* Tue Nov 28 2023 Zdenek Pytela <zpytela@redhat.com> - 40.6-1

- Add afterburn to modules-targeted-contrib.conf
- Update cifs interfaces to include fs_search_auto_mountpoints()
- Allow sudodomain read var auth files
- Allow spamd_update_t read hardware state information
- Allow virtnetworkd domain transition on tc command execution
- Allow sendmail MTA connect to sendmail LDA
- Allow auditd read all domains process state
- Allow rsync read network sysctls
- Add dhcpcd bpf capability to run bpf programs
- Dontaudit systemd-hwdb dac_override capability
- Allow systemd-sleep create efivarfs files
This commit is contained in:
Zdenek Pytela 2023-11-28 15:43:25 +01:00
parent bced996a06
commit ce3921683b
2 changed files with 17 additions and 4 deletions

View File

@ -1,6 +1,6 @@
# github repo with selinux-policy sources
%global giturl https://github.com/fedora-selinux/selinux-policy
%global commit b1374e9fc76c7f53d634a5f16d2cffaec6347824
%global commit 048e9da4ddef5829bef5141a48b5ad083c17c361
%global shortcommit %(c=%{commit}; echo ${c:0:7})
%define distro redhat
@ -23,7 +23,7 @@
%define CHECKPOLICYVER 3.2
Summary: SELinux policy configuration
Name: selinux-policy
Version: 40.5
Version: 40.6
Release: 1%{?dist}
License: GPL-2.0-or-later
Source: %{giturl}/archive/%{commit}/%{name}-%{shortcommit}.tar.gz
@ -814,6 +814,19 @@ exit 0
%endif
%changelog
* Tue Nov 28 2023 Zdenek Pytela <zpytela@redhat.com> - 40.6-1
- Add afterburn to modules-targeted-contrib.conf
- Update cifs interfaces to include fs_search_auto_mountpoints()
- Allow sudodomain read var auth files
- Allow spamd_update_t read hardware state information
- Allow virtnetworkd domain transition on tc command execution
- Allow sendmail MTA connect to sendmail LDA
- Allow auditd read all domains process state
- Allow rsync read network sysctls
- Add dhcpcd bpf capability to run bpf programs
- Dontaudit systemd-hwdb dac_override capability
- Allow systemd-sleep create efivarfs files
* Tue Nov 14 2023 Zdenek Pytela <zpytela@redhat.com> - 40.5-1
- Allow map xserver_tmpfs_t files when xserver_clients_write_xshm is on
- Allow graphical applications work in Wayland

View File

@ -1,3 +1,3 @@
SHA512 (selinux-policy-b1374e9.tar.gz) = 91fd7356f6d9075be02858dae81e67a86a1d9a101a6596dfd8bc0800696297f59e2ccf06c04f0164602424d7e9e03ed9ad271f72b1094947692d9e6b2f81ddee
SHA512 (container-selinux.tgz) = 4ffb9390c7bd5b54326f72c6f5c5d17734833104ee45cb4666b662589e5e4640526964a19a32bc2f2802f1586fd397562d72e9f8cf5f628aac62e6a6f3d553c3
SHA512 (selinux-policy-048e9da.tar.gz) = 32c3344c6a3c89f034657f4223ee073706aeb5742f2dcae51998f64fff9887723c7ed5011c6ad1d6545ecb8906f05dc611c83b2f15a96f4de3042fb62a54562f
SHA512 (container-selinux.tgz) = a0d7850d3e3af052fff48b3b8928ad9735774a66661edb7250dc529e5d7fe6efbe60281bbe1698e1af984f97f5edb5164d83a9ea5e2781d0d72bde53b4cce2e7
SHA512 (macro-expander) = 243ee49f1185b78ac47e56ca9a3f3592f8975fab1a2401c0fcc7f88217be614fe31805bacec602b728e7fcfc21dcc17d90e9a54ce87f3a0c97624d9ad885aea4