diff --git a/policy-20070501.patch b/policy-20070501.patch
index 9674bcd..03f615f 100644
--- a/policy-20070501.patch
+++ b/policy-20070501.patch
@@ -6926,7 +6926,7 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/exim
 --- nsaserefpolicy/policy/modules/services/exim.fc	1969-12-31 19:00:00.000000000 -0500
 +++ serefpolicy-2.6.4/policy/modules/services/exim.fc	2007-10-05 09:28:27.000000000 -0400
 @@ -0,0 +1,16 @@
-+# $Id: policy-20070501.patch,v 1.86 2007/12/31 21:06:21 dwalsh Exp $
++# $Id: policy-20070501.patch,v 1.87 2007/12/31 21:48:03 dwalsh Exp $
 +# Draft SELinux refpolicy module for the Exim MTA
 +# 
 +# Devin Carraway <selinux/at/devin.com>
@@ -7107,7 +7107,7 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/exim
 --- nsaserefpolicy/policy/modules/services/exim.te	1969-12-31 19:00:00.000000000 -0500
 +++ serefpolicy-2.6.4/policy/modules/services/exim.te	2007-10-30 16:46:45.000000000 -0400
 @@ -0,0 +1,231 @@
-+# $Id: policy-20070501.patch,v 1.86 2007/12/31 21:06:21 dwalsh Exp $
++# $Id: policy-20070501.patch,v 1.87 2007/12/31 21:48:03 dwalsh Exp $
 +# Draft SELinux refpolicy module for the Exim MTA
 +# 
 +# Devin Carraway <selinux/at/devin.com>
@@ -8338,14 +8338,14 @@ diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mta.
  
 diff --exclude-from=exclude -N -u -r nsaserefpolicy/policy/modules/services/mysql.te serefpolicy-2.6.4/policy/modules/services/mysql.te
 --- nsaserefpolicy/policy/modules/services/mysql.te	2007-05-07 14:51:01.000000000 -0400
-+++ serefpolicy-2.6.4/policy/modules/services/mysql.te	2007-12-31 07:00:25.000000000 -0500
++++ serefpolicy-2.6.4/policy/modules/services/mysql.te	2007-12-31 16:45:29.000000000 -0500
 @@ -33,7 +33,8 @@
  allow mysqld_t self:capability { dac_override setgid setuid sys_resource net_bind_service };
  dontaudit mysqld_t self:capability sys_tty_config;
  allow mysqld_t self:process { setsched getsched setrlimit signal_perms rlimitinh };
 -allow mysqld_t self:fifo_file { read write };
 +allow mysqld_t self:fifo_file rw_fifo_file_perms;
-+allow mysqld_t self:shm create_shm_file_perms;
++allow mysqld_t self:shm create_shm_perms;
  allow mysqld_t self:unix_stream_socket create_stream_socket_perms;
  allow mysqld_t self:tcp_socket create_stream_socket_perms;
  allow mysqld_t self:udp_socket create_socket_perms;
diff --git a/selinux-policy.spec b/selinux-policy.spec
index ee8973f..f207eaf 100644
--- a/selinux-policy.spec
+++ b/selinux-policy.spec
@@ -17,7 +17,7 @@
 Summary: SELinux policy configuration
 Name: selinux-policy
 Version: 2.6.4
-Release: 66%{?dist}
+Release: 67%{?dist}
 License: GPL
 Group: System Environment/Base
 Source: serefpolicy-%{version}.tgz
@@ -363,6 +363,10 @@ semodule -b base.pp -r bootloader -r clock -r dpkg -r fstools -r hotplug -r init
 %endif
 
 %changelog
+* Mon Dec 31 2007 Dan Walsh <dwalsh@redhat.com> 2.6.4-67
+- Allow ppp to signal networkmanager
+- Allow mount to transition to lvm
+
 * Tue Dec 25 2007 Dan Walsh <dwalsh@redhat.com> 2.6.4-66
 - Allow mail delivery to append to apache logs.