Fedora 31: selinux-policy 2020-b2d6cffc6f
Summary
SELinux Base package for SELinux Reference Policy - modular.
Based off of reference policy: Checked out revision 2.20091117
New F31 selinux-policy build
* Thu Aug 27 2020 Zdenek Pytela
- Allow munin domain transition with NoNewPrivileges
- Allow syslogd_t domain to read/write tmpfs systemd-bootchart files
- Allow unconfined_t to node_bind icmp_sockets in node_t domain
- Change transitions for ~/.config/Yubico
- Add file context for ~/.config/Yubico
- Create macro corenet_icmp_bind_generic_node()
- Allow traceroute_t and ping_t to bind generic nodes.
- Allow systemd set efivarfs files attributes
- Split the arping path regexp to 2 lines to prevent from relabeling
[ 1 ] Bug #1775780 - SELinux is preventing systemd from 'setattr' accesses on the file LoaderSystemToken-4a67b082-0a4c-41cf-b6c7-440b29bb8c4f.
https://bugzilla.redhat.com/show_bug.cgi?id=1775780
[ 2 ] Bug #1857381 - munin is generating an avc denial when trying to access /usr/bin/munin-cron
https://bugzilla.redhat.com/show_bug.cgi?id=1857381
su -c 'dnf upgrade --advisory FEDORA-2020-b2d6cffc6f' at the command
line. For more information, refer to the dnf documentation available at
https://dnf.readthedocs.io/en/latest/command_ref.html
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/security/
package-announce mailing list -- package-announce@lists.fedoraproject.org
To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org
Fedora Code of Conduct: List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
FEDORA-2020-b2d6cffc6f 2020-09-12 16:36:51.588528 Product : Fedora 31 Version : 3.14.4 Release : 54.fc31 URL : https://github.com/fedora-selinux/selinux-policy Summary : SELinux policy configuration Description : SELinux Base package for SELinux Reference Policy - modular. Based off of reference policy: Checked out revision 2.20091117 New F31 selinux-policy build * Thu Aug 27 2020 Zdenek Pytela - 3.14.4-54 - Allow munin domain transition with NoNewPrivileges - Allow syslogd_t domain to read/write tmpfs systemd-bootchart files - Allow unconfined_t to node_bind icmp_sockets in node_t domain - Change transitions for ~/.config/Yubico - Add file context for ~/.config/Yubico - Create macro corenet_icmp_bind_generic_node() - Allow traceroute_t and ping_t to bind generic nodes. - Allow systemd set efivarfs files attributes - Split the arping path regexp to 2 lines to prevent from relabeling [ 1 ] Bug #1775780 - SELinux is preventing systemd from 'setattr' accesses on the file LoaderSystemToken-4a67b082-0a4c-41cf-b6c7-440b29bb8c4f. https://bugzilla.redhat.com/show_bug.cgi?id=1775780 [ 2 ] Bug #1857381 - munin is generating an avc denial when trying to access /usr/bin/munin-cron https://bugzilla.redhat.com/show_bug.cgi?id=1857381 su -c 'dnf upgrade --advisory FEDORA-2020-b2d6cffc6f' at the command line. For more information, refer to the dnf documentation available at https://dnf.readthedocs.io/en/latest/command_ref.html All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/security/ package-announce mailing list -- package-announce@lists.fedoraproject.org To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org Fedora Code of Conduct: List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org
Change Log
References
Update Instructions
