CVE-2017-11565
The CVE concerns the Debian Tor package (tor.init in tor_0.2.9.11-1~deb9u1) where the init script attempts to run aa-exec via the system pathname when AppArmor is installed, but makes an incorrect assumption that the pathname is invariant, allowing bypass of AppArmor protections. Affected compone...