Fedora Packages

selinux-policy-targeted-42.12-1.fc43 in Fedora 43

↵ Return to the main page of selinux-policy-targeted
View build
Search for updates

Package Info
🠗 Changelog
🠗 Dependencies
🠗 Provides
🠗 Files

Changelog

Date Author Change
2025-10-04 Zdenek Pytela <zpytela at redhat dot com> - 42.12-1 - Adjust guest and xguest users policy for sshd-session - Allow valkey-server create and use netlink_rdma_socket - Allow blueman get attributes of filesystems with extended attributes - Update files_search_base_file_types() - Allow geoclue get attributes of the /dev/shm filesystem - Allow apcupsd get attributes of the /dev/shm filesystem - Allow sshd-session read cockpit pid files
2025-09-24 Zdenek Pytela <zpytela at redhat dot com> - 42.11-1 - Allow nfs generator create and use netlink sockets - Conditionally allow virt guests to read certificates in user home directories - xenstored_t needs CAP_SYS_ADMIN for XENSTORETYPE=domain (bsc#1247875) - Allow nfs-generator create and use udp sockets - Allow kdump search kdumpctl_tmp_t directories - Allow init open and read user tmp files - Fix the systemd_logind_stream_connect() interface - Allow staff and sysadm execute iotop using sudo - Allow sudodomains connect to systemd-logind over a unix socket
2025-09-16 Zdenek Pytela <zpytela at redhat dot com> - 42.10-1 - Add default contexts for sshd-seesion - Define types for new openssh executables
2025-09-15 Zdenek Pytela <zpytela at redhat dot com> - 42.9-1 - Fix systemd_manage_unit_symlinks() interface definition - Support coreos installation methods - Add a new type for systemd-ssh-issue PID files - Allow gnome-remote-desktop connect to unreserved ports - Allow mdadm the CAP_SYS_PTRACE capability - Allow iptables manage its private fifo_files in /tmp - Allow auditd manage its private run dirs - Revert "Allow virt_domain write to virt_image_t files" - Exclude tabrmd.if from interfaces list
2025-09-04 Zdenek Pytela <zpytela at redhat dot com> - 42.8-1 - Allow gdm create /etc/.pwd.lock with a file transition - Allow gdm bind a socket in the /run/systemd/userdbd directory - Allow nsswitch_domain connect to xdm over a unix domain socket - Allow systemd homed getattr all tmpfs files (bsc#1240883) - Allow systemd (PID 1) create lastlog entries - Allow systemd_homework_t transition pid files to lvm_var_run_t (bsc#1240883) - Allow gnome-remote-desktop speak with tabrmd over dbus (bsc#1244573) - Allow nm-dispatcher iscsi and sendmail plugins get pidfs attributes - Allow systemd-oomd watch tmpfs dirs - Allow chronyc the setgid and setuid capabilities
2025-08-29 Zdenek Pytela <zpytela at redhat dot com> - 42.7-1 - Label /usr/lib/systemd/systemd-ssh-issue with systemd_ssh_issue_exec_t - Allow stalld map sysfs files - Allow NetworkManager-dispatcher-winbind get pidfs attributes - Allow openvpn create and use generic netlink socket - policy_capabilities: remove estimated from released versions - policy_capabilities: add stub for userspace_initial_context - add netlink_xperm policy capability and nlmsg permission definitions - policy_capabilities: add ioctl_skip_cloexec - selinux-policy: add allow rule for tuned_ppd_t - selinux-policy: add allow rule for switcheroo_control_t - Label /run/audit with auditd_var_run_t
2025-08-12 Zdenek Pytela <zpytela at redhat dot com> - 42.6-1 - Allow virtqemud start a vm which uses nbdkit - Add nbdkit_signal() and nbdkit_signull() interfaces - Fix insights_client interfaces names - Add insights_core and insights_client interfaces - dist/targeted/modules.conf: enable slrnpull module - Allow bootupd delete symlinks in the /boot directory - Allow systemd-coredumpd capabilities in the user namespace - Allow openvswitch read virtqemud process state - Allow systemd-networkd to create leases directory
2025-08-08 Zdenek Pytela <zpytela at redhat dot com> - 42.5-1 - Apply generator template to selinux-autorelabel generator - Support virtqemud handle hotplug hostdev devices - Allow virtstoraged create qemu /var/run files - Allow unconfined_domain_type cap2_userns capabilities - Label /usr/libexec/postfix/tlsproxy with postfix_smtp_exec_t - Remove the mysql module sources - dist/targeted/modules.conf: Enable kmscon module (bsc#1238137) - Update kmscon policy module to kmscon version 9 (bsc#1238137) - Allow login to getattr pidfs - Allow systemd to map files under /sys - systemd: drop duplicate init_nnp_daemon_domain lines - Fix typo - Allow logwatch stream connect to opensmtpd - Allow geoclue read NetworkManager pid files
2025-08-04 Zdenek Pytela <zpytela at redhat dot com> - 42.4-1 - Allow unconfined user a file transition for creating sudo log directory - Allow virtqemud read/write inherited dri devices - Allow xdm_t create user namespaces - Update policy for login_userdomain - Add ppd_base_profile to file transition to get tuned_rw_etc_t type - Update policy for bootupd - Allow logwatch work with opensmtpd - Update dovecot policy for dovecot 2.4.1 - Allow ras-mc-ctl write to sysfs files - Allow anaconda-generator get attributes of all filesystems - Add the rhcd_rw_fifo_files() interface - Allow systemd-coredump the sys_chroot capability - Allow hostapd write to socket files in /tmp - Recognize /var/home as an alternate path for /home - Label /var/lib/lastlog with lastlog_t
2025-07-28 Zdenek Pytela <zpytela at redhat dot com> - 42.3-1 - Allow virtqemud write to sysfs files - Allow irqbalance search sssd lib directories - Allow samba-dcerpcd send sigkills to passwd - Allow systemd-oomd watch dbus pid sock files - Allow some confined users read and map generic log files - Allow login_userdomain watch the /run/log/journal directory - Allow login_userdomain dbus chat with tuned-ppd - Allow login_userdomain dbus chat with switcheroo-control - Allow userdomain to connect to systemd-oomd over a unix socket - Add insights_client_delete_lib_dirs() interface

Dependencies

Provides

  • config(selinux-policy-targeted)
  • selinux-policy-any
  • selinux-policy-targeted

Files


Sources on Pagure