Bug 962670 - SELinux is preventing /usr/lib64/xulrunner/plugin-container from 'name_connect' accesses on the tcp_socket .
Summary: SELinux is preventing /usr/lib64/xulrunner/plugin-container from 'name_connec...
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Fedora
Classification: Fedora
Component: selinux-policy
Version: 18
Hardware: x86_64
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Miroslav Grepl
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard: abrt_hash:5ca2b2ec855c8f616aae9acd322...
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2013-05-14 08:23 UTC by backdoor03
Modified: 2013-10-25 11:37 UTC (History)
4 users (show)

Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2013-10-25 11:37:13 UTC
Type: ---
Embargoed:

Attachments (Terms of Use)

Description backdoor03 2013-05-14 08:23:02 UTC 
Description of problem:
Open page game.timezero.ru

Additional info:
hashmarkername: setroubleshoot
kernel:         3.8.11-200.fc18.x86_64
type:           libreport
Comment 1 Daniel Walsh 2013-05-14 20:41:56 UTC 
Can you attach AVCs?
Comment 2 Daniel Walsh 2013-05-14 20:46:07 UTC 
94a4f3d7c4971ff1d978217492036022a0796aab fixes this in git.

type=AVC msg=audit(1368564133.939:5598): avc:  denied  { name_connect } for  pid=13231 comm="plugin-containe" dest=5190 scontext=unconfined_u:unconfined_r:mozilla_plugin_t:s0-s0:c0.c1023 tcontext=system_u:object_r:aol_port_t:s0 tclass=tcp_socket
type=AVC msg=audit(1368564134.685:5600): avc:  denied  { name_connect } for  pid=13255 comm="plugin-containe" dest=5190 scontext=unconfined_u:unconfined_r:mozilla_plugin_t:s0-s0:c0.c1023 tcontext=system_u:object_r:aol_port_t:s0 tclass=tcp_socket
type=AVC msg=audit(1368564134.685:5601): avc:  denied  { name_connect } for  pid=13254 comm="plugin-containe" dest=5190 scontext=unconfined_u:unconfined_r:mozilla_plugin_t:s0-s0:c0.c1023 tcontext=system_u:object_r:aol_port_t:s0 tclass=tcp_socket
Note You need to log in before you can comment on or make changes to this bug.