* Fri Jun 28 2024 Zdenek Pytela <zpytela@redhat.com> - 40.13.4-1

- Confine libvirt-dbus
Resolves: RHEL-37822
- Allow sssd create and use io_uring
Resolves: RHEL-43448
- Allow virtqemud the kill capability in user namespace
Resolves: RHEL-44996
- Allow login_userdomain execute systemd-tmpfiles in the caller domain
Resolves: RHEL-44191
- Allow virtqemud read vm sysctls
Resolves: RHEL-40938
- Allow svirt_t read vm sysctls
Resolves: RHEL-40938
- Allow rshim get options of the netlink class for KOBJECT_UEVENT family
Resolves: RHEL-40859
- Allow systemd-hostnamed read the vsock device
Resolves: RHEL-45309
- Allow systemd (PID 1) manage systemd conf files
Resolves: RHEL-45304
- Allow journald read systemd config files and directories
Resolves: RHEL-45304
- Allow systemd_domain read systemd_conf_t dirs
Resolves: RHEL-45304
- Label systemd configuration files with systemd_conf_t
Resolves: RHEL-45304
- Allow dhcpcd the kill capability
Resolves: RHEL-43417
- Add support for libvirt hooks
Resolves: RHEL-41168
This commit is contained in:
Zdenek Pytela 2024-06-28 23:24:45 +02:00
parent c4cc684f3c
commit cbb1ba3beb
2 changed files with 35 additions and 5 deletions

View File

@ -1,6 +1,6 @@
# github repo with selinux-policy sources
%global giturl https://github.com/fedora-selinux/selinux-policy
%global commit 9eb80568d30c6fb4352894a033246bfe05f4960d
%global commit 00e82da8812f14cb5022b497acb3955b224cf8d6
%global shortcommit %(c=%{commit}; echo ${c:0:7})
%define distro redhat
@ -23,8 +23,8 @@
%define CHECKPOLICYVER 3.2
Summary: SELinux policy configuration
Name: selinux-policy
Version: 40.13.3
Release: 2%{?dist}
Version: 40.13.4
Release: 1%{?dist}
License: GPL-2.0-or-later
Source: %{giturl}/archive/%{commit}/%{name}-%{shortcommit}.tar.gz
Source1: modules-targeted-base.conf
@ -860,6 +860,36 @@ exit 0
%endif
%changelog
* Fri Jun 28 2024 Zdenek Pytela <zpytela@redhat.com> - 40.13.4-1
- Confine libvirt-dbus
Resolves: RHEL-37822
- Allow sssd create and use io_uring
Resolves: RHEL-43448
- Allow virtqemud the kill capability in user namespace
Resolves: RHEL-44996
- Allow login_userdomain execute systemd-tmpfiles in the caller domain
Resolves: RHEL-44191
- Allow virtqemud read vm sysctls
Resolves: RHEL-40938
- Allow svirt_t read vm sysctls
Resolves: RHEL-40938
- Allow rshim get options of the netlink class for KOBJECT_UEVENT family
Resolves: RHEL-40859
- Allow systemd-hostnamed read the vsock device
Resolves: RHEL-45309
- Allow systemd (PID 1) manage systemd conf files
Resolves: RHEL-45304
- Allow journald read systemd config files and directories
Resolves: RHEL-45304
- Allow systemd_domain read systemd_conf_t dirs
Resolves: RHEL-45304
- Label systemd configuration files with systemd_conf_t
Resolves: RHEL-45304
- Allow dhcpcd the kill capability
Resolves: RHEL-43417
- Add support for libvirt hooks
Resolves: RHEL-41168
* Mon Jun 24 2024 Troy Dawson <tdawson@redhat.com> - 40.13.3-2
- Bump release for June 2024 mass rebuild

View File

@ -1,3 +1,3 @@
SHA512 (selinux-policy-9eb8056.tar.gz) = bc804e78236420e1a57378041563c7d899f06d299363ff171d2e3d9a6b58e1da0aa876a3a2b7c8f837bc8fa52fafa2082c45a9f62c14c5e1a5a3b364a304d563
SHA512 (selinux-policy-00e82da.tar.gz) = d59f7a42c8802a8b907f1bc57829443be1810ff4b1e10d0942fd730b65889a1ff6e6b047b7def7ce3747ec0656ce9c3e281ff264f5d8478d1cbbbd339539a7d2
SHA512 (macro-expander) = 243ee49f1185b78ac47e56ca9a3f3592f8975fab1a2401c0fcc7f88217be614fe31805bacec602b728e7fcfc21dcc17d90e9a54ce87f3a0c97624d9ad885aea4
SHA512 (container-selinux.tgz) = 921f1cba3aed7e405a3c26f3a33484a0cb847f6bd5d1eac2fe52ee2645b2654eb19ad87127f03f4f1744dbd84b7447c4b0fabe20ee41f54d0779d573e31fd642
SHA512 (container-selinux.tgz) = dbf197403b68cdbfb8f919487a0021c989ceef61c66d67ab3d4f97d5c94a33aada6e1cf0269306dd69085b065f206f02c963bb3896b248d8bb3a3fda5cf08154