Bug 428849 - selinux prevents /sbin/killall5 xdm_t sys_ptrace
selinux prevents /sbin/killall5 xdm_t sys_ptrace
Product: Fedora
Classification: Fedora
Component: xorg-x11-xdm (Show other bugs)
All Linux
low Severity low
: ---
: ---
Assigned To: Søren Sandmann Pedersen
Fedora Extras Quality Assurance
: SELinux
: 428848 (view as bug list)
Depends On:
  Show dependency treegraph
Reported: 2008-01-15 11:36 EST by Juha Tuomala
Modified: 2014-06-18 05:09 EDT (History)
4 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2008-06-14 05:17:32 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description Juha Tuomala 2008-01-15 11:36:44 EST
Additional Information        

Source Context                system_u:system_r:xdm_t:s0-s0:c0.c1023
Target Context                system_u:system_r:xdm_t:s0-s0:c0.c1023
Target Objects                None [ capability ]
Affected RPM Packages         sysvinit-2.86-18 [application]
Policy RPM                    selinux-policy-3.0.8-64.fc8
Selinux Enabled               True
Policy Type                   targeted
MLS Enabled                   True
Enforcing Mode                Enforcing
Plugin Name                   plugins.catchall
Host Name                     xxxxxxxxxxx
Platform                      Linux xxxxxxxxxxxx #1 SMP Wed
                              Nov 21 17:56:40 EST 2007 x86_64 x86_64
Alert Count                   2
First Seen                    Thu 20 Dec 2007 12:50:52 PM EET
Last Seen                     Thu 20 Dec 2007 12:50:52 PM EET
Local ID                      74c90cf0-1a9f-421c-b9f9-15d03076b4ba
Line Numbers                  

Raw Audit Messages            

avc: denied { sys_ptrace } for comm=pidof egid=0 euid=0 exe=/sbin/killall5
exit=-13 fsgid=0 fsuid=0 gid=0 items=0 pid=7577
scontext=system_u:system_r:xdm_t:s0-s0:c0.c1023 sgid=0
subj=system_u:system_r:xdm_t:s0-s0:c0.c1023 suid=0 tclass=capability
tcontext=system_u:system_r:xdm_t:s0-s0:c0.c1023 tty=(none) uid=0

Version-Release number of selected component (if applicable):
# rpm -qf /usr/bin/xdm
Comment 1 Juha Tuomala 2008-01-15 11:37:35 EST
*** Bug 428848 has been marked as a duplicate of this bug. ***
Comment 2 Daniel Walsh 2008-01-24 13:42:45 EST
You can allow this for now by executing 

# audit2allow -M mypol -i /var/log/audit/audit.log 
# semodule -i mypol.pp

Fixed in selinux-policy-3.0.8-82.fc8
Comment 3 Patrice Dumas 2008-06-14 04:03:11 EDT
Does this bug need testing or should it simply be closed?
Comment 4 Juha Tuomala 2008-06-14 05:02:07 EDT
i'll reopen it if needed so please close.

Note You need to log in before you can comment on or make changes to this bug.