Loading...

Linking RHIVOS CVEs to...

Migration: Automation ...

SWIFT: POC Conversion

Sync from "Extern...

XML

Word

Printable

Type: Bug
Resolution: Duplicate
Priority: Undefined
Fix Version/s: None
Affects Version/s: rhel-10.0
Component/s: selinux-policy
Labels:
None

Regression:
No
Severity:
None

AssignedTeam:
rhel-security-selinux
Sub-System Group:

ssg_security

Story Points:
None
Blocked:
False
Ready:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
None
Sprint:
None

Preliminary Testing:
None
Test Coverage:
None

ProdDocsReview-CCS:
Unspecified
ProdDocsReview-Dev:
Unspecified
ProdDocsReview-QE:
Unspecified

Experience:

SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

Can you pls have a look?

varnish-7.6.1-2.el10

audit-4.0.3-1.el10.aarch64

selinux-policy-40.13.26-1.el10.noarch

type=AVC msg=audit(03/08/25 08:35:38.382:1167) : avc: denied { sys_resource } for pid=15965 comm=varnishd capability=sys_resource scontext=system_u:system_r:varnishd_t:s0 tcontext=system_u:system_r:varnishd_t:s0 tclass=capability permissive=0

Full log: https://artifacts.osci.redhat.com/testing-farm/51093249-0746-48ee-b7d6-3dde82f1bb0c/work-varnishpc7ogadj/plans/cs_stacks/tier1/varnish/execute/data/guest/default-0/Security/CVE-2023-44487/system-3/checks/avc.txt

duplicates

RHEL-77779 [rhel-10] the varnish service triggers SELinux denials

Release Pending

Assignee:: Zdenek Pytela

Reporter:: Branislav Náter

Developer:: Zdenek Pytela

QA Contact:: Milos Malik

Votes:: 0 Vote for this issue

Watchers:: 7 Start watching this issue

Created:: 2025/03/11 9:56 AM

Updated:: 2025/03/14 9:43 AM

Resolved:: 2025/03/14 9:42 AM

Details

Description

Full log: https://artifacts.osci.redhat.com/testing-farm/51093249-0746-48ee-b7d6-3dde82f1bb0c/work-varnishpc7ogadj/plans/cs_stacks/tier1/varnish/execute/data/guest/default-0/Security/CVE-2023-44487/system-3/checks/avc.txt

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates