Issued:: 2012-03-07
Updated:: 2012-03-07

RHBA-2012:0364 - selinux-policy bug fix update

Synopsis

selinux-policy bug fix update

Type/Severity

Bug Fix Advisory

Topic

Updated selinux-policy packages that fix two bugs are now available for Red Hat Enterprise Linux 6.

Description

The selinux-policy packages contain the rules that govern how confined processes run on the system.

This update fixes the following bugs:

An incorrect SELinux policy prevented the qpidd service from connecting to the AMQP (Advanced Message Queuing Protocol) port when the qpidd daemon was configured with Corosync clustering. These selinux-policy packages contain updated SELinux rules, which allow the qpidd service to be started correctly. (#BZ796331)
With SELinux in enforcing mode, an OpenMPI job submitted to the parallel universe environment failed on ssh keys generation. This happened because the ssh-keygen utility was not able to read from and write to the "/var/lib/condor/" directory". With this update, a new SELinux policy has been added for the "/var/lib/condor/" directory, which allows the ssh-keygen utility to read from and write to this directory. (#BZ796585)

All users of selinux-policy are advised to upgrade to these updated packages, which fix these bugs.

Solution

Before applying this update, make sure all previously-released errata relevant to your system have been applied.

This update is available via the Red Hat Network. Details on how to use the Red Hat Network to apply this update are available at This content is not included.https://access.redhat.com/kb/docs/DOC-11259

Affected Products

Product	Version	Arch
Red Hat Storage	2.0	x86_64
Red Hat Storage for Public Cloud (via RHUI)	2.0	x86_64
Red Hat Gluster Storage Server for On-premise	2.0	x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support	6.2	x86_64
Red Hat Enterprise Linux for x86_64 - Extended Update Support	6.2	i386
Red Hat Enterprise Linux for Scientific Computing	6	x86_64
Red Hat Enterprise Linux for Power, big endian	6	ppc64
Red Hat Enterprise Linux for Power, big endian - Extended Update Support	6.2	ppc64
Red Hat Enterprise Linux for IBM z Systems	6	s390x
Red Hat Enterprise Linux for IBM z Systems - Extended Update Support	6.2	s390x
Red Hat Enterprise Linux Workstation	6	x86_64
Red Hat Enterprise Linux Workstation	6	i386
Red Hat Enterprise Linux Server	6	x86_64
Red Hat Enterprise Linux Server	6	i386
Red Hat Enterprise Linux Server from RHUI	6	x86_64
Red Hat Enterprise Linux Server from RHUI	6	i386
Red Hat Enterprise Linux Server - Extended Update Support from RHUI	6.2	x86_64
Red Hat Enterprise Linux Server - Extended Update Support from RHUI	6.2	i386
Red Hat Enterprise Linux Server - Extended Life Cycle Support	6	x86_64
Red Hat Enterprise Linux Server - Extended Life Cycle Support	6	i386
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension	6	x86_64
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension	6	i386
Red Hat Enterprise Linux Server - Extended Life Cycle Support Extension (for IBM z Systems)	6	s390x
Red Hat Enterprise Linux Server - Extended Life Cycle Support (for IBM z Systems)	6	s390x
Red Hat Enterprise Linux Server - AUS	6.2	x86_64
Red Hat Enterprise Linux Desktop	6	x86_64
Red Hat Enterprise Linux Desktop	6	i386

Updated Packages

selinux-policy-doc-3.7.19-126.el6_2.10.noarch.rpm
selinux-policy-3.7.19-126.el6_2.10.src.rpm
selinux-policy-3.7.19-126.el6_2.10.noarch.rpm
selinux-policy-targeted-3.7.19-126.el6_2.10.noarch.rpm
selinux-policy-mls-3.7.19-126.el6_2.10.noarch.rpm
selinux-policy-minimum-3.7.19-126.el6_2.10.noarch.rpm

Fixes

This content is not included.BZ - 796331

CVEs

(none)

References

(none)

Additional information

The Red Hat security contact is This content is not included.secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
Offline Security Data data is available for integration with other systems. See Offline Security Data API to get started.