SCIENTIFIC-LINUX-DEVEL Archives

February 2017

SCIENTIFIC-LINUX-DEVEL@LISTSERV.FNAL.GOV
Options: Use Monospaced Font
Show Text Part by Default
Condense Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Sender:
Mailing list for Scientific Linux developers worldwide <[log in to unmask]>
Date:
Wed, 22 Feb 2017 14:04:57 -0600
Reply-To:
Brian Lin <[log in to unmask]>
Message-ID:
<[log in to unmask]>
Content-Transfer-Encoding:
quoted-printable
Subject:
Re: Why is selinux-policy in sl-fastbugs?
From:
Brian Lin <[log in to unmask]>
Content-Type:
text/plain; charset="windows-1252"; format=flowed
In-Reply-To:
<[log in to unmask]>
MIME-Version:
1.0
Comments:
To: Mark Stodola <[log in to unmask]>, [log in to unmask]
Parts/Attachments:
text/plain (29 lines) 
That's what I figured but I would argue that bug fixes to *Security* 
Enhanced Linux should go into sl-security, which the FAQ appears to 
agree with:

"This repo also contains the latest ‘tzdata’ and ‘selinux-policy’ to 
ensure fixes to these package help protect your system security."

On 02/21/2017 10:56 AM, Mark Stodola wrote:
> On 02/21/2017 10:27 AM, Brian Lin wrote:
>> Hi,
>>
>> According to the FAQ
>> <https://www.scientificlinux.org/documentation/faq/faq-updates/>, the
>> latest 'selinux-policy' is supposed to reside in the security repository
>> but there appear to be newer versions of the package in fastbugs. This
>> has caused some heartache for our users that run with fastbugs disabled.
>> Why are there 'selinux-policy' packages in fastbugs and can this be 
>> fixed?
>>
>> Thanks,
>> Brian
>
> I believe it is because the package in fastbugs is categorized by TUV 
> as a bug fix advisory and not a security advisory...
>
> https://rhn.redhat.com/errata/RHBA-2017-0084.html
>
> The changes fix brokenness, but not security vulnerabilities.

ATOM RSS1 RSS2