Scientific Linux Security Update : selinux-policy enhancement update on SL6.x i386/x86_64

This script is Copyright (C) 2012 Tenable Network Security, Inc.


Synopsis :

The remote Scientific Linux host is missing one or more security
updates.

Description :

This update adds the following bugfixes :

- Due to a bug in the SELinux policy, it was not possible
to run a cron job with a valid MLS (Multi Level
Security) context for the sysadm_u SELinux user. This
update fixes relevant SELinux policy rules and cron now
works as expected in the described scenario.

- Previously, SELinux prevented
'rhevm-guest-agent-gdm-plugin' to connect to the
SO_PASSCRED UNIX domain socket. Consequently, Single
Sign-On (SSO) did not work because the access to the
credential socket was blocked. This update fixes the
relevant policy and SSO now works as expected in the
described scenario.

This update has been placed in the security tree to avoid selinux
bugs.

See also :

http://www.nessus.org/u?4223388d

Solution :

Update the affected packages.

Risk factor :

High

Family: Scientific Linux Local Security Checks

Nessus Plugin ID: 63294 ()

Bugtraq ID:

CVE ID: