What Are You Looking For?

Sign Up
--------------------------------------------------------------------------------Fedora Update Notification
FEDORA-2020-b2d6cffc6f
2020-09-12 16:36:51.588528
--------------------------------------------------------------------------------Name        : selinux-policy
Product     : Fedora 31
Version     : 3.14.4
Release     : 54.fc31
URL         : https://github.com/fedora-selinux/selinux-policy
Summary     : SELinux policy configuration
Description :
SELinux Base package for SELinux Reference Policy - modular.
Based off of reference policy: Checked out revision  2.20091117

--------------------------------------------------------------------------------Update Information:

New F31 selinux-policy build
--------------------------------------------------------------------------------ChangeLog:

* Thu Aug 27 2020 Zdenek Pytela  - 3.14.4-54
- Allow munin domain transition with NoNewPrivileges
- Allow syslogd_t domain to read/write tmpfs systemd-bootchart files
- Allow unconfined_t to node_bind icmp_sockets in node_t domain
- Change transitions for ~/.config/Yubico
- Add file context for ~/.config/Yubico
- Create macro corenet_icmp_bind_generic_node()
- Allow traceroute_t and ping_t to bind generic nodes.
- Allow systemd set efivarfs files attributes
- Split the arping path regexp to 2 lines to prevent from relabeling
--------------------------------------------------------------------------------References:

  [ 1 ] Bug #1775780 - SELinux is preventing systemd from 'setattr' accesses on the file LoaderSystemToken-4a67b082-0a4c-41cf-b6c7-440b29bb8c4f.
        https://bugzilla.redhat.com/show_bug.cgi?id=1775780
  [ 2 ] Bug #1857381 - munin is generating an avc denial when trying to access /usr/bin/munin-cron
        https://bugzilla.redhat.com/show_bug.cgi?id=1857381
--------------------------------------------------------------------------------This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade --advisory FEDORA-2020-b2d6cffc6f' at the command
line. For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------_______________________________________________
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

Fedora 31: selinux-policy 2020-b2d6cffc6f

September 12, 2020
New F31 selinux-policy build

Summary

SELinux Base package for SELinux Reference Policy - modular.

Based off of reference policy: Checked out revision 2.20091117

New F31 selinux-policy build

* Thu Aug 27 2020 Zdenek Pytela - 3.14.4-54

- Allow munin domain transition with NoNewPrivileges

- Allow syslogd_t domain to read/write tmpfs systemd-bootchart files

- Allow unconfined_t to node_bind icmp_sockets in node_t domain

- Change transitions for ~/.config/Yubico

- Add file context for ~/.config/Yubico

- Create macro corenet_icmp_bind_generic_node()

- Allow traceroute_t and ping_t to bind generic nodes.

- Allow systemd set efivarfs files attributes

- Split the arping path regexp to 2 lines to prevent from relabeling

[ 1 ] Bug #1775780 - SELinux is preventing systemd from 'setattr' accesses on the file LoaderSystemToken-4a67b082-0a4c-41cf-b6c7-440b29bb8c4f.

https://bugzilla.redhat.com/show_bug.cgi?id=1775780

[ 2 ] Bug #1857381 - munin is generating an avc denial when trying to access /usr/bin/munin-cron

https://bugzilla.redhat.com/show_bug.cgi?id=1857381

su -c 'dnf upgrade --advisory FEDORA-2020-b2d6cffc6f' at the command

line. For more information, refer to the dnf documentation available at

http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/keys

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/

List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

FEDORA-2020-b2d6cffc6f 2020-09-12 16:36:51.588528 Product : Fedora 31 Version : 3.14.4 Release : 54.fc31 URL : https://github.com/fedora-selinux/selinux-policy Summary : SELinux policy configuration Description : SELinux Base package for SELinux Reference Policy - modular. Based off of reference policy: Checked out revision 2.20091117 New F31 selinux-policy build * Thu Aug 27 2020 Zdenek Pytela - 3.14.4-54 - Allow munin domain transition with NoNewPrivileges - Allow syslogd_t domain to read/write tmpfs systemd-bootchart files - Allow unconfined_t to node_bind icmp_sockets in node_t domain - Change transitions for ~/.config/Yubico - Add file context for ~/.config/Yubico - Create macro corenet_icmp_bind_generic_node() - Allow traceroute_t and ping_t to bind generic nodes. - Allow systemd set efivarfs files attributes - Split the arping path regexp to 2 lines to prevent from relabeling [ 1 ] Bug #1775780 - SELinux is preventing systemd from 'setattr' accesses on the file LoaderSystemToken-4a67b082-0a4c-41cf-b6c7-440b29bb8c4f. https://bugzilla.redhat.com/show_bug.cgi?id=1775780 [ 2 ] Bug #1857381 - munin is generating an avc denial when trying to access /usr/bin/munin-cron https://bugzilla.redhat.com/show_bug.cgi?id=1857381 su -c 'dnf upgrade --advisory FEDORA-2020-b2d6cffc6f' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org

Change Log

References

Update Instructions

Severity
Product : Fedora 31
Version : 3.14.4
Release : 54.fc31
URL : https://github.com/fedora-selinux/selinux-policy
Summary : SELinux policy configuration

Related News

MidnightBSD 3.0.1 Released With Security Fixes, rc.d Scripts Cleanup

Apr 7, 2023

New Patches Aim To Tackle Linux x86_64 PIE Support

May 10, 2023

systemd 253: You're Looking at the Future of Enterprise Linux Boot Processes

Feb 21, 2023

Proposed Linux Patch Would Allow Disabling CPU Security Mitigations At Build-Time

Feb 13, 2023

News

Advisories

HOWTOs

Features

Password Guessing as an Attack Vector
Using Open Source to Ensure Compliance & Data Integrity through Data Governance
Critical Linux Kernel Bugs Lead to DoS, Privilege Escalation - Patch Now!
Unlocking the Future of Authentication: Passkeys vs. Passwords
Empowering MSPs with Straightforward Linux Device Management

About Us

Powered By

Footer Logo