Loading...

Linking RHIVOS CVEs to...

Migration: Automation ...

SWIFT: POC Conversion

Sync from "Extern...

XML

Word

Printable

Type: Bug
Resolution: Unresolved
Priority: Normal
Fix Version/s: rhel-9.7
Affects Version/s: rhel-9.6
Component/s: selinux-policy
Labels:
- dependent-product

Fixed in Build:
selinux-policy-38.1.62-1.el9
Regression:
No
Severity:
Moderate
Epic Link:
SELINUX-3824
sprint_count:
1

AssignedTeam:
rhel-security-selinux
Sub-System Group:

ssg_security

Internal Target Milestone:
22
Story Points:
1
ACKs Check:

QE ack
Blocked:
False
Ready:
False
Blocked Reason:

Hide

None

Show
None
Product Documentation Required:
No
Sprint:
SELINUX 250806: 10

Acceptance Criteria:

Hide

The reproducer does not trigger SELinux denials.

Show
The reproducer does not trigger SELinux denials.
Preliminary Testing:
Pass
Errata Link:
https://errata.engineering.redhat.com/advisory/148008
Test Coverage:

Automated

Release Note Type:
Release Note Not Required
ProdDocsReview-CCS:
Unspecified
ProdDocsReview-Dev:
Unspecified
ProdDocsReview-QE:
Unspecified

PX Impact Score:
SFDC Cases Counter:
SFDC Cases Open:
SFDC Cases Links:

Planning:
None

On a system using `timemaster`

```

timedatectl set-ntp false
Failed to set ntp: Access denied

setenforce 0

timedatectl set-ntp false

timedatectl set-ntp true

```

```

audit2allow -b

#============= systemd_timedated_t ==============
allow systemd_timedated_t timemaster_unit_file_t:service { start stop };

```

links to

linuxptp fedora pr

RHBA-2025:148008 selinux-policy bug fix and enhancement update

TCMS Test Case 448500

Assignee:: Zdenek Pytela

Reporter:: Etienne Champetier

Developer:: Zdenek Pytela

QA Contact:: Milos Malik

Votes:: 0 Vote for this issue

Watchers:: 8 Start watching this issue

Created:: 2025/06/06 9:10 PM

Updated:: 2025/08/29 12:51 PM

Target end:: 2025/07/28

Next Planned Release Date:: 2025/11/11