- Issued:
- 2006-03-07
- Updated:
- 2006-03-07
RHBA-2006:0042 - Bug Fix Advisory
Synopsis
policycoreutils bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Insights patch analysis
Identify and remediate systems affected by this advisory.
Topic
Updated policycoreutils packages that address fixfiles and genhomedircon
bugs are now available.
Description
Security-enhanced Linux is a patch of the Linux® kernel and a number of
utilities with enhanced security functionality designed to add mandatory
access controls to Linux. The policycoreutils package contains the policy
core utilities that are required for basic operation of a SELinux system.
On SELinux policy updates, RPM uses the fixfiles script to attempt to
partially relabel the file system to match the policy. The script cannot
always specify down to the file level the names of objects to be relabeled.
When this happens, fixfiles recursively walks the file tree under the
directory that needs to be relabled. If a file system that does not
support Extended Attributes (AFS, NFS, DOS ...) is mounted under that
directory, the script continued to try to relabel it, even though it failed
on every file. This greatly increased the length of the update process.
The genhomedircon script attempts to make the home directories of all login
users on the system into local directories. Previously, a problem in the
algorithm to determine whether a user is a login user caused the system to
be mislabeled, causing many applications to fail. This update checks
whether the user has a valid shell as a method of recognizing login users.
Users of policycoreutils should upgrade to these updated packages, which
resolve these issues.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
This update is available via Red Hat Network. To use Red Hat Network,
launch the Red Hat Update Agent with the following command:
up2date
This will start an interactive process that will result in the appropriate
RPMs being upgraded on your system.
Affected Products
- Red Hat Enterprise Linux Server 4 x86_64
- Red Hat Enterprise Linux Server 4 ia64
- Red Hat Enterprise Linux Server 4 i386
- Red Hat Enterprise Linux Workstation 4 x86_64
- Red Hat Enterprise Linux Workstation 4 ia64
- Red Hat Enterprise Linux Workstation 4 i386
- Red Hat Enterprise Linux Desktop 4 x86_64
- Red Hat Enterprise Linux Desktop 4 i386
- Red Hat Enterprise Linux for IBM z Systems 4 s390x
- Red Hat Enterprise Linux for IBM z Systems 4 s390
- Red Hat Enterprise Linux for Power, big endian 4 ppc
Fixes
- BZ - 172959 - fixfiles doesn't ignore afs filesystems
CVEs
(none)
References
(none)
Red Hat Enterprise Linux Server 4
SRPM | |
---|---|
policycoreutils-1.18.1-4.9.src.rpm | SHA-256: ef232bfdb0c223e66e966558f12e7a2987f7208a25ddd2478d47746e1109e003 |
x86_64 | |
policycoreutils-1.18.1-4.9.x86_64.rpm | SHA-256: b990f921fc05e05ea47fff6da5d73eafe39353a9d93d575fc6062eef56c336e8 |
policycoreutils-1.18.1-4.9.x86_64.rpm | SHA-256: b990f921fc05e05ea47fff6da5d73eafe39353a9d93d575fc6062eef56c336e8 |
ia64 | |
policycoreutils-1.18.1-4.9.ia64.rpm | SHA-256: 95d0c6aed6e1e66209111d662c17e5efa46763cfdfce87edd99c849656feac49 |
policycoreutils-1.18.1-4.9.ia64.rpm | SHA-256: 95d0c6aed6e1e66209111d662c17e5efa46763cfdfce87edd99c849656feac49 |
i386 | |
policycoreutils-1.18.1-4.9.i386.rpm | SHA-256: 12b8896456de68ccccd05434297277dff7b5be323900f6e7c75dad988c3dbf2b |
policycoreutils-1.18.1-4.9.i386.rpm | SHA-256: 12b8896456de68ccccd05434297277dff7b5be323900f6e7c75dad988c3dbf2b |
Red Hat Enterprise Linux Workstation 4
SRPM | |
---|---|
policycoreutils-1.18.1-4.9.src.rpm | SHA-256: ef232bfdb0c223e66e966558f12e7a2987f7208a25ddd2478d47746e1109e003 |
x86_64 | |
policycoreutils-1.18.1-4.9.x86_64.rpm | SHA-256: b990f921fc05e05ea47fff6da5d73eafe39353a9d93d575fc6062eef56c336e8 |
ia64 | |
policycoreutils-1.18.1-4.9.ia64.rpm | SHA-256: 95d0c6aed6e1e66209111d662c17e5efa46763cfdfce87edd99c849656feac49 |
i386 | |
policycoreutils-1.18.1-4.9.i386.rpm | SHA-256: 12b8896456de68ccccd05434297277dff7b5be323900f6e7c75dad988c3dbf2b |
Red Hat Enterprise Linux Desktop 4
SRPM | |
---|---|
policycoreutils-1.18.1-4.9.src.rpm | SHA-256: ef232bfdb0c223e66e966558f12e7a2987f7208a25ddd2478d47746e1109e003 |
x86_64 | |
policycoreutils-1.18.1-4.9.x86_64.rpm | SHA-256: b990f921fc05e05ea47fff6da5d73eafe39353a9d93d575fc6062eef56c336e8 |
i386 | |
policycoreutils-1.18.1-4.9.i386.rpm | SHA-256: 12b8896456de68ccccd05434297277dff7b5be323900f6e7c75dad988c3dbf2b |
Red Hat Enterprise Linux for IBM z Systems 4
SRPM | |
---|---|
policycoreutils-1.18.1-4.9.src.rpm | SHA-256: ef232bfdb0c223e66e966558f12e7a2987f7208a25ddd2478d47746e1109e003 |
s390x | |
policycoreutils-1.18.1-4.9.s390x.rpm | SHA-256: 76b34befdd9e8d8c7e2f20c258aed107dbe758fe3355988ff64bc5f2a556b031 |
s390 | |
policycoreutils-1.18.1-4.9.s390.rpm | SHA-256: a2ef82bbd1404d5b361a0a657043694c3b76ef0cb1780e9bef86a7d90732933e |
Red Hat Enterprise Linux for Power, big endian 4
SRPM | |
---|---|
policycoreutils-1.18.1-4.9.src.rpm | SHA-256: ef232bfdb0c223e66e966558f12e7a2987f7208a25ddd2478d47746e1109e003 |
ppc | |
policycoreutils-1.18.1-4.9.ppc.rpm | SHA-256: 3dca4fd7333af1fb1ec77771add1bbddc09a0ba7b9d0b5738efe42aa318abc01 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.