Home
Reading
Searching
Subscribe
Sponsors
Statistics
Posting
Contact
Spam
Lists
Links
About
Hosting
Filtering
Features Download
Marketing
Archives
FAQ
Blog
 
Gmane
From: Pat Riehecky <riehecky-13hema8v3vg <at> public.gmane.org>
Subject: Security ERRATA Low: selinux-policy enhancement update on SL6.x i386/x86_64
Newsgroups: gmane.linux.scientific.errata
Date: Tuesday 13th November 2012 14:14:09 UTC (over 4 years ago)
Synopsis: Low: selinux-policy enhancement update
Issue date: 2012-11-12

This update adds the following enhancements:

* Previously, SELinux was blocking the /usr/libexec/qemu-kvm utility 
during a
migration of a virtual machine from Red Hat Enterprise Virtualization 
Manager.
Consequently, such a migration attempt failed and AVC messages were 
returned.
This update fixes the virt_use_fusefs boolean and adds the 
sanlock_use_fusefs
boolean, thus allowing the migration to succeed in the described scenario.

* When trying to start a virtual machine on a POSIX-compliant file system,
SELinux denied the operation and returned AVC messages. This update 
amends the
SELinux policy to allow the described scenario to succeed.


This update has been placed in the security tree to avoid selinux bugs.


SL6.x

SRPMS:
selinux-policy-3.7.19-155.el6_3.6.src.rpm

i386:
selinux-policy-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-doc-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-minimum-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-mls-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-targeted-3.7.19-155.el6_3.6.noarch.rpm


x86_64:
selinux-policy-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-doc-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-minimum-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-mls-3.7.19-155.el6_3.6.noarch.rpm
selinux-policy-targeted-3.7.19-155.el6_3.6.noarch.rpm
 
CD: 3ms