Synopsis: Low: policycoreutils security, bug fix, and enhancement update Advisory ID: SLSA-2018:0913-1 Issue Date: 2018-04-10 CVE Numbers: CVE-2018-1063 -- Security Fix(es): * policycoreutils: Relabelling of symbolic links in /tmp and /var/tmp change the context of their target instead (CVE-2018-1063) This issue was discovered by Renaud Mtrich (Red Hat). Additional Changes: -- SL7 x86_64 policycoreutils-2.5-22.el7.x86_64.rpm policycoreutils-debuginfo-2.5-22.el7.i686.rpm policycoreutils-debuginfo-2.5-22.el7.x86_64.rpm policycoreutils-devel-2.5-22.el7.i686.rpm policycoreutils-devel-2.5-22.el7.x86_64.rpm policycoreutils-gui-2.5-22.el7.x86_64.rpm policycoreutils-newrole-2.5-22.el7.x86_64.rpm policycoreutils-python-2.5-22.el7.x86_64.rpm policycoreutils-sandbox-2.5-22.el7.x86_64.rpm policycoreutils-2.5-22.el7.src.rpm policycoreutils-restorecond-2.5-22.el7.x86_64.rpm - Scientific Linux Development Team