rpms / selinux-policy

Clone
Source Code
GIT

ee38f3e * Tue Jan 29 2019 Lukas Vrabec <lvrabec@redhat.com> - 3.14.3-19

Authored and Committed by lvrabec 5 years ago
raw patch tree parent
2 files changed. 20 lines added. 6 lines removed.
selinux-policy.spec
file modified
+17 -3
sources
file modified
+3 -3 
    * Tue Jan 29 2019 Lukas Vrabec <lvrabec@redhat.com> - 3.14.3-19
    - Add new xdp_socket class
    - Update dbus_role_template interface to allow userdomains to accept data from userdomain dbus domains
    - Allow boltd_t domain to read cache_home_t files BZ(1669911)
    - Allow winbind_t domain to check for existence of processes labeled as systemd_hostnamed_t BZ(1669912)
    - Allow gpg_agent_t to create own tmpfs dirs and sockets
    - Allow openvpn_t domain to manage vpnc pidfiles BZ(1667572)
    - Add multiple interfaces for vpnc interface file
    - Label /var/run/fcgiwrap dir as httpd_var_run_t BZ(1655702)
    - In MongoDB 3.4.16, 3.6.6, 4.0.0 and later, mongod reads netstat info from proc and stores it in its diagnostic system (FTDC). See: https://jira.mongodb.org/browse/SERVER-31400 This means that we need to adjust the policy so that the mongod process is allowed to open and read /proc/net/netstat, which typically has symlinks (e.g. /proc/net/snmp).
    - Allow gssd_t domain to manage kernel keyrings of every domain.
    - Revert "Allow gssd_t domain to read/write kernel keyrings of every domain."
    - Allow plymouthd_t search efivarfs directory BZ(1664143)
file modified
+17 -3
file modified
+3 -3
Powered by Pagure 5.13.3
DocumentationFile an IssueAbout this InstanceSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.