Back to bug 1403254

Who When What Removed Added
Milos Malik 2016-12-13 09:03:04 UTC QA Contact qe-baseos-security mmalik
OS Unspecified Linux
Lukas Vrabec 2016-12-15 15:42:56 UTC Priority unspecified high
Status NEW ASSIGNED
Severity unspecified high
Lukas Vrabec 2016-12-15 16:10:25 UTC Status ASSIGNED MODIFIED
Fixed In Version selinux-policy-3.13.1-113.el7
Marcel Kolaja 2016-12-22 08:45:42 UTC Blocks 1408126
Marcel Kolaja 2016-12-22 08:46:41 UTC Keywords ZStream
Milos Malik 2017-01-02 07:57:10 UTC Hardware Unspecified All
Lukas Vrabec 2017-01-09 13:37:17 UTC Status MODIFIED POST
Lukas Vrabec 2017-01-09 13:39:50 UTC Fixed In Version selinux-policy-3.13.1-113.el7
Lukas Vrabec 2017-01-09 14:09:37 UTC Status POST MODIFIED
Fixed In Version selinux-policy-3.13.1-117.el7
errata-xmlrpc 2017-01-12 12:49:30 UTC Status MODIFIED ON_QA
Mirek Jahoda 2017-01-13 15:23:06 UTC CC mjahoda
Docs Contact mjahoda
Doc Text Due missing policy rules, SELinux denied running systemd in a container. The rules to allow containers to write to unix_sysctls and to use FD's leaked to them from parent processes were added and the SELinux denials no longer occur.
Doc Type If docs needed, set a value Bug Fix
Mirek Jahoda 2017-01-13 15:30:09 UTC Doc Text Due missing policy rules, SELinux denied running systemd in a container. The rules to allow containers to write to unix_sysctls and to use FD's leaked to them from parent processes were added and the SELinux denials no longer occur. Due to missing policy rules, SELinux denied running systemd in a container. The rules to allow containers to write to unix_sysctls and to use FD's leaked to them from parent processes were added and the SELinux denials no longer occur.
Mirek Jahoda 2017-01-18 08:35:34 UTC Doc Text Due to missing policy rules, SELinux denied running systemd in a container. The rules to allow containers to write to unix_sysctls and to use FD's leaked to them from parent processes were added and the SELinux denials no longer occur. Due to missing policy rules, SELinux denied running systemd in a container. The rules to allow containers to write to "unix_sysctls" and to use file descriptors leaked to them from parent processes were added, and the SELinux denials no longer occur.
Milos Malik 2017-02-03 11:00:12 UTC Status ON_QA VERIFIED
errata-xmlrpc 2017-08-01 15:17:42 UTC Status VERIFIED CLOSED
Resolution --- ERRATA
Last Closed 2017-08-01 11:17:42 UTC

Back to bug 1403254