Comment 7 for bug 851986

I have landed a sanitized helper ubuntu abstraction upstream that should work for python and mmaping user owned files which is tested to work with evince and the new QRT environment filtering tests in test-apparmor.py. This is a workaround until proper environment filtering can be implemented in AppArmor which will not land in time for 12.04.

Unfortunately, these changes are pretty intrusive and I don't think we should SRU this into 11.10 or earlier. These users still benefit from the existing protections.