From 10fd8395c1f4154bc01afb2a29f5bca79ae11bf7 Mon Sep 17 00:00:00 2001 From: Zdenek Pytela Date: Apr 14 2023 11:48:00 +0000 Subject: * Fri Apr 14 2023 Zdenek Pytela - 38.11-1 - Allow dovecot-deliver write to the main process runtime fifo files - Allow dmidecode write to cloud-init tmp files - Allow chronyd send a message to cloud-init over a datagram socket - Allow cloud-init domain transition to insights-client domain - Allow mongodb read filesystem sysctls - Allow mongodb read network sysctls - Allow accounts-daemon read generic systemd unit lnk files - Allow blueman watch generic device dirs - Allow nm-dispatcher tlp plugin create tlp dirs - Allow systemd-coredump mounton /usr - Allow rabbitmq to read network sysctls --- diff --git a/selinux-policy.spec b/selinux-policy.spec index 381d376..835cd38 100644 --- a/selinux-policy.spec +++ b/selinux-policy.spec @@ -1,6 +1,6 @@ # github repo with selinux-policy sources %global giturl https://github.com/fedora-selinux/selinux-policy -%global commit fd8c414d883570c82f1e4381992ead8abf0e5fb4 +%global commit 6484d55fa6a48127989b4049495fda106889f356 %global shortcommit %(c=%{commit}; echo ${c:0:7}) %define distro redhat @@ -23,7 +23,7 @@ %define CHECKPOLICYVER 3.2 Summary: SELinux policy configuration Name: selinux-policy -Version: 38.10 +Version: 38.11 Release: 1%{?dist} License: GPL-2.0-or-later Source: %{giturl}/archive/%{commit}/%{name}-%{shortcommit}.tar.gz @@ -813,6 +813,19 @@ exit 0 %endif %changelog +* Fri Apr 14 2023 Zdenek Pytela - 38.11-1 +- Allow dovecot-deliver write to the main process runtime fifo files +- Allow dmidecode write to cloud-init tmp files +- Allow chronyd send a message to cloud-init over a datagram socket +- Allow cloud-init domain transition to insights-client domain +- Allow mongodb read filesystem sysctls +- Allow mongodb read network sysctls +- Allow accounts-daemon read generic systemd unit lnk files +- Allow blueman watch generic device dirs +- Allow nm-dispatcher tlp plugin create tlp dirs +- Allow systemd-coredump mounton /usr +- Allow rabbitmq to read network sysctls + * Tue Apr 04 2023 Zdenek Pytela - 38.10-1 - Allow certmonger dbus chat with the cron system domain - Allow geoclue read network sysctls diff --git a/sources b/sources index a77140f..476686a 100644 --- a/sources +++ b/sources @@ -1,3 +1,3 @@ -SHA512 (selinux-policy-fd8c414.tar.gz) = d7e89db25253b3f09fc055ff0b216949c196e2f034fe2da93ffd3fa1d37121914d09d8f4dcf3bb657ed7c0f31a20e4a261d4e6d226ccf1fad8d10a898eca73b4 +SHA512 (selinux-policy-6484d55.tar.gz) = b51fc406e4b388d875f4598205be2e3be033cda5657819527c2f8d752491789f0925bb133a58d7b964a24750119c1f4cd9413f4b0d5bc52bb9db429133a77445 +SHA512 (container-selinux.tgz) = 6ca587afdcdeb88ce4232a8ddc84aafdaebcc2ae71db5602ef7d4b9c8707f26e3901551b4f77cec5e1218491b4efedfb5e7897de17236d217ce4b28e89bbd705 SHA512 (macro-expander) = 243ee49f1185b78ac47e56ca9a3f3592f8975fab1a2401c0fcc7f88217be614fe31805bacec602b728e7fcfc21dcc17d90e9a54ce87f3a0c97624d9ad885aea4 -SHA512 (container-selinux.tgz) = 42b1d2045c74820fac2a80c615752037150a2c7c81bffa6e247cc0e0aa946a7e86bc81943a49198aa66f7cde06d7e5d7302ba79d32f8c6a2329a9fcd5e6c57d7