[El-errata] ELBA-2018-4232 Oracle Linux 7 selinux-policy bug fix update (aarch64)
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Sat Sep 29 08:46:49 PDT 2018
Oracle Linux Bug Fix Advisory ELBA-2018-4232
http://linux.oracle.com/errata/ELBA-2018-4232.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
aarch64:
selinux-policy-3.13.1-192.0.6.el7_5.6.noarch.rpm
selinux-policy-devel-3.13.1-192.0.6.el7_5.6.noarch.rpm
selinux-policy-minimum-3.13.1-192.0.6.el7_5.6.noarch.rpm
selinux-policy-mls-3.13.1-192.0.6.el7_5.6.noarch.rpm
selinux-policy-targeted-3.13.1-192.0.6.el7_5.6.noarch.rpm
selinux-policy-doc-3.13.1-192.0.6.el7_5.6.noarch.rpm
selinux-policy-sandbox-3.13.1-192.0.6.el7_5.6.noarch.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/selinux-policy-3.13.1-192.0.6.el7_5.6.src.rpm
Description of changes:
[3.13.1-192.0.6]
- Allow map permission for systemd-journald [OraBug 28523895]
- contrib: allow map permission where needed [OraBug 28523895]
- allow map permission where needed [OraBug 28523895]
- Remove map permissions from merging commit with refpolicy [OraBug
28523895]
- Allow sssd_t domain to map sssd_var_lib_t files [OraBug 28523895]
- Allow just map permission insead of using mmap_file_pattern because
mmap_files_pattern allows also executing objects. [OraBug 28523895]
- Allow abrt_t domain to mmap files with label syslogd_var_run_t
BZ(1514975) [OraBug 28523895]
- Allow mandb_t domain to mmap files with label mandb_cache_t
BZ(1514093) [OraBug 28523895]
- Update gnome_manage_home_config() to allow also map permission
BZ(1544270) [OraBug 28523895]
- Allow rpm domain to mmap rpm_var_lib_t files [OraBug 28523895]
- logging: Various audit tools (auditctl, ausearch, etc) map their
config and logs [OraBug 28523895]
More information about the El-errata
mailing list