diff --git a/patchinfo.20240904093109061200.90520734224245/_patchinfo b/patchinfo.20240904093109061200.90520734224245/_patchinfo new file mode 100644 index 0000000..56f5f51 --- /dev/null +++ b/patchinfo.20240904093109061200.90520734224245/_patchinfo @@ -0,0 +1,37 @@ + + + [SELinux] adjust policy for pam_wtmpdb + SELinux is preventing some services from 'read, write' accesses on icastats file + [SELinux] GDM avcs for wtmp.db-journal + SELinux is preventing firewalld from 'read, write' accesses on the file icastats_0 + VUL-0: CVE-2024-41012: kernel: filelock: Remove locks reliably when fcntl/close race is detected + [Build 9.15] SELinux: pam_wtmpdb module is not allowed to open wtmp database if called by /bin/login + cahu + important + security + Security update for selinux-policy + This update for selinux-policy fixes the following issues: + +Update to version 20230523+git25.ad22dd7f: + +* Backport wtmpdb label change to have the same wtmpdb label + as in SL Micro 6.1 (bsc#1229132) +* Add auth_rw_wtmpdb_login_records to domains using auth_manage_login_records +* Add auth_rw_wtmpdb_login_records to modules +* Allow xdm_t to read-write to wtmpdb (bsc#1225984) +* Introduce types for wtmpdb and rw interface +* Introduce wtmp_file_type attribute +* Revert "Add policy for wtmpdb (bsc#1210717)" + +Update to version 20230523+git18.f44daf8a: + +* Provide type for sysstat lock files (bsc#1228247) + +Update to version 20230523+git16.0849f54c: + +* allow firewalld access to /dev/random and write HW acceleration logs + (bsc#1215405, bsc#1227930) + +selinux-policy + +