ELBA-2017-0084

ELBA-2017-0084 - selinux-policy bug fix update

Type:	BUG
Impact:	NA
Release Date:	2017-01-17

Description

[3.13.1-102.0.2.13]
- selinux-policy includes updated docker selinux policy [Orabug 24697785] (thomas.tanaka)
- Allow ocfs2_dlmfs to be mounted with ocfs2_dlmfs_t type.

[3.13.1-102.13]
- Allow systemd container to read/write usermodehelperstate
Resolves: rhbz#1408126
- Allow glusterd_t to bind on glusterd_port_t udp ports.
Resolves: rhbz#1408128

[3.13.1-102.12]
- Allow glusterd_t to bind on glusterd_port_t udp ports.
Resolves: rhbz#1408128
- Allow glusterd_t send signals to userdomain. Label new glusterd binaries as glusterd_exec_t
Resolves: rhbz#1408128
- Fixes for containers
- Allow containers to attempt to write to unix_sysctls.
- Allow cotainers to use the FD's leaked to them from parent processes.
Resolves: rhbz#1408126
- Allow systemd to stop glusterd_t domains.
Resolves: rhbz#1408125

[3.13.1-102.11]
- Update ctdbd_t policy to reflect all changes.
Resolves: rhbz#1403266

[3.13.1-102.10]
- Allow ctdbd_t domain transition to rpcd_t
Resolves:rhbz#1403266

[3.13.1-102.9]
- Make working CTDB:NFS: CTDB failover from selinux-policy POV
Resolves: rhbz#1403266

[3.13.1-102.8]
- Allow puppetagent_t to access timedated dbus. Use the systemd_dbus_chat_timedated interface to allow puppetagent_t the access.
Resolves: rhbz#1400505

Updated Packages

Release/Architecture	Filename	sha256	Superseded By Advisory	Channel Label
Oracle Linux 7 (x86_64)	selinux-policy-3.13.1-102.0.2.el7_3.13.src.rpm	702e9ba5d11ffbb19e80e2a7946b02512f6902b7438ab55c74cc1a65625189b9	ELBA-2024-12651	ol7_x86_64_latest_archive
	selinux-policy-3.13.1-102.0.2.el7_3.13.src.rpm	702e9ba5d11ffbb19e80e2a7946b02512f6902b7438ab55c74cc1a65625189b9	ELBA-2024-12651	ol7_x86_64_optional_archive
	selinux-policy-3.13.1-102.0.2.el7_3.13.src.rpm	702e9ba5d11ffbb19e80e2a7946b02512f6902b7438ab55c74cc1a65625189b9	ELBA-2024-12651	ol7_x86_64_u3_patch
	selinux-policy-3.13.1-102.0.2.el7_3.13.noarch.rpm	c8658d34dbe13c52a82a520e4539834588ccc33f6bc0072c5cf2dbeb592ad210	ELBA-2024-12651	ol7_x86_64_latest_archive
	selinux-policy-3.13.1-102.0.2.el7_3.13.noarch.rpm	c8658d34dbe13c52a82a520e4539834588ccc33f6bc0072c5cf2dbeb592ad210	ELBA-2024-12651	ol7_x86_64_u3_patch
	selinux-policy-devel-3.13.1-102.0.2.el7_3.13.noarch.rpm	050e0e25282ffe21b9ae0b9fc8e7cea62ddaed06238239693a7ccef5cfda5556	ELBA-2024-12651	ol7_x86_64_latest_archive
	selinux-policy-devel-3.13.1-102.0.2.el7_3.13.noarch.rpm	050e0e25282ffe21b9ae0b9fc8e7cea62ddaed06238239693a7ccef5cfda5556	ELBA-2024-12651	ol7_x86_64_u3_patch
	selinux-policy-doc-3.13.1-102.0.2.el7_3.13.noarch.rpm	8cd4d59338f9841451983997b36bcfd0c3aee78d7aa904faa233ca1ebe8f016f	ELBA-2024-12651	ol7_x86_64_optional_archive
	selinux-policy-minimum-3.13.1-102.0.2.el7_3.13.noarch.rpm	7bf516c51f0ef6af3066de6fc491abdbd5298dbd3898bf5f45c1c4aa5e17e6e8	ELBA-2024-12651	ol7_x86_64_latest_archive
	selinux-policy-minimum-3.13.1-102.0.2.el7_3.13.noarch.rpm	7bf516c51f0ef6af3066de6fc491abdbd5298dbd3898bf5f45c1c4aa5e17e6e8	ELBA-2024-12651	ol7_x86_64_u3_patch
	selinux-policy-mls-3.13.1-102.0.2.el7_3.13.noarch.rpm	e7ff95d206cffb2c1cffd48cc6ac6ccbaeeba085bba45c154667e0fa7cf596c9	ELBA-2024-12651	ol7_x86_64_latest_archive
	selinux-policy-mls-3.13.1-102.0.2.el7_3.13.noarch.rpm	e7ff95d206cffb2c1cffd48cc6ac6ccbaeeba085bba45c154667e0fa7cf596c9	ELBA-2024-12651	ol7_x86_64_u3_patch
	selinux-policy-sandbox-3.13.1-102.0.2.el7_3.13.noarch.rpm	d7df2789536ba215d5866f7645dbc29ed64f408b1cbb4b94d715a426a2427277	ELBA-2024-12651	ol7_x86_64_optional_archive
	selinux-policy-targeted-3.13.1-102.0.2.el7_3.13.noarch.rpm	68546a7cb2b685d63cc4af8fbf9ce968b3223788af1498e6e04fd8e2636b58e4	ELBA-2024-12651	ol7_x86_64_latest_archive
	selinux-policy-targeted-3.13.1-102.0.2.el7_3.13.noarch.rpm	68546a7cb2b685d63cc4af8fbf9ce968b3223788af1498e6e04fd8e2636b58e4	ELBA-2024-12651	ol7_x86_64_u3_patch

This page is generated automatically and has not been checked for errors or omissions. For clarification or corrections please contact the Oracle Linux ULN team