[El-errata] ELBA-2019-0192 Oracle Linux 7 selinux-policy bug fix update (aarch64)
Errata Announcements for Oracle Linux
el-errata at oss.oracle.com
Wed Jan 30 14:24:23 PST 2019
Oracle Linux Bug Fix Advisory ELBA-2019-0192
http://linux.oracle.com/errata/ELBA-2019-0192.html
The following updated rpms for Oracle Linux 7 have been uploaded to the
Unbreakable Linux Network:
aarch64:
selinux-policy-3.13.1-229.0.1.el7_6.9.noarch.rpm
selinux-policy-devel-3.13.1-229.0.1.el7_6.9.noarch.rpm
selinux-policy-minimum-3.13.1-229.0.1.el7_6.9.noarch.rpm
selinux-policy-mls-3.13.1-229.0.1.el7_6.9.noarch.rpm
selinux-policy-targeted-3.13.1-229.0.1.el7_6.9.noarch.rpm
selinux-policy-doc-3.13.1-229.0.1.el7_6.9.noarch.rpm
selinux-policy-sandbox-3.13.1-229.0.1.el7_6.9.noarch.rpm
SRPMS:
http://oss.oracle.com/ol7/SRPMS-updates/selinux-policy-3.13.1-229.0.1.el7_6.9.src.rpm
Description of changes:
[3.13.1-229.0.1]
- SELinux support for cgroup2 filesystem. [OraBug 28127822]
- refpolicy: Define getrlimit permission for class process [OraBug 28229492]
- Add vhost-scsi to be vhost_device_t type [OraBug 27774921]
- Obsolete docker-engine-selinux [OraBug 26439663]
- Fix container selinux policy [OraBug 26427364]
- Allow ocfs2_dlmfs to be mounted with ocfs2_dlmfs_t type.
[3.13.1-229.9]
- Allow gssd_t domain to manage kernel keyrings of every domain.
Resolves: rhbz#1665815
- Add new interface domain_manage_all_domains_keyrings()
Resolves: rhbz#1665815
[3.13.1-229.8]
- Add interface domain_rw_all_domains_keyrings()
Resolves: rhbz#1665815
- Allow gssd_t domain to read/write kernel keyrings of every domain.
Resolves: rhbz#1665815
[3.13.1-229.7]
- Update snapperd policy to allow snapperd manage all non security dirs.
Resolves: rhbz#1661158
More information about the El-errata
mailing list