[selinux-policy] Turn back on allow_execmem boolean
Daniel J Walsh
dwalsh at fedoraproject.org
Tue Nov 8 13:47:44 UTC 2011
commit e58227a2b3f9da31b78b65126c3309cbea544561
Author: Dan Walsh <dwalsh at redhat.com>
Date: Tue Nov 8 08:47:34 2011 -0500
Turn back on allow_execmem boolean
booleans-targeted.conf | 1 +
selinux-policy.spec | 5 ++++-
2 files changed, 5 insertions(+), 1 deletions(-)
---
diff --git a/booleans-targeted.conf b/booleans-targeted.conf
index a6550d0..2f5bc2e 100644
--- a/booleans-targeted.conf
+++ b/booleans-targeted.conf
@@ -1,6 +1,7 @@
# Allow making anonymous memory executable, e.g.for runtime-code generation or executable stack.
#
deny_execmem = false
+allow_execmem = true
# Allow making a modified private filemapping executable (text relocation).
#
diff --git a/selinux-policy.spec b/selinux-policy.spec
index 02f9a52..fbe097f 100644
--- a/selinux-policy.spec
+++ b/selinux-policy.spec
@@ -17,7 +17,7 @@
Summary: SELinux policy configuration
Name: selinux-policy
Version: 3.10.0
-Release: 55%{?dist}
+Release: 55.1%{?dist}
License: GPLv2+
Group: System Environment/Base
Source: serefpolicy-%{version}.tgz
@@ -483,6 +483,9 @@ SELinux Reference policy mls base module.
%endif
%changelog
+* Tue Nov 8 2011 Dan Walsh <dwalsh at redhat.com> 3.10.0-55.1
+- Turn back on allow_execmem boolean
+
* Mon Nov 7 2011 Miroslav Grepl <mgrepl at redhat.com> 3.10.0-55
- Add more MCS fixes to make sandbox working
- Make faillog MLS trusted to make sudo_$1_t working
More information about the scm-commits
mailing list