548677 – SELinux is preventing /usr/bin/abrt-pyhook-helper "read" access on /proc/<pid>/mountinfo.

Bug 548677 - SELinux is preventing /usr/bin/abrt-pyhook-helper "read" access on /proc/<pid>/mountinfo.

Summary: SELinux is preventing /usr/bin/abrt-pyhook-helper "read" access on /proc/<pid...

Keywords:
Status:	CLOSED ERRATA
Alias:	None
Product:	Fedora
Classification:	Fedora
Component:	selinux-policy
Sub Component:
Version:	12
Hardware:	i386
OS:	Linux
Priority:	low
Severity:	medium
Target Milestone:	---
Assignee:	Daniel Walsh
QA Contact:	Fedora Extras Quality Assurance
Docs Contact:
URL:
Whiteboard:	setroubleshoot_trace_hash:40eba48c6ef...
Duplicates (1):	550482 (view as bug list)
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2009-12-18 06:45 UTC by RJ
Modified:	2010-01-08 20:09 UTC (History)
CC List:	3 users (show)
Fixed In Version:	3.6.32-66.fc12
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2010-01-05 22:59:39 UTC
Type:	---
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description RJ 2009-12-18 06:45:41 UTC

Hash String generated from  selinux-policy-3.6.32-56.fc12,catchall,abrt-pyhook-hel,abrt_helper_t,unconfined_t,file,read
audit2allow suggests:

Comment 1 Daniel Walsh 2009-12-18 13:06:32 UTC


You can add these rules for now using

# grep avc /var/log/audit/audit.log | audit2allow -M mypol
# semodule -i mypol.pp

Fixed in selinux-policy-3.6.32-60.fc12.noarch

Comment 2 Fedora Update System 2009-12-22 21:55:28 UTC

selinux-policy-3.6.32-63.fc12 has been submitted as an update for Fedora 12.
http://admin.fedoraproject.org/updates/selinux-policy-3.6.32-63.fc12

Comment 3 Miroslav Grepl 2009-12-28 12:25:35 UTC

*** Bug 550482 has been marked as a duplicate of this bug. ***

Comment 4 Fedora Update System 2010-01-04 21:52:44 UTC

selinux-policy-3.6.32-66.fc12 has been submitted as an update for Fedora 12.
http://admin.fedoraproject.org/updates/selinux-policy-3.6.32-66.fc12

Comment 5 Fedora Update System 2010-01-05 22:48:44 UTC

selinux-policy-3.6.32-66.fc12 has been pushed to the Fedora 12 testing repository.  If problems still persist, please make note of it in this bug report.
 If you want to test the update, you can install it with 
 su -c 'yum --enablerepo=updates-testing update selinux-policy'.  You can provide feedback for this update here: http://admin.fedoraproject.org/updates/F12/FEDORA-2010-0184

Comment 6 Fedora Update System 2010-01-05 22:57:13 UTC

selinux-policy-3.6.32-63.fc12 has been pushed to the Fedora 12 stable repository.  If problems still persist, please make note of it in this bug report.

Comment 7 Fedora Update System 2010-01-08 20:03:27 UTC

selinux-policy-3.6.32-66.fc12 has been pushed to the Fedora 12 stable repository.  If problems still persist, please make note of it in this bug report.

Note You need to log in before you can comment on or make changes to this bug.