37 lines
1.7 KiB
Plaintext
37 lines
1.7 KiB
Plaintext
<patchinfo incident="43">
|
|
<!-- generated from request(s) 343814 -->
|
|
<issue tracker="bnc" id="1210717">[SELinux] adjust policy for pam_wtmpdb</issue>
|
|
<issue tracker="bnc" id="1215405">SELinux is preventing some services from 'read, write' accesses on icastats file</issue>
|
|
<issue tracker="bnc" id="1225984">[SELinux] GDM avcs for wtmp.db-journal</issue>
|
|
<issue tracker="bnc" id="1227930">SELinux is preventing firewalld from 'read, write' accesses on the file icastats_0</issue>
|
|
<issue tracker="bnc" id="1228247">VUL-0: CVE-2024-41012: kernel: filelock: Remove locks reliably when fcntl/close race is detected</issue>
|
|
<issue tracker="bnc" id="1229132">[Build 9.15] SELinux: pam_wtmpdb module is not allowed to open wtmp database if called by /bin/login</issue>
|
|
<packager>cahu</packager>
|
|
<rating>important</rating>
|
|
<category>security</category>
|
|
<summary>Security update for selinux-policy</summary>
|
|
<description>This update for selinux-policy fixes the following issues:
|
|
|
|
Update to version 20230523+git25.ad22dd7f:
|
|
|
|
* Backport wtmpdb label change to have the same wtmpdb label
|
|
as in SL Micro 6.1 (bsc#1229132)
|
|
* Add auth_rw_wtmpdb_login_records to domains using auth_manage_login_records
|
|
* Add auth_rw_wtmpdb_login_records to modules
|
|
* Allow xdm_t to read-write to wtmpdb (bsc#1225984)
|
|
* Introduce types for wtmpdb and rw interface
|
|
* Introduce wtmp_file_type attribute
|
|
* Revert "Add policy for wtmpdb (bsc#1210717)"
|
|
|
|
Update to version 20230523+git18.f44daf8a:
|
|
|
|
* Provide type for sysstat lock files (bsc#1228247)
|
|
|
|
Update to version 20230523+git16.0849f54c:
|
|
|
|
* allow firewalld access to /dev/random and write HW acceleration logs
|
|
(bsc#1215405, bsc#1227930)
|
|
</description>
|
|
<package>selinux-policy</package>
|
|
<seperate_build_arch/>
|
|
</patchinfo> |