--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2017-b5e9ce60d2
2017-10-31 15:33:12.847130
--------------------------------------------------------------------------------
Name : selinux-policy
Product : Fedora 27
Version : 3.13.1
Release : 283.14.fc27
URL :
http://github.com/TresysTechnology/refpolicy/wiki
Summary : SELinux policy configuration
Description :
SELinux Base package for SELinux Reference Policy - modular.
Based off of reference policy: Checked out revision 2.20091117
--------------------------------------------------------------------------------
Update Information:
More info:
https://koji.fedoraproject.org/koji/taskinfo?taskID=22686149
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1498503 - SELinux is preventing systemd-sleep from 'create' accesses
on the file state.
https://bugzilla.redhat.com/show_bug.cgi?id=1498503
[ 2 ] Bug #1500088 - SELinux is preventing boinc_client from 'map' accesses on
the fichier /var/lib/boinc/slots/4/boinc_mmap_file.
https://bugzilla.redhat.com/show_bug.cgi?id=1500088
[ 3 ] Bug #1480911 - SELinux is preventing abrt-action-sav from 'map' accesses
on the file /var/lib/rpm/__db.001.
https://bugzilla.redhat.com/show_bug.cgi?id=1480911
[ 4 ] Bug #1500122 - ovsdb-server fails to start with OVS-2.8.1 with AVC denial
https://bugzilla.redhat.com/show_bug.cgi?id=1500122
[ 5 ] Bug #1480913 - SELinux is preventing pulseaudio from 'map' accesses on the
chr_file /dev/snd/pcmC0D0c.
https://bugzilla.redhat.com/show_bug.cgi?id=1480913
[ 6 ] Bug #1464773 - SELinux is preventing usermod from using the
'dac_read_search' capabilities.
https://bugzilla.redhat.com/show_bug.cgi?id=1464773
[ 7 ] Bug #1480918 - SELinux is preventing unix_chkpwd from 'map' accesses on
the file /var/lib/sss/mc/passwd.
https://bugzilla.redhat.com/show_bug.cgi?id=1480918
[ 8 ] Bug #1501331 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1501331
[ 9 ] Bug #1492635 - SELinux is preventing qemu-kvm from 'read, write' accesses
on the chr_file /dev/tpm0
https://bugzilla.redhat.com/show_bug.cgi?id=1492635
[ 10 ] Bug #1481455 - SELinux is preventing abrt-dump-journ from 'map' accesses
on the file /run/log/journal/2000656e56500583cc9b884bb121a7b9/system.journal.
https://bugzilla.redhat.com/show_bug.cgi?id=1481455
[ 11 ] Bug #1473118 - SELinux is preventing ibus-daemon from 'read' accesses on
the lnk_file /var/lib/dbus/machine-id.
https://bugzilla.redhat.com/show_bug.cgi?id=1473118
[ 12 ] Bug #1449673 - Selinux prevents winbind. AVC
https://bugzilla.redhat.com/show_bug.cgi?id=1449673
[ 13 ] Bug #1503980 - SELinux is preventing fprintd from 'read' accesses on the
katalog 00000000.
https://bugzilla.redhat.com/show_bug.cgi?id=1503980
[ 14 ] Bug #1442387 - SELinux is preventing groupadd from 'write' accesses on
the sock_file system_bus_socket.
https://bugzilla.redhat.com/show_bug.cgi?id=1442387
[ 15 ] Bug #1490015 - SELinux is preventing systemd-modules from 'map' accesses
on the file /usr/lib/modules/4.13.0-1.fc27.x86_64/extra/VirtualBox/vboxdrv.ko.
https://bugzilla.redhat.com/show_bug.cgi?id=1490015
[ 16 ] Bug #1494829 - Upgrade of selinux-policy produce unnecessary output
https://bugzilla.redhat.com/show_bug.cgi?id=1494829
[ 17 ] Bug #1481453 - SELinux is preventing sshd from 'map' accesses on the file
/var/lib/sss/mc/passwd.
https://bugzilla.redhat.com/show_bug.cgi?id=1481453
[ 18 ] Bug #1451376 - SELinux is preventing abrtd from using the
'dac_read_search' capabilities.
https://bugzilla.redhat.com/show_bug.cgi?id=1451376
[ 19 ] Bug #1481376 - selinux prevents cockpit from running
https://bugzilla.redhat.com/show_bug.cgi?id=1481376
[ 20 ] Bug #1434395 - SELinux is preventing ntpd from create
https://bugzilla.redhat.com/show_bug.cgi?id=1434395
[ 21 ] Bug #1480916 - SELinux is preventing cupsd from 'map' accesses on the
file /var/lib/sss/mc/passwd.
https://bugzilla.redhat.com/show_bug.cgi?id=1480916
[ 22 ] Bug #1504493 - SELinux is preventing systemd-machine from 'read' accesses
on the dossier /var/lib/mock/fedora-rawhide-i386/root.
https://bugzilla.redhat.com/show_bug.cgi?id=1504493
[ 23 ] Bug #1498587 - SELinux is preventing pppd from 'map' accesses on the file
/run/ppp/pppd2.tdb.
https://bugzilla.redhat.com/show_bug.cgi?id=1498587
[ 24 ] Bug #1498861 - SELinux is preventing qemu-system-x86 from 'search'
accesses on the directory 7838.
https://bugzilla.redhat.com/show_bug.cgi?id=1498861
[ 25 ] Bug #1505220 - SELinux is preventing nm-l2tp-service from using the
'sigkill' accesses on a process.
https://bugzilla.redhat.com/show_bug.cgi?id=1505220
[ 26 ] Bug #1481458 - SELinux is preventing bluetoothd from 'map' accesses on
the file /var/lib/bluetooth/00:26:83:16:93:DB/config.
https://bugzilla.redhat.com/show_bug.cgi?id=1481458
[ 27 ] Bug #1481456 - SELinux is preventing abrt-action-gen from 'map' accesses
on the file /var/spool/abrt/ccpp-2017-08-14-09:18:34.154456-1086/coredump.
https://bugzilla.redhat.com/show_bug.cgi?id=1481456
[ 28 ] Bug #1480919 - SELinux is preventing gdm from 'map' accesses on the file
/var/lib/sss/mc/passwd.
https://bugzilla.redhat.com/show_bug.cgi?id=1480919
[ 29 ] Bug #1481457 - SELinux is preventing avahi-daemon from 'map' accesses on
the file /var/lib/sss/mc/initgroups.
https://bugzilla.redhat.com/show_bug.cgi?id=1481457
[ 30 ] Bug #1499498 - SELinux is preventing sh from 'search' accesses on the
directory /var/lib/sss.
https://bugzilla.redhat.com/show_bug.cgi?id=1499498
[ 31 ] Bug #1500538 - SELinux is preventing tor from 'map' accesses on the file
/var/lib/tor/cached-microdescs.
https://bugzilla.redhat.com/show_bug.cgi?id=1500538
[ 32 ] Bug #1502760 - SELinux is preventing fprintd from 'open' accesses on the
chr_file /dev/bus/usb/001/007.
https://bugzilla.redhat.com/show_bug.cgi?id=1502760
[ 33 ] Bug #1481460 - SELinux is preventing qmgr from 'map' accesses on the file
/var/lib/sss/mc/initgroups.
https://bugzilla.redhat.com/show_bug.cgi?id=1481460
[ 34 ] Bug #1505877 - SELinux is preventing nmbd from 'map' accesses on the file
/var/lib/samba/lock/serverid.tdb.
https://bugzilla.redhat.com/show_bug.cgi?id=1505877
[ 35 ] Bug #1480912 - SELinux is preventing gsettings from 'map' accesses on the
file /run/user/42/dconf/user.
https://bugzilla.redhat.com/show_bug.cgi?id=1480912
[ 36 ] Bug #1481459 - SELinux is preventing colord from 'map' accesses on the
file /etc/udev/hwdb.bin.
https://bugzilla.redhat.com/show_bug.cgi?id=1481459
[ 37 ] Bug #1480920 - SELinux is preventing colord from 'map' accesses on the
file /var/lib/sss/mc/passwd.
https://bugzilla.redhat.com/show_bug.cgi?id=1480920
[ 38 ] Bug #1471401 - SELinux is preventing systemd from read, write access on the
chr_file /dev/input/event9.
https://bugzilla.redhat.com/show_bug.cgi?id=1471401
[ 39 ] Bug #1480915 - SELinux is preventing abrtd from 'map' accesses on the
file /var/lib/sss/mc/group.
https://bugzilla.redhat.com/show_bug.cgi?id=1480915
[ 40 ] Bug #1503466 - SELinux is preventing qemu-system-x86 from 'read' accesses
on the soubor cmdline.
https://bugzilla.redhat.com/show_bug.cgi?id=1503466
[ 41 ] Bug #1498336 - GDM fails to start when WaylandEnable=false due to selinux error
https://bugzilla.redhat.com/show_bug.cgi?id=1498336
[ 42 ] Bug #1480917 - SELinux is preventing dbus-daemon from 'map' accesses on
the file /var/lib/sss/mc/passwd.
https://bugzilla.redhat.com/show_bug.cgi?id=1480917
[ 43 ] Bug #1500089 - SELinux is preventing fail2ban-server from 'map' accesses
on the fichier /var/log/journal/0d72a028972341f8958a3add7eb07c8f/system.journal.
https://bugzilla.redhat.com/show_bug.cgi?id=1500089
[ 44 ] Bug #1505081 - SELinux policy prevents NetworkManager from updating
systemd-resolved
https://bugzilla.redhat.com/show_bug.cgi?id=1505081
[ 45 ] Bug #1471477 - SELinux is preventing abrt-dbus from using the
'dac_read_search' capabilities.
https://bugzilla.redhat.com/show_bug.cgi?id=1471477
[ 46 ] Bug #1499170 - ibus not working in fresh Workstation Live install with user
account setup in gnome-initial-setup
https://bugzilla.redhat.com/show_bug.cgi?id=1499170
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade selinux-policy' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------