FEDORA-2019-6a20cfef61

bugfix update in Fedora 29 for selinux-policy

Status: stable 8 months ago

Comments 16

This update has been submitted for testing by lvrabec.

Works for me.

karma: +1 critpath: +1 #1657489: +1

Works for me.

karma: +1 critpath: +1 #1657489: +1

This update has been pushed to testing.

Works great! LGTM! =)

karma: +1

Works here. No idea whether the permission denied errors on shutdown for dmsetup are related to selinux, but if they are, they are still there.

karma: +1 critpath: +1

Works here. No idea whether the permission denied errors on shutdown for dmsetup are related to selinux, but if they are, they are still there.

karma: +1 critpath: +1

Works here. No idea whether the permission denied errors on shutdown for dmsetup are related to selinux, but if they are, they are still there.

karma: +1 critpath: +1

works for me

karma: +1

No regressions found

karma: +1

This update has been submitted for batched by bodhi.

This update has been submitted for stable by lvrabec.

This update has been pushed to stable.

Generally works, but doesn't fix #1648978 .

#1648978: -1

Generally works, but doesn't fix #1648978 .

#1648978: -1

Generally works, but doesn't fix #1648978 .

karma: +1 critpath: +1 #1648978: -1

Add Comment & Feedback

Please login to add feedback.

Content Type
RPM
Status
stable
Test Gating
Submitted by
Update Type
bugfix
Update Severity
high
Karma
+6
stable threshold: 5
unstable threshold: -3
Autopush (karma)
Enabled
Autopush (time)
Disabled
Dates
submitted 8 months ago
in testing 8 months ago
in stable 8 months ago

Related Bugs 48

00 #1518807 range for ephemeral_port_t does not match net.ipv4.ip_local_port_range tunable
00 #1630675 SELinux is preventing dovecot from 'getattr' accesses on the file /proc/sys/fs/suid_dumpable.
00 #1644568 the arpwatch service triggers SELinux denials
00 #1645822 SELinux is preventing colord from 'map' accesses on the file /home/christian/.local/share/icc/edid-4daa39eed4132dd27967977091f97abe.icc.
00 #1646202 SELinux is preventing /usr/lib/systemd/systemd-timesyncd from 'read' accesses on the directory /run/dbus.
00 #1647162 systemd-run --system --pty bash -i denied by selinux
00 #1648698 SELinux is preventing dovecot from 'getattr' accesses on the file /proc/sys/fs/suid_dumpable.
-10 #1648978 SELinux is preventing plymouthd from 'getattr' accesses on the diretório /sys/firmware/efi/efivars.
00 #1649257 SELinux is preventing /usr/lib/systemd/systemd-timesyncd from using the 'nnp_transition' accesses on a process.
00 #1649665 SELinux is preventing /usr/lib/systemd/systemd-timesyncd from 'search' accesses on the directory /var/lib/systemd.
00 #1649666 SELinux is preventing /usr/lib/systemd/systemd-timesyncd from 'getattr' accesses on the lnk_file /var/lib/systemd/timesync.
00 #1649668 SELinux is preventing /usr/lib/systemd/systemd-timesyncd from 'read' accesses on the directory links.
00 #1650997 massive amounts of selinux denials for org.freedesktop.resolve1.ResolveHostname for pmie
00 #1651008 Docker start AVCs
00 #1651030 SELinux is preventing pmsignal from using the 'signal' accesses on a process.
00 #1651654 Allow NetworkManager to use bpf
00 #1652756 nsd fails at start
00 #1652813 systemd user service files have wrong context
00 #1652814 systemd user service files have wrong context
00 #1653003 SELinux conflicts /usr/sbin/dumpe2fs /usr/sbin/e2mmpstatus
00 #1653024 SELinux allow saslauthd to mmap it's own files
00 #1653149 SELinux is preventing plymouthd from getattr access on the directory /sys/firmware/efi/efivars.
00 #1655024 SELinux is preventing /usr/lib/systemd/systemd-timesyncd from 'write' accesses on the file /proc/self/fd/16.
00 #1655282 SELinux is preventing pmdalinux from using the 'ipc_owner' capabilities.
00 #1655307 SELinux is preventing boltd from 'getattr' accesses on the filesystem /var.
00 #1655323 SELinux is preventing tumblerd from 'write' accesses on the sock_file socket in Fedora 29
00 #1655335 SELinux is preventing (sd-openpt) from 'sys_chroot' accesses on the cap_userns labeled systemd_machined_t.
00 #1655349 SELinux is preventing certwatch from using the 'dac_override' capabilities.
00 #1655357 SELinux is preventing certwatch from 'write' accesses on the directory /sys/kernel/debug.
00 #1656422 SELinux is preventing sddm-helper from 'create' accesses on the file xsession-errors.
0+1 #1657489 SELinux is preventing root two-factor authentication in Cockpit
00 #1657621 SELinux is preventing ras-mc-ctl from 'map' accesses on the file /usr/bin/perl.
00 #1657622 SELinux is preventing ras-mc-ctl from 'execute' accesses on the file /usr/bin/perl.
00 #1658286 SELinux is preventing systemd from 'create' accesses on the unix_stream_socket labeled pulseaudio_t.
00 #1658975 SELinux is preventing pool from 'read' accesses on the Datei status.
00 #1661065 SELinux prevents OpenVPN client from setting DNS server upon activation
00 #1662432 SELinux is preventing find from 'getattr' accesses on the Verzeichnis /sys/kernel/config.
00 #1662441 SELinux is preventing find from 'getattr' accesses on the Verzeichnis /proc/irq.
00 #1662443 Strongswan & dns resolver
00 #1662612 SELinux is preventing systemd from 'prog_load' accesses on the bpf labeled virtd_lxc_t.
00 #1662613 SELinux is preventing systemd from map_read, map_write access on the bpf labeled virtd_lxc_t.
00 #1662614 SELinux is preventing systemd from 'map_create' accesses on the bpf labeled virtd_lxc_t.
00 #1662615 SELinux is preventing systemd from 'prog_run' accesses on the bpf labeled virtd_lxc_t.
00 #1662676 SELinux is preventing spamd from using the 'dac_override' capabilities.
00 #1662922 SELinux is preventing sensord from 'getattr' accesses on the file /sys/devices/platform/thinkpad_hwmon/hwmon/hwmon2/fan1_input.
00 #1662983 SELinux denies mount for "tracefs" to pmlogger
00 #1663062 SELinux is preventing tumblerd from 'write' accesses on the sock_file socket.
00 #1663579 SELinux is preventing hddtemp from 'read' accesses on the blk_file nvme0n1.

Automated Test Results