Bug 202259 - Modify SELinux targeted policy to allow GCJ applet viewer execmem permissions
Summary: Modify SELinux targeted policy to allow GCJ applet viewer execmem permissions
Keywords:
Status: CLOSED DUPLICATE of bug 201038
Alias: None
Product: Fedora
Classification: Fedora
Component: selinux-policy-targeted
Version: rawhide
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: Daniel Walsh
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2006-08-11 20:26 UTC by louisgtwo
Modified: 2007-11-30 22:11 UTC (History)
1 user (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2006-09-18 19:08:14 UTC
Type: ---
Embargoed:

Attachments (Terms of Use)

Description louisgtwo 2006-08-11 20:26:13 UTC 
When I visited a page with an applet it froze firefox. I looked in the logs and
saw this:

Aug 11 15:13:55 soncomputer kernel: audit(1155323634.469:38): avc:  denied  {
execmem } for  pid=3198 comm="gappletviewer"
scontext=user_u:system_r:unconfined_t:s0
tcontext=user_u:system_r:unconfined_t:s0 tclass=process

GCJ applet viewer probably should be fixed in the future to not require execmem
permissions but meanwhile the SELinux targeted policy can be modified to allow this.
Comment 1 Andrew Haley 2006-08-12 07:47:28 UTC 
This is a duplicate of the RHEL bug
https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=201038

I'm not sure it makes any sense to trace these separately.
Comment 2 Daniel Walsh 2006-09-18 19:08:14 UTC 

*** This bug has been marked as a duplicate of 201038 ***
Comment 3 Fedora Update System 2007-03-07 22:55:39 UTC 
ekiga-2.0.1-5 has been pushed for fc5, which should resolve this issue.  If these problems are still present in this version, then please make note of it in this bug report.
Note You need to log in before you can comment on or make changes to this bug.