Rapid7 Vulnerability & Exploit Database

ELSA-2011-0414 Important: Oracle Linux policycoreutils security update

Back to Search

ELSA-2011-0414 Important: Oracle Linux policycoreutils security update

Severity
7
CVSS
(AV:L/AC:M/Au:N/C:C/I:C/A:C)
Published
04/05/2011
Created
07/25/2018
Added
12/20/2011
Modified
07/04/2017

Description

Oracle Linux Security Advisory ELSA-2011-0414 https://rhn.redhat.com/errata/RHSA-2011-0414.html The following updated rpms for Oracle Linux 6 have been uploaded to the Unbreakable Linux Network: i386: policycoreutils-2.0.83-19.8.el6_0.i686.rpm policycoreutils-gui-2.0.83-19.8.el6_0.i686.rpm policycoreutils-newrole-2.0.83-19.8.el6_0.i686.rpm policycoreutils-python-2.0.83-19.8.el6_0.i686.rpm policycoreutils-sandbox-2.0.83-19.8.el6_0.i686.rpm selinux-policy-3.7.19-54.0.1.el6_0.5.noarch.rpm selinux-policy-doc-3.7.19-54.0.1.el6_0.5.noarch.rpm selinux-policy-minimum-3.7.19-54.0.1.el6_0.5.noarch.rpm selinux-policy-mls-3.7.19-54.0.1.el6_0.5.noarch.rpm selinux-policy-targeted-3.7.19-54.0.1.el6_0.5.noarch.rpm x86_64: policycoreutils-2.0.83-19.8.el6_0.x86_64.rpm policycoreutils-gui-2.0.83-19.8.el6_0.x86_64.rpm policycoreutils-newrole-2.0.83-19.8.el6_0.x86_64.rpm policycoreutils-python-2.0.83-19.8.el6_0.x86_64.rpm policycoreutils-sandbox-2.0.83-19.8.el6_0.x86_64.rpm selinux-policy-3.7.19-54.0.1.el6_0.5.noarch.rpm selinux-policy-doc-3.7.19-54.0.1.el6_0.5.noarch.rpm selinux-policy-minimum-3.7.19-54.0.1.el6_0.5.noarch.rpm selinux-policy-mls-3.7.19-54.0.1.el6_0.5.noarch.rpm selinux-policy-targeted-3.7.19-54.0.1.el6_0.5.noarch.rpm SRPMS: http://oss.oracle.com/ol6/SRPMS-updates/policycoreutils-2.0.83-19.8.el6_0.src.rpm http://oss.oracle.com/ol6/SRPMS-updates/selinux-policy-3.7.19-54.0.1.el6_0.5.src.rpm Description of changes: policycoreutils: [2.0.83-19.8] - Fix seunshare to work with /tmp content when SELinux context is not provided Resolves: #679689 [2.0.83-19.7] - put back correct chcon - Latest fixes for seunshare [2.0.83-19.6] - Fix rsync command to work if the directory is old. - Fix all tests Resolves: #679689 [2.0.83-19.5] - Add requires rsync and fix man page for seunshare [2.0.83-19.4] - fix to sandbox - Fix seunshare to use more secure handling of /tmp - Rewrite seunshare to make sure /tmp is mounted stickybit owned by root - Change to allow sandbox to run on nfs homedirs, add start python script - change default location of HOMEDIR in sandbox to /tmp/.sandbox_home_* - Move seunshare to sandbox package - Fix sandbox to show correct types in usage statement selinux-policy: [3.7.19-54.0.1.el6_0.5] - Allow ocfs2 to be mounted with file_t type. [3.7.19-54.el6_0.5] - seunshare needs to be able to mounton nfs/cifs/fusefs homedirs Resolves: #684918 [3.7.19-54.el6_0.4] - Fix to sandbox * selinux-policy fixes for policycoreutils sandbox changes - Fix seunshare to use more secure handling of /tmp - Change to allow sandbox to run on nfs homedirs, add start python script

Solution(s)

  • oracle-linux-upgrade-policycoreutils
  • oracle-linux-upgrade-policycoreutils-gui
  • oracle-linux-upgrade-policycoreutils-newrole
  • oracle-linux-upgrade-policycoreutils-python
  • oracle-linux-upgrade-policycoreutils-sandbox
  • oracle-linux-upgrade-selinux-policy
  • oracle-linux-upgrade-selinux-policy-doc
  • oracle-linux-upgrade-selinux-policy-minimum
  • oracle-linux-upgrade-selinux-policy-mls
  • oracle-linux-upgrade-selinux-policy-targeted

With Rapid7 live dashboards, I have a clear view of all the assets on my network, which ones can be exploited, and what I need to do in order to reduce the risk in my environment in real-time. No other tool gives us that kind of value and insight.

– Scott Cheney, Manager of Information Security, Sierra View Medical Center

;