Description of problem: SELinux policy believes that sesh is installed in /usr/sbin directory, but it is installed in /usr/libexec directory. Therefore the existing file is labelled incorrectly. Version-Release number of selected component (if applicable): selinux-policy-minimum-2.4.6-331.el5 selinux-policy-devel-2.4.6-331.el5 selinux-policy-targeted-2.4.6-331.el5 selinux-policy-2.4.6-331.el5 selinux-policy-strict-2.4.6-331.el5 selinux-policy-mls-2.4.6-331.el5 How reproducible: always Steps to Reproduce: # matchpathcon /usr/sbin/sesh /usr/sbin/sesh system_u:object_r:shell_exec_t # matchpathcon /usr/libexec/sesh /usr/libexec/sesh system_u:object_r:bin_t # rpm -ql sudo | grep sesh /usr/libexec/sesh # ls -Z /usr/sbin/sesh ls: /usr/sbin/sesh: No such file or directory # Actual results: * incorrect label Expected results: * correct label
This request was evaluated by Red Hat Product Management for inclusion in a Red Hat Enterprise Linux release. Product Management has requested further review of this request by Red Hat Engineering, for potential inclusion in a Red Hat Enterprise Linux release for currently deployed products. This request is not yet committed for inclusion in a release.
Fixed in selinux-policy-2.4.6-332.el5
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHBA-2013-0060.html