Bug 1494520
Summary: | Remove all unnecessary dac_override capability in SELinux modules | ||
---|---|---|---|
Product: | [Fedora] Fedora | Reporter: | Lukas Vrabec <lvrabec> |
Component: | selinux-policy | Assignee: | Lukas Vrabec <lvrabec> |
Status: | CLOSED CURRENTRELEASE | QA Contact: | Fedora Extras Quality Assurance <extras-qa> |
Severity: | high | Docs Contact: | |
Priority: | high | ||
Version: | rawhide | CC: | dwalsh, lsm5, lvrabec, lzap, plautrba |
Target Milestone: | --- | Keywords: | Tracking |
Target Release: | --- | ||
Hardware: | All | ||
OS: | Linux | ||
Whiteboard: | |||
Fixed In Version: | Doc Type: | If docs needed, set a value | |
Doc Text: | Story Points: | --- | |
Clone Of: | Environment: | ||
Last Closed: | 2019-06-05 11:22:55 UTC | Type: | Bug |
Regression: | --- | Mount Type: | --- |
Documentation: | --- | CRM: | |
Verified Versions: | Category: | --- | |
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
Cloudforms Team: | --- | Target Upstream Version: | |
Embargoed: |
Description
Lukas Vrabec
2017-09-22 12:13:03 UTC
Guys, not sure if this is relevant but this change with the same title broke Satellite 6.6 on RHEL8: https://bugzilla.redhat.com/show_bug.cgi?id=1716944 commit cc5d0d7c98d06866f26dd1f54b34f70fd3b531f9 Author: Lukas Vrabec <lvrabec> AuthorDate: Mon Aug 28 12:35:07 2017 +0200 Commit: Lukas Vrabec <lvrabec> CommitDate: Fri Sep 22 13:46:04 2017 +0200 Remove all unnecessary dac_override capability in SELinux modules. Just letting you know, we are going to add this rule back in our policy. Thanks for update Lukas. Closing bug as CURRENTRELEASE, as was mentioned in description, this is already fixed in Fedora 28. |