* Fri Jun 09 2023 Zdenek Pytela <zpytela@redhat.com> - 38.16-1

- Add support for the systemd-pstore service - Allow kdumpctl_t to execmem - Update sendmail policy module for opensmtpd - Allow nagios-mail-plugin exec postfix master - Allow subscription-manager execute ip - Allow ssh client connect with a user dbus instance - Add support for ksshaskpass - Allow rhsmcertd file transition in /run also for socket files - Allow keyutils_dns_resolver_t execute keyutils_dns_resolver_exec_t - Allow plymouthd read/write X server miscellaneous devices - Allow systemd-sleep read udev pid files - Allow exim read network sysctls - Allow sendmail request load module - Allow named map its conf files - Allow squid map its cache files - Allow NetworkManager_dispatcher_dhclient_t to execute shells without a domain transition
2023-06-09 22:29:46 +02:00 · 2023-06-09 22:29:46 +02:00 · 37f102411a
commit 37f102411a
parent 70fa3a1489
2 changed files with 22 additions and 4 deletions
--- a/selinux-policy.spec
+++ b/selinux-policy.spec
@ -1,6 +1,6 @@
 # github repo with selinux-policy sources
 %global giturl https://github.com/fedora-selinux/selinux-policy
-%global commit 1c095937163faff5822b673b6771b700002ad3a6
+%global commit 79f41b6c52b80920a70fe2ba8addead254579365
 %global shortcommit %(c=%{commit}; echo ${c:0:7})

 %define distro redhat
@ -23,7 +23,7 @@
 %define CHECKPOLICYVER 3.2
 Summary: SELinux policy configuration
 Name: selinux-policy
-Version: 38.15
+Version: 38.16
 Release: 1%{?dist}
 License: GPL-2.0-or-later
 Source: %{giturl}/archive/%{commit}/%{name}-%{shortcommit}.tar.gz
@ -813,6 +813,24 @@ exit 0
 %endif

 %changelog
+* Fri Jun 09 2023 Zdenek Pytela <zpytela@redhat.com> - 38.16-1
+- Add support for the systemd-pstore service
+- Allow kdumpctl_t to execmem
+- Update sendmail policy module for opensmtpd
+- Allow nagios-mail-plugin exec postfix master
+- Allow subscription-manager execute ip
+- Allow ssh client connect with a user dbus instance
+- Add support for ksshaskpass
+- Allow rhsmcertd file transition in /run also for socket files
+- Allow keyutils_dns_resolver_t execute keyutils_dns_resolver_exec_t
+- Allow plymouthd read/write X server miscellaneous devices
+- Allow systemd-sleep read udev pid files
+- Allow exim read network sysctls
+- Allow sendmail request load module
+- Allow named map its conf files
+- Allow squid map its cache files
+- Allow NetworkManager_dispatcher_dhclient_t to execute shells without a domain transition
+
 * Tue May 30 2023 Zdenek Pytela <zpytela@redhat.com> - 38.15-1
 - Update policy for systemd-sleep
 - Remove permissive domain for rshim_t
--- a/4
+++ b/4
@ -1,3 +1,3 @@
-SHA512 (selinux-policy-1c09593.tar.gz) = 3017973aa40f6df483365ce5f8eeaa879d52baac16a9c356ca9d3c430760ea80745a8a3f3a59a980689fd7b84f4ce96c29a5479345bc9a1a550d58a22a66f1fd
-SHA512 (container-selinux.tgz) = 31e27f900ffb1984873dcf244c161b573929bca80c878e7e1a3f159282ceb8e1505555c05606bfb726ce475a9b19a036181b84eb5ec7e7259ee4a2c254144597
+SHA512 (selinux-policy-79f41b6.tar.gz) = fe764e9d2209a3d91dfd53e1b38522a65726d1c8b454535b84ed8be2555f3b16bd640eeebf3d1b77aec3d124cec3b6fb3f06aba6e19316c05840a45a714488fb
 SHA512 (macro-expander) = 243ee49f1185b78ac47e56ca9a3f3592f8975fab1a2401c0fcc7f88217be614fe31805bacec602b728e7fcfc21dcc17d90e9a54ce87f3a0c97624d9ad885aea4
+SHA512 (container-selinux.tgz) = c1b2b2db5a61c93798e8efc3081f6b08fa7b845401764a95bd5a1e1a75b87b3f94334ff74fafe0aef620f2423adfd1ae7365e55cf0f3371fc1cafa77400ad2bc