Uploaded image for project: 'RHEL'
  1. RHEL
  2. RHEL-82675

AVC check fail when running squid/Security/CVE-2018-19131-XSS-when-generating-HTTPS-response-messages-about-TLS-errors

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Unresolved
    • Icon: Undefined Undefined
    • None
    • rhel-9.6
    • selinux-policy
    • None
    • No
    • None
    • rhel-sst-security-selinux
    • ssg_security
    • None
    • False
    • Hide

      None

      Show
      None
    • None
    • None
    • None
    • None
    • Unspecified
    • Unspecified
    • Unspecified
    • None

      What were you trying to do that didn't work?

      AVC check fail when running squid/Security/CVE-2018-19131-XSS-when-generating-HTTPS-response-messages-about-TLS-errors

      What is the impact of this issue to you?

      Please provide the package NVR for which the bug is seen:

      squid-5.5-18.el9
      audit-3.1.5-4.el9.aarch64
      selinux-policy-38.1.53-2.el9.noarch

      Actual results

      type=AVC msg=audit(02/26/2025 17:40:11.322:2097) : avc: denied

      { open }

      for pid=91074 comm=squid path=/etc/hosts dev="nvme0n1p3" ino=184565788 scontext=system_u:system_r:squid_t:s0 tcontext=unconfined_u:object_r:user_tmp_t:s0 tclass=file permissive=1

      log: https://artifacts.osci.redhat.com/testing-farm/b18f9ab4-fed4-4d01-bf41-f7eeab1baea5/work-squidqumtz689/plans/cs_stacks/tier2/squid/execute/data/guest/default-0/internal/Security/CVE-2018-19131-XSS-when-generating-HTTPS-response-messages-about-TLS-errors/system-19/checks/avc.txt

              rhn-support-zpytela Zdenek Pytela
              bnater@redhat.com Branislav Náter
              Branislav Náter
              Zdenek Pytela Zdenek Pytela
              SSG Security QE SSG Security QE
              Votes:
              0 Vote for this issue
              Watchers:
              6 Start watching this issue

                Created:
                Updated: