Bug 1298514
Summary: | netutils_t policy prevents tcpdump from calling chown/setattr | ||
---|---|---|---|
Product: | Red Hat Enterprise Linux 6 | Reporter: | Milos Malik <mmalik> |
Component: | selinux-policy | Assignee: | Miroslav Grepl <mgrepl> |
Status: | CLOSED ERRATA | QA Contact: | Milos Malik <mmalik> |
Severity: | medium | Docs Contact: | |
Priority: | medium | ||
Version: | 6.7 | CC: | dwalsh, lvrabec, mgrepl, mmalik, plautrba, pvrabec, ralston, ssekidde |
Target Milestone: | rc | ||
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | selinux-policy-3.7.19-288.el6 | Doc Type: | Bug Fix |
Doc Text: | Story Points: | --- | |
Clone Of: | 1184260 | Environment: | |
Last Closed: | 2016-05-10 20:04:45 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Milos Malik
2016-01-14 10:09:46 UTC
Actual results (permissive mode): ---- type=PATH msg=audit(01/14/2016 11:11:22.771:305) : item=0 name=./capturefile inode=187869 dev=fc:03 mode=file,644 ouid=root ogid=root rdev=00:00 obj=system_u:object_r:netutils_tmp_t:s0 nametype=NORMAL type=CWD msg=audit(01/14/2016 11:11:22.771:305) : cwd=/tmp type=SYSCALL msg=audit(01/14/2016 11:11:22.771:305) : arch=x86_64 syscall=chown success=yes exit=0 a0=0x1a95a40 a1=tcpdump a2=tcpdump a3=0x7fff7f146660 items=1 ppid=5048 pid=23981 auid=root uid=root gid=root euid=root suid=root fsuid=root egid=root sgid=root fsgid=root tty=pts0 ses=1 comm=tcpdump exe=/usr/sbin/tcpdump subj=system_u:system_r:netutils_t:s0 key=(null) type=AVC msg=audit(01/14/2016 11:11:22.771:305) : avc: denied { chown } for pid=23981 comm=tcpdump capability=chown scontext=system_u:system_r:netutils_t:s0 tcontext=system_u:system_r:netutils_t:s0 tclass=capability ---- Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. https://rhn.redhat.com/errata/RHBA-2016-0763.html |