Updated selinux-policy packages that fix two bugs are now available for Red HatEnterprise Linux 7.

The selinux-policy packages contain the rules that govern how confined processesrun on the system.This update fixes the following bugs:* Previously, the supervdsmServer service was not a part of the SELinux policyfor virtualization. Consequently, supervdsmServer was running as SELinuxunconfined domain for services and the firewalld daemon was not able tocommunicate with the superVDSM subprocess. With this update, the SELinuxpolicy for virtualization has been updated to have supervdsmServer running asthe virtd_t SELinux domain, which allows firewalld to communicate withsuperVDSM. (BZ#1172146)* Due to missing SELinux policy rules, the sanlock service was not able to sendthe SIGTERM or SIGKILL signals to the vdsm daemon. With these updated SELinuxpackages, the rules have been added to allow sanlock with sanlock_t SELinuxdomain to send SIGTERM or SIGKILL to vdsm with the virtd_t SELinux domain, thusfixing this bug. (BZ#1172147)Users of selinux-policy are advised to upgrade to these updated packages, whichfix these bugs.
Before applying this update, make sure all previously released errata relevantto your system have been applied.This update is available via the Red Hat Network. Details on how to use the RedHat Network to apply this update are available athttps://access.redhat.com/articles/11258Red Hat Enterprise Linux Desktop (v. 7)

SRPMS:
selinux-policy-3.12.1-153.el7_0.13.src.rpm
    MD5: b34102cb31de4734caf4c140c38c7133SHA-256: c0a931df01dc9307c5415cff4210ec77066d2409d70e2dc448fbb8bd84905ccb
 
x86_64:
selinux-policy-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 41c268de5ffff0059b0c2634544a33a4SHA-256: df18cee55569028a2f9f74a9590a3c0f8bc68bf38961118a5ddac09bf40cf958
selinux-policy-devel-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 5b83e291de33b88b3783c6beb404b2d0SHA-256: f2bac4c8935a7040cf5762508dbbb35e236263841a733b2661ecf0e2441ebd88
selinux-policy-doc-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 19fb0322089a50ccad0b567b317b40aaSHA-256: 9f9a1e28fb52506862866148ad7018b067c5f7df9dbb0f8c2eb3be5cf6a604ea
selinux-policy-minimum-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 1996ff3e4adc21d4b5d9e28de212fc07SHA-256: c3f853df7fbf5d96b4cf3762eafcad6ee8981991f36680e20a0c68ffd8cc48b1
selinux-policy-mls-3.12.1-153.el7_0.13.noarch.rpm
    MD5: aef1a069862014500cadf7d19ffd623bSHA-256: 0cf440aceebd133818ec88b271792b469c9c67c630582a4d86eb2730a8328da6
selinux-policy-sandbox-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 74c9e9bc147e980c04a1922301502c61SHA-256: 64fe636cc1a964f85f76078951b1b999e2c7ad5dcab6b7ed6d3666b9e58d90a0
selinux-policy-targeted-3.12.1-153.el7_0.13.noarch.rpm
    MD5: dba6c1f0d04418fdccfd68a0dd7bf11cSHA-256: dafa463018e652ab9aeb0dd53d2a57c9c357ef34d7c979df419d271c37d16c67
 
Red Hat Enterprise Linux HPC Node (v. 7)

SRPMS:
selinux-policy-3.12.1-153.el7_0.13.src.rpm
    MD5: b34102cb31de4734caf4c140c38c7133SHA-256: c0a931df01dc9307c5415cff4210ec77066d2409d70e2dc448fbb8bd84905ccb
 
x86_64:
selinux-policy-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 41c268de5ffff0059b0c2634544a33a4SHA-256: df18cee55569028a2f9f74a9590a3c0f8bc68bf38961118a5ddac09bf40cf958
selinux-policy-devel-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 5b83e291de33b88b3783c6beb404b2d0SHA-256: f2bac4c8935a7040cf5762508dbbb35e236263841a733b2661ecf0e2441ebd88
selinux-policy-doc-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 19fb0322089a50ccad0b567b317b40aaSHA-256: 9f9a1e28fb52506862866148ad7018b067c5f7df9dbb0f8c2eb3be5cf6a604ea
selinux-policy-minimum-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 1996ff3e4adc21d4b5d9e28de212fc07SHA-256: c3f853df7fbf5d96b4cf3762eafcad6ee8981991f36680e20a0c68ffd8cc48b1
selinux-policy-mls-3.12.1-153.el7_0.13.noarch.rpm
    MD5: aef1a069862014500cadf7d19ffd623bSHA-256: 0cf440aceebd133818ec88b271792b469c9c67c630582a4d86eb2730a8328da6
selinux-policy-sandbox-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 74c9e9bc147e980c04a1922301502c61SHA-256: 64fe636cc1a964f85f76078951b1b999e2c7ad5dcab6b7ed6d3666b9e58d90a0
selinux-policy-targeted-3.12.1-153.el7_0.13.noarch.rpm
    MD5: dba6c1f0d04418fdccfd68a0dd7bf11cSHA-256: dafa463018e652ab9aeb0dd53d2a57c9c357ef34d7c979df419d271c37d16c67
 
Red Hat Enterprise Linux Server (v. 7)

SRPMS:
selinux-policy-3.12.1-153.el7_0.13.src.rpm
    MD5: b34102cb31de4734caf4c140c38c7133SHA-256: c0a931df01dc9307c5415cff4210ec77066d2409d70e2dc448fbb8bd84905ccb
 
PPC:
selinux-policy-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 41c268de5ffff0059b0c2634544a33a4SHA-256: df18cee55569028a2f9f74a9590a3c0f8bc68bf38961118a5ddac09bf40cf958
selinux-policy-devel-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 5b83e291de33b88b3783c6beb404b2d0SHA-256: f2bac4c8935a7040cf5762508dbbb35e236263841a733b2661ecf0e2441ebd88
selinux-policy-doc-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 19fb0322089a50ccad0b567b317b40aaSHA-256: 9f9a1e28fb52506862866148ad7018b067c5f7df9dbb0f8c2eb3be5cf6a604ea
selinux-policy-minimum-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 1996ff3e4adc21d4b5d9e28de212fc07SHA-256: c3f853df7fbf5d96b4cf3762eafcad6ee8981991f36680e20a0c68ffd8cc48b1
selinux-policy-mls-3.12.1-153.el7_0.13.noarch.rpm
    MD5: aef1a069862014500cadf7d19ffd623bSHA-256: 0cf440aceebd133818ec88b271792b469c9c67c630582a4d86eb2730a8328da6
selinux-policy-sandbox-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 74c9e9bc147e980c04a1922301502c61SHA-256: 64fe636cc1a964f85f76078951b1b999e2c7ad5dcab6b7ed6d3666b9e58d90a0
selinux-policy-targeted-3.12.1-153.el7_0.13.noarch.rpm
    MD5: dba6c1f0d04418fdccfd68a0dd7bf11cSHA-256: dafa463018e652ab9aeb0dd53d2a57c9c357ef34d7c979df419d271c37d16c67
 
s390x:
selinux-policy-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 41c268de5ffff0059b0c2634544a33a4SHA-256: df18cee55569028a2f9f74a9590a3c0f8bc68bf38961118a5ddac09bf40cf958
selinux-policy-devel-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 5b83e291de33b88b3783c6beb404b2d0SHA-256: f2bac4c8935a7040cf5762508dbbb35e236263841a733b2661ecf0e2441ebd88
selinux-policy-doc-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 19fb0322089a50ccad0b567b317b40aaSHA-256: 9f9a1e28fb52506862866148ad7018b067c5f7df9dbb0f8c2eb3be5cf6a604ea
selinux-policy-minimum-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 1996ff3e4adc21d4b5d9e28de212fc07SHA-256: c3f853df7fbf5d96b4cf3762eafcad6ee8981991f36680e20a0c68ffd8cc48b1
selinux-policy-mls-3.12.1-153.el7_0.13.noarch.rpm
    MD5: aef1a069862014500cadf7d19ffd623bSHA-256: 0cf440aceebd133818ec88b271792b469c9c67c630582a4d86eb2730a8328da6
selinux-policy-sandbox-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 74c9e9bc147e980c04a1922301502c61SHA-256: 64fe636cc1a964f85f76078951b1b999e2c7ad5dcab6b7ed6d3666b9e58d90a0
selinux-policy-targeted-3.12.1-153.el7_0.13.noarch.rpm
    MD5: dba6c1f0d04418fdccfd68a0dd7bf11cSHA-256: dafa463018e652ab9aeb0dd53d2a57c9c357ef34d7c979df419d271c37d16c67
 
x86_64:
selinux-policy-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 41c268de5ffff0059b0c2634544a33a4SHA-256: df18cee55569028a2f9f74a9590a3c0f8bc68bf38961118a5ddac09bf40cf958
selinux-policy-devel-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 5b83e291de33b88b3783c6beb404b2d0SHA-256: f2bac4c8935a7040cf5762508dbbb35e236263841a733b2661ecf0e2441ebd88
selinux-policy-doc-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 19fb0322089a50ccad0b567b317b40aaSHA-256: 9f9a1e28fb52506862866148ad7018b067c5f7df9dbb0f8c2eb3be5cf6a604ea
selinux-policy-minimum-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 1996ff3e4adc21d4b5d9e28de212fc07SHA-256: c3f853df7fbf5d96b4cf3762eafcad6ee8981991f36680e20a0c68ffd8cc48b1
selinux-policy-mls-3.12.1-153.el7_0.13.noarch.rpm
    MD5: aef1a069862014500cadf7d19ffd623bSHA-256: 0cf440aceebd133818ec88b271792b469c9c67c630582a4d86eb2730a8328da6
selinux-policy-sandbox-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 74c9e9bc147e980c04a1922301502c61SHA-256: 64fe636cc1a964f85f76078951b1b999e2c7ad5dcab6b7ed6d3666b9e58d90a0
selinux-policy-targeted-3.12.1-153.el7_0.13.noarch.rpm
    MD5: dba6c1f0d04418fdccfd68a0dd7bf11cSHA-256: dafa463018e652ab9aeb0dd53d2a57c9c357ef34d7c979df419d271c37d16c67
 
Red Hat Enterprise Linux Workstation (v. 7)

SRPMS:
selinux-policy-3.12.1-153.el7_0.13.src.rpm
    MD5: b34102cb31de4734caf4c140c38c7133SHA-256: c0a931df01dc9307c5415cff4210ec77066d2409d70e2dc448fbb8bd84905ccb
 
x86_64:
selinux-policy-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 41c268de5ffff0059b0c2634544a33a4SHA-256: df18cee55569028a2f9f74a9590a3c0f8bc68bf38961118a5ddac09bf40cf958
selinux-policy-devel-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 5b83e291de33b88b3783c6beb404b2d0SHA-256: f2bac4c8935a7040cf5762508dbbb35e236263841a733b2661ecf0e2441ebd88
selinux-policy-doc-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 19fb0322089a50ccad0b567b317b40aaSHA-256: 9f9a1e28fb52506862866148ad7018b067c5f7df9dbb0f8c2eb3be5cf6a604ea
selinux-policy-minimum-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 1996ff3e4adc21d4b5d9e28de212fc07SHA-256: c3f853df7fbf5d96b4cf3762eafcad6ee8981991f36680e20a0c68ffd8cc48b1
selinux-policy-mls-3.12.1-153.el7_0.13.noarch.rpm
    MD5: aef1a069862014500cadf7d19ffd623bSHA-256: 0cf440aceebd133818ec88b271792b469c9c67c630582a4d86eb2730a8328da6
selinux-policy-sandbox-3.12.1-153.el7_0.13.noarch.rpm
    MD5: 74c9e9bc147e980c04a1922301502c61SHA-256: 64fe636cc1a964f85f76078951b1b999e2c7ad5dcab6b7ed6d3666b9e58d90a0
selinux-policy-targeted-3.12.1-153.el7_0.13.noarch.rpm
    MD5: dba6c1f0d04418fdccfd68a0dd7bf11cSHA-256: dafa463018e652ab9aeb0dd53d2a57c9c357ef34d7c979df419d271c37d16c67
 
(The unlinked packages above are only available from the Red Hat Network)
1172146 – firewall-cmd gets stuck when run as superVDSM subsubprocess1172147 – sanlock not allowed to send SIGTERM or SIGKILL signals

These packages are GPG signed by Red Hat for security. Our key and
details on how to verify the signature are available from:

Leave a Reply