Login
[x]
Log in using an account from:
Fedora Account System
Red Hat Associate
Red Hat Customer
Or login using a Red Hat Bugzilla account
Forgot Password
Login:
Hide Forgot
Create an Account
Red Hat Bugzilla – Attachment 249831 Details for
Bug 369341
prelink gets selinux violation on vdso-sysenter.so
[?]
New
Simple Search
Advanced Search
My Links
Browse
Requests
Reports
Current State
Search
Tabular reports
Graphical reports
Duplicates
Other Reports
User Changes
Plotly Reports
Bug Status
Bug Severity
Non-Defaults
|
Product Dashboard
Help
Page Help!
Bug Writing Guidelines
What's new
Browser Support Policy
5.0.4.rh83 Release notes
FAQ
Guides index
User guide
Web Services
Contact
Legal
This site requires JavaScript to be enabled to function correctly, please enable it.
selinux information
selinux_alert.txt (text/plain), 2.66 KB, created by
Daryll
on 2007-11-07 02:43:48 UTC
(
hide
)
Description:
selinux information
Filename:
MIME Type:
Creator:
Daryll
Created:
2007-11-07 02:43:48 UTC
Size:
2.66 KB
patch
obsolete
>Summary > SELinux is preventing /usr/sbin/prelink (prelink_t) "read" on <Unknown> > (modules_object_t). > >Detailed Description > SELinux denied prelink read on <Unknown>. The prelink program is only > allowed to manipulate files that are identified as executables or shared > libraries by SELinux. Libraries that get placed in lib directories get > labeled by default as a shared library. Similarly, executables that get > placed in a bin or sbin directory get labeled as executables by SELinux. > However, if these files get installed in other directories they might not > get the correct label. If prelink is trying to manipulate a file that is > not a binary or share library this may indicate an intrusion attack. > >Allowing Access > You can alter the file context by executing "chcon -t bin_t <Unknown>" or > "chcon -t lib_t <Unknown>" if it is a shared library. If you want to make > these changes permanent you must execute the semanage command. "semanage > fcontext -a -t bin_t <Unknown>" or "semanage fcontext -a -t shlib_t > <Unknown>". If you feel this executable/shared library is in the wrong > location please file a bug against the package that includes the file. If > you feel that SELinux should know about this file and label it correctly > please file a bug against > http://bugzilla.redhat.com/bugzilla/enter_bug.cgi. > >Additional Information > >Source Context system_u:system_r:prelink_t:SystemLow-SystemHigh >Target Context system_u:object_r:modules_object_t >Target Objects None [ file ] >Affected RPM Packages prelink-0.4.0-1 [application] >Policy RPM selinux-policy-3.0.8-44.fc8 >Selinux Enabled True >Policy Type targeted >MLS Enabled True >Enforcing Mode Enforcing >Plugin Name plugins.prelink_mislabled >Host Name ninja >Platform Linux ninja 2.6.23.1-42.fc8 #1 SMP Tue Oct 30 > 13:55:12 EDT 2007 i686 i686 >Alert Count 3 >First Seen Tue 06 Nov 2007 04:17:50 AM PST >Last Seen Tue 06 Nov 2007 04:17:54 AM PST >Local ID 24f40165-24e2-490e-8a03-d5be4f355987 >Line Numbers > >Raw Audit Messages > >avc: denied { read } for comm=prelink dev=dm-0 egid=0 euid=0 >exe=/usr/sbin/prelink exit=-13 fsgid=0 fsuid=0 gid=0 items=0 name=vdso- >sysenter.so pid=19710 scontext=system_u:system_r:prelink_t:s0-s0:c0.c1023 sgid=0 >subj=system_u:system_r:prelink_t:s0-s0:c0.c1023 suid=0 tclass=file >tcontext=system_u:object_r:modules_object_t:s0 tty=(none) uid=0 >
<b>You cannot view the attachment while viewing its details because your browser does not support IFRAMEs. <a href="attachment.cgi?id=249831">View the attachment on a separate page</a>.</b>
View Attachment As Raw
Actions:
View
Attachments on
bug 369341
: 249831