[SELinux] adjust policy for pam_wtmpdb SELinux is preventing some services from 'read, write' accesses on icastats file [SELinux] GDM avcs for wtmp.db-journal SELinux is preventing firewalld from 'read, write' accesses on the file icastats_0 VUL-0: CVE-2024-41012: kernel: filelock: Remove locks reliably when fcntl/close race is detected [Build 9.15] SELinux: pam_wtmpdb module is not allowed to open wtmp database if called by /bin/login cahu important security

Security update for selinux-policy

This update for selinux-policy fixes the following issues: Update to version 20230523+git25.ad22dd7f: * Backport wtmpdb label change to have the same wtmpdb label as in SL Micro 6.1 (bsc#1229132) * Add auth_rw_wtmpdb_login_records to domains using auth_manage_login_records * Add auth_rw_wtmpdb_login_records to modules * Allow xdm_t to read-write to wtmpdb (bsc#1225984) * Introduce types for wtmpdb and rw interface * Introduce wtmp_file_type attribute * Revert "Add policy for wtmpdb (bsc#1210717)" Update to version 20230523+git18.f44daf8a: * Provide type for sysstat lock files (bsc#1228247) Update to version 20230523+git16.0849f54c: * allow firewalld access to /dev/random and write HW acceleration logs (bsc#1215405, bsc#1227930) selinux-policy