FEDORA-2017-39e6a2f7e7

bugfix update in Fedora 26 for selinux-policy

Status: stable 2 years ago

How to install

sudo dnf upgrade --advisory=FEDORA-2017-39e6a2f7e7

Comments 16

This update has been submitted for testing by lvrabec.

This update has been pushed to testing.

works for me in a VM

karma: +1

lvrabec edited this update.

lvrabec edited this update.

New build(s):

  • selinux-policy-3.13.1-260.17.fc26

Removed build(s):

  • selinux-policy-3.13.1-260.16.fc26

Karma has been reset.

This update has been submitted for testing by lvrabec.

This update has been pushed to testing.

No regressions noted

karma: +1

I see failures that were introduced with this update for the automated atomic host tests:

Nov 25 18:05:56 atomic-host-jobs-24-55e2217d.localdomain audit[727]: USER_AVC pid=727 uid=81 auid=4294967295 ses=4294967295 subj=system_u:system_r:system_dbusd_t:s0-s0:c0.c1023 msg='avc:  denied  { send_msg } for msgtype=method_call interface=org.freedesktop.systemd1.Manager member=LookupDynamicUserByName dest=org.freedesktop.systemd1 spid=1105 tpid=1 scontext=system_u:system_r:sshd_t:s0-s0:c0.c1023 tcontext=system_u:system_r:init_t:s0 tclass=dbus
Nov 25 18:06:00 atomic-host-jobs-24-55e2217d.localdomain audit[727]: USER_AVC pid=727 uid=81 auid=4294967295 ses=4294967295 subj=system_u:system_r:system_dbusd_t:s0-s0:c0.c1023 msg='avc:  denied  { send_msg } for msgtype=method_call interface=org.freedesktop.systemd1.Manager member=LookupDynamicUserByName dest=org.freedesktop.systemd1 spid=1107 tpid=1 scontext=system_u:system_r:sshd_t:s0-s0:c0.c1023 tcontext=system_u:system_r:init_t:s0 tclass=dbus
karma: -1

Bodhi is disabling automatic push to stable due to negative karma. The maintainer may push manually if they determine that the issue is not severe.

Works

karma: +1

No issues noted in a GNOME VM.

karma: +1

This update has been submitted for batched by lvrabec.

This update has been submitted for stable by bodhi.

This update has been pushed to stable.

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
bugfix
Update Severity
high
Karma
+2
stable threshold: 4
unstable threshold: -3
Autopush (karma)
Disabled
Autopush (time)
Disabled
Dates
submitted 2 years ago
in testing 2 years ago
in stable 2 years ago
modified 2 years ago

Related Bugs 15

0+1 #1414366 avc: denied { search } for pid=3096 comm="spamassassin" name=".maildir" dev="dm-13" ino=13107213 scontext=system_u:system_r:spamc_t:s0 tcontext=unconfined_u:object_r:mail_home_rw_t:s0 tclass=dir permissive=0
00 #1417584 SELinux is preventing udev-add-printe from using the 'execmem' accesses on a process.
00 #1444546 SELinux is preventing php-fpm from 'execute' accesses on the file 2F616E6F6E5F6875676570616765202864656C6574656429.
00 #1474389 SELinux is preventing tlp from 'write' accesses on the file lock_tlp.
00 #1479712
00 #1487814 SELinux is preventing chmod from 'setattr' accesses on the directory zapfding.
00 #1507191 SELinux is preventing gssproxy from 'read' accesses on the file unix.
00 #1508712 SELinux is preventing cat from 'getattr' accesses on the file /proc/sys/vm/dirty_bytes.
00 #1508714 Missing selinux file context for /usr/sbin/sln
00 #1512367 SELinux is preventing logger from 'read' accesses on the lnk_file log.
00 #1512476 SELinux is preventing sendmail from 'write' accesses on the sock_file system_bus_socket.
00 #1512500 SELinux is preventing aide from 'write' accesses on the sock_file /var/lib/sss/pipes/nss.
00 #1513518 SELinux is preventing redis-server from 'write' accesses on the directory /tmp.
00 #1514350 SELinux is preventing sh from 'execute' accesses on the file /usr/lib/locale/locale-archive.
00 #1515095 SELinux is preventing logger from 'read' accesses on the lnk_file log.

Automated Test Results