[Bug 607149] Re: Please merge refpolicy 2:0.2.20100524-2 (universe) from Debian unstable (main)

Launchpad Bug Tracker 607149 at bugs.launchpad.net
Tue Jul 20 09:25:10 BST 2010 

This bug was fixed in the package refpolicy - 2:0.2.20100524-2ubuntu1

---------------
refpolicy (2:0.2.20100524-2ubuntu1) maverick; urgency=low

  * Merge from debian unstable (LP: #607149). Remaining changes:
    - debian/control: drop "selinux" conflict (Debian bug 576598).

refpolicy (2:0.2.20100524-2) unstable; urgency=low

  * Include tmpreaper in base policy as mountnfs-bootclean.sh and
    mountall-bootclean.sh need to run as tmpreaper_t.
  * Added a new mcsdeleteall attribute for tmpreaper_t so that it can
    delete files and directories regardless of mcs level.
  * Allow perdition netlink_route_socket access.
  * Allow nrpe_t to execute sudo and search /var/spool
    also don't audit capability sys_resource.
  * Allow postfix_local_t to run sendmail for programs like vacation
  * Make the milter module be loaded if the milter-greylist or spamass-milter
    package is installed.  Make spamassassin policy optional when using the
    milter module.
  * Added a bunch of fixes from git mostly trivial stuff but also allowed
    bootloader_t to load modules, allowed kismet_t to search home directories,
  * Don't allow cron daemon to search /var/lib/logrotate.
  * Fixed a typo in gitosis.if
  * Commented out the genfscon line in selinux.if for the includes directory,
    now sepolgen-ifgen works without error.
 -- Angel Abad <angelabad at gmail.com>   Fri, 09 Jul 2010 06:30:26 +0100

** Changed in: refpolicy (Ubuntu)
       Status: Confirmed => Fix Released

-- 
Please merge refpolicy 2:0.2.20100524-2 (universe) from Debian unstable (main)
https://bugs.launchpad.net/bugs/607149
You received this bug notification because you are a member of Ubuntu
Sponsors Team, which is a direct subscriber.

Status in “refpolicy” package in Ubuntu: Fix Released

Bug description:
There is new version in Debian to be merged:

 refpolicy (2:0.2.20100524-2) unstable; urgency=low
 .
   * Include tmpreaper in base policy as mountnfs-bootclean.sh and
     mountall-bootclean.sh need to run as tmpreaper_t.
   * Added a new mcsdeleteall attribute for tmpreaper_t so that it can
     delete files and directories regardless of mcs level.
   * Allow perdition netlink_route_socket access.
   * Allow nrpe_t to execute sudo and search /var/spool
     also don't audit capability sys_resource.
   * Allow postfix_local_t to run sendmail for programs like vacation
   * Make the milter module be loaded if the milter-greylist or spamass-milter
     package is installed.  Make spamassassin policy optional when using the
     milter module.
   * Added a bunch of fixes from git mostly trivial stuff but also allowed
     bootloader_t to load modules, allowed kismet_t to search home directories,
   * Don't allow cron daemon to search /var/lib/logrotate.
   * Fixed a typo in gitosis.if
   * Commented out the genfscon line in selinux.if for the includes directory,
     now sepolgen-ifgen works without error.

Thanks!

More information about the Ubuntu-sponsors mailing list