Alerts This Week
Warning Icon 1 1,149
Alerts This Week
Warning Icon 1 1,149

Scientific Linux: 2012-11-12 Low Severity SELinux Policy Enhancements

Scientific Large Esm H446
Low: selinux-policy enhancement update
Date: Tue, 13 Nov 2012 08:14:09 -0600
Reply-To: Pat Riehecky 
Sender: Security Errata for Scientific Linux
 
From: Pat Riehecky 
Organization: Fermilab
Subject: Security ERRATA Low: selinux-policy enhancement update on SL6.x
 i386/x86_64
MIME-Version: 1.0

Synopsis: Low: selinux-policy enhancement update
Issue date: 2012-11-12

This update adds the following enhancements:

* Previously, SELinux was blocking the /usr/libexec/qemu-kvm utility
during a
migration of a virtual machine from Red Hat Enterprise Virtualization
Manager.
Consequently, such a migration attempt failed and AVC messages were
returned.
This update fixes the virt_use_fusefs boolean and adds the
sanlock_use_fusefs
boolean, thus allowing the migration to succeed in the described scenario.

* When trying to start a virtual machine on a POSIX-compliant file system,
SELinux denied the operation and returned AVC messages. This update
amends the
SELinux policy to allow the described scenario to succeed.

This update has been placed in the security tree to avoid selinux bugs.

SL6.x

SRPMS:
selinux-policy-3.7.19-155.el6_3.6.src.rpm

i386:
selinux-policy-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-doc-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-minimum-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-mls-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-targeted-3.7.19-155.el6_3.6.noarch.rpm

x86_64:
selinux-policy-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-doc-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-minimum-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-mls-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-targeted-3.7.19-155.el6_3.6.noarch.rpm
Your message here