Fedora 31 SELinux-Policy 2020-b2d6cffc6f Moderate: Security Update

SELinux Base package for SELinux Reference Policy - modular.

Based off of reference policy: Checked out revision 2.20091117

New F31 selinux-policy build

* Thu Aug 27 2020 Zdenek Pytela - 3.14.4-54

- Allow munin domain transition with NoNewPrivileges

- Allow syslogd_t domain to read/write tmpfs systemd-bootchart files

- Allow unconfined_t to node_bind icmp_sockets in node_t domain

- Change transitions for ~/.config/Yubico

- Add file context for ~/.config/Yubico

- Create macro corenet_icmp_bind_generic_node()

- Allow traceroute_t and ping_t to bind generic nodes.

- Allow systemd set efivarfs files attributes

- Split the arping path regexp to 2 lines to prevent from relabeling

[ 1 ] Bug #1775780 - SELinux is preventing systemd from 'setattr' accesses on the file LoaderSystemToken-4a67b082-0a4c-41cf-b6c7-440b29bb8c4f.

https://bugzilla.redhat.com/show_bug.cgi?id=1775780

[ 2 ] Bug #1857381 - munin is generating an avc denial when trying to access /usr/bin/munin-cron

https://bugzilla.redhat.com/show_bug.cgi?id=1857381

su -c 'dnf upgrade --advisory FEDORA-2020-b2d6cffc6f' at the command

line. For more information, refer to the dnf documentation available at

https://dnf.readthedocs.io/en/latest/command_ref.html

All packages are signed with the Fedora Project GPG key. More details on the

GPG keys used by the Fedora Project can be found at

https://fedoraproject.org/security/

package-announce mailing list -- package-announce@lists.fedoraproject.org

To unsubscribe send an email to package-announce-leave@lists.fedoraproject.org

Fedora Code of Conduct: List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines

List Archives: https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/