 15 SP6	3.1.7-150600.3.1 fixed
suse enterprise desktop 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise sap 12 SP1	2.8.2-54.1 fixed
suse enterprise sap 12 SP2	2.8.2-54.1 fixed
suse enterprise sap 12 SP5	2.8.2-51.18.3 fixed
suse enterprise sap 15 SP4	3.0.4-150400.3.3 fixed
suse enterprise sap 15 SP5	3.0.4-150500.9.1 fixed
suse enterprise sap 15 SP6	3.1.7-150600.3.1 fixed
suse enterprise sap 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise server 12 SP1	2.8.2-54.1 fixed
suse enterprise server 12 SP2	2.8.2-54.1 fixed
suse enterprise server 12 SP3	2.8.2-49.21 fixed
suse enterprise server 12 SP4	2.8.2-49.21 fixed
suse enterprise server 12 SP5	2.8.2-51.18.3 fixed
suse enterprise server 15 SP4	3.0.4-150400.3.3 fixed
suse enterprise server 15 SP5	3.0.4-150500.9.1 fixed
suse enterprise server 15 SP6	3.1.7-150600.3.1 fixed
suse enterprise server 15 SP7	3.1.7-150600.5.6.1 fixed

pam_apparmor

suse enterprise desktop 15	2.12-5.9 fixed
suse enterprise desktop 15 SP1	2.12.2-7.17.1 fixed
suse enterprise desktop 15 SP2	2.13.4-1.4 fixed
suse enterprise desktop 15 SP3	2.13.6-1.31 fixed
suse enterprise desktop 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise desktop 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise desktop 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise desktop 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise sap 12 SP1	2.8.2-54.1 fixed
suse enterprise sap 12 SP2	2.8.2-54.1 fixed
suse enterprise sap 12 SP5	2.8.2-51.18.3 fixed
suse enterprise sap 15	2.12-5.9 fixed
suse enterprise sap 15 SP1	2.12.2-7.17.1 fixed
suse enterprise sap 15 SP2	2.13.4-1.4 fixed
suse enterprise sap 15 SP3	2.13.6-1.31 fixed
suse enterprise sap 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise sap 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise sap 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise sap 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise server 12 SP1	2.8.2-54.1 fixed
suse enterprise server 12 SP2	2.8.2-54.1 fixed
suse enterprise server 12 SP3	2.8.2-49.21 fixed
suse enterprise server 12 SP4	2.8.2-49.21 fixed
suse enterprise server 12 SP5	2.8.2-51.18.3 fixed
suse enterprise server 15	2.12-5.9 fixed
suse enterprise server 15 SP1	2.12.2-7.17.1 fixed
suse enterprise server 15 SP2	2.13.4-1.4 fixed
suse enterprise server 15 SP3	2.13.6-1.31 fixed
suse enterprise server 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise server 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise server 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise server 15 SP7	3.1.7-150600.5.6.1 fixed

pam_apparmor-32bit

suse enterprise desktop 15	2.12-5.9 fixed
suse enterprise desktop 15 SP1	2.12.2-7.17.1 fixed
suse enterprise desktop 15 SP2	2.13.4-1.4 fixed
suse enterprise desktop 15 SP3	2.13.6-1.31 fixed
suse enterprise desktop 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise desktop 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise desktop 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise desktop 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise sap 12 SP1	2.8.2-54.1 fixed
suse enterprise sap 12 SP2	2.8.2-54.1 fixed
suse enterprise sap 12 SP5	2.8.2-51.18.3 fixed
suse enterprise sap 15	2.12-5.9 fixed
suse enterprise sap 15 SP1	2.12.2-7.17.1 fixed
suse enterprise sap 15 SP2	2.13.4-1.4 fixed
suse enterprise sap 15 SP3	2.13.6-1.31 fixed
suse enterprise sap 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise sap 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise sap 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise sap 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise server 12 SP1	2.8.2-54.1 fixed
suse enterprise server 12 SP2	2.8.2-54.1 fixed
suse enterprise server 12 SP3	2.8.2-49.21 fixed
suse enterprise server 12 SP4	2.8.2-49.21 fixed
suse enterprise server 12 SP5	2.8.2-51.18.3 fixed
suse enterprise server 15	2.12-5.9 fixed
suse enterprise server 15 SP1	2.12.2-7.17.1 fixed
suse enterprise server 15 SP2	2.13.4-1.4 fixed
suse enterprise server 15 SP3	2.13.6-1.31 fixed
suse enterprise server 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise server 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise server 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise server 15 SP7	3.1.7-150600.5.6.1 fixed

perl-apparmor

suse enterprise desktop 15	2.12-5.9 fixed
suse enterprise desktop 15 SP1	2.12.2-7.17.1 fixed
suse enterprise desktop 15 SP2	2.13.4-1.4 fixed
suse enterprise desktop 15 SP3	2.13.6-1.31 fixed
suse enterprise sap 12 SP1	2.8.2-54.1 fixed
suse enterprise sap 12 SP2	2.8.2-54.1 fixed
suse enterprise sap 12 SP5	2.8.2-51.18.3 fixed
suse enterprise sap 15	2.12-5.9 fixed
suse enterprise sap 15 SP1	2.12.2-7.17.1 fixed
suse enterprise sap 15 SP2	2.13.4-1.4 fixed
suse enterprise sap 15 SP3	2.13.6-1.31 fixed
suse enterprise server 12 SP1	2.8.2-54.1 fixed
suse enterprise server 12 SP2	2.8.2-54.1 fixed
suse enterprise server 12 SP3	2.8.2-49.21 fixed
suse enterprise server 12 SP4	2.8.2-49.21 fixed
suse enterprise server 12 SP5	2.8.2-51.18.3 fixed
suse enterprise server 15	2.12-5.9 fixed
suse enterprise server 15 SP1	2.12.2-7.17.1 fixed
suse enterprise server 15 SP2	2.13.4-1.4 fixed
suse enterprise server 15 SP3	2.13.6-1.31 fixed

python3-apparmor

suse enterprise desktop 15	2.12-5.9 fixed
suse enterprise desktop 15 SP1	2.12.2-7.17.1 fixed
suse enterprise desktop 15 SP2	2.13.4-1.4 fixed
suse enterprise desktop 15 SP3	2.13.6-1.31 fixed
suse enterprise desktop 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise desktop 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise desktop 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise desktop 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise sap 15	2.12-5.9 fixed
suse enterprise sap 15 SP1	2.12.2-7.17.1 fixed
suse enterprise sap 15 SP2	2.13.4-1.4 fixed
suse enterprise sap 15 SP3	2.13.6-1.31 fixed
suse enterprise sap 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise sap 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise sap 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise sap 15 SP7	3.1.7-150600.5.6.1 fixed
suse enterprise server 15	2.12-5.9 fixed
suse enterprise server 15 SP1	2.12.2-7.17.1 fixed
suse enterprise server 15 SP2	2.13.4-1.4 fixed
suse enterprise server 15 SP3	2.13.6-1.31 fixed
suse enterprise server 15 SP4	3.0.4-150400.3.4 fixed
suse enterprise server 15 SP5	3.0.4-150500.9.3 fixed
suse enterprise server 15 SP6	3.1.7-150600.3.4 fixed
suse enterprise server 15 SP7	3.1.7-150600.5.6.1 fixed

Common Weakness Enumeration

CWE-269 - Improper Privilege Management
The software does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.

References

http://bazaar.launchpad.net/~apparmor-dev/apparmor/master/revision/3647

http://bazaar.launchpad.net/~apparmor-dev/apparmor/master/revision/3648

http://www.securityfocus.com/bid/97223

https://bugs.launchpad.net/apparmor/+bug/1668892

https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-6507.html

http://bazaar.launchpad.net/~apparmor-dev/apparmor/master/revision/3647

http://bazaar.launchpad.net/~apparmor-dev/apparmor/master/revision/3648

http://www.securityfocus.com/bid/97223

https://bugs.launchpad.net/apparmor/+bug/1668892

https://people.canonical.com/~ubuntu-security/cve/2017/CVE-2017-6507.html