FEDORA-2021-ea3fa543f0 — bugfix update for selinux-policy

stable

selinux-policy-35.6-1.fc35

FEDORA-2021-ea3fa543f0 created by zpytela 3 years ago for Fedora 35

New F35 selinux-policy build

How to install

Updates may require up to 24 hours to propagate to mirrors. If the following command doesn't work, please retry later:

sudo dnf upgrade --refresh --advisory=FEDORA-2021-ea3fa543f0

This update has been submitted for testing by zpytela.

3 years ago

This update's test gating status has been changed to 'waiting'.

3 years ago

This update's test gating status has been changed to 'passed'.

3 years ago

This update has been pushed to testing.

3 years ago

bojan commented & provided feedback 3 years ago

karma

Works.

filiperosset commented & provided feedback 3 years ago

karma

no regressions noted

This update can be pushed to stable now if the maintainer wishes

3 years ago

geraldosimiao commented & provided feedback 3 years ago

karma

its fine

gotmax23 commented & provided feedback 3 years ago

From the changelog:

Allow PID 1 and dbus-broker IPC with a systemd user session

This is supposed to fix #2023332, but the systemd rpm scriptlet is still failing. Am I missing something here?

  Running scriptlet: syncthing-1.18.4-1.fc35.x86_64                                                                                                                                                                                     2/2 
Failed to start transient service unit: Connection reset by peer
Failed to set unit properties on syncthing.service: Transport endpoint is not connected

Additionally, I am getting the following errors in the audit log:

$ sudo ausearch -m AVC,USER_AVC,SELINUX_ERR,USER_SELINUX_ERR -ts recent
time->Tue Nov 30 23:05:02 2021
type=AVC msg=audit(1638335102.617:397): avc:  denied  { mmap_zero } for  pid=1506 comm="check" scontext=system_u:system_r:spc_t:s0 tcontext=system_u:system_r:spc_t:s0 tclass=memprotect permissive=0