[ol7_latest] libsepol-2.5-8.1.el7.aarch64

Name:	libsepol
Version:	2.5
Release:	8.1.el7
Architecture:	aarch64
Group:	System Environment/Libraries
Size:	702856
License:	LGPLv2+
RPM:	libsepol-2.5-8.1.el7.aarch64.rpm
Source RPM:	libsepol-2.5-8.1.el7.src.rpm
Build Date:	Mon May 07 2018
Build Host:	ca-buildarm01.us.oracle.com
Vendor:	Oracle America
URL:	https://github.com/SELinuxProject/selinux/wiki
Summary:	SELinux binary policy manipulation library
Description:	Security-enhanced Linux is a feature of the Linux® kernel and a number of utilities with enhanced security functionality designed to add mandatory access controls to Linux. The Security-enhanced Linux kernel contains new architectural components originally developed to improve the security of the Flask operating system. These architectural components provide general support for the enforcement of many kinds of mandatory access control policies, including those based on the concepts of Type Enforcement®, Role-based Access Control, and Multi-level Security. libsepol provides an API for the manipulation of SELinux binary policies. It is used by checkpolicy (the policy compiler) and similar tools, as well as by programs like load_policy that need to perform specific transformations on binary policies such as customizing policy boolean settings.

Changelog (Show File list) (Show related packages)

Thu Oct 12 2017 Vit Mojzis <vmojzis@redhat.com> - 2.5-8.1

- Define nnp_nosuid_transition policy capability (rhbz#1480519)
- use IN6ADDR_ANY_INIT to initialize IPv6 addresses
- Allow runtime labeling of ibendports (rhbz#1464489)
- Allow runtime labeling of Infiniband Pkeys (rhbz#1464489)
- Add IB end port handling to CIL (rhbz#1464489)
- Add ibendport ocontext handling (rhbz#1464489)
- Add support for ibendportcon labels (rhbz#1464489)
- Add Infiniband Pkey handling to CIL (rhbz#1464489)
- Add ibpkey ocontext handling (rhbz#1464489)
- Add support for ibpkeycon labels (rhbz#1464489)
- Remove unused attribute on a used argument from avrule_read() (rhbz#1464489)
- Add binary module support for xperms
- Add support for converting extended permissions to CIL

Wed Sep 20 2017 Vit Mojzis <vmojzis@redhat.com> - 2.5-7

- Define cgroup_seclabel policy capability (rhbz#1493517)
- Fix unitialized jmp and invalid dereference

Wed Aug 10 2016 Petr Lautrbach <plautrba@redhat.com> 2.5-6

- Fix memory leak in expand.c
- Fix invalid read when policy file is corrupt
- Fix possible use of uninitialized variables

Tue Aug 02 2016 Petr Lautrbach <plautrba@redhat.com> 2.5-5

- Warn instead of fail if permission is not resolved
- Ignore object_r when adding userrole mappings to policydb

Tue Jul 12 2016 Petr Lautrbach <plautrba@redhat.com> 2.5-4
```
- Add missing return to sepol_node_query()
```

Mon Jun 27 2016 Petr Lautrbach <plautrba@redhat.com> - 2.5-3

- Correctly detect unknown classes in sepol_string_to_security_class
- Sort object files for deterministic linking order
- Fix neverallowxperm checking on attributes
- Remove libsepol.map when cleaning
- Add high-level language line marking support to CIL
- Change logic of bounds checking to match change in kernel
- Fix multiple spelling errors
- Only apply bounds checking to source types in rules
- Fix CIL and not add an attribute as a type in the attr_type_map
- Build policy on systems not supporting DCCP protocol
- Fix extended permissions neverallow checking
- Fix CIL neverallow and bounds checking
- Android.mk: Add -D_GNU_SOURCE to common_cflags

Mon Apr 11 2016 Petr Lautrbach <plautrba@redhat.com> - 2.5-2.1

- Fix bug in CIL when resetting classes
- Add support for portcon dccp protocol

Tue Feb 23 2016 Petr Lautrbach <plautrba@redhat.com> 2.5-1
```
- Update to upstream release 2016-02-23
```
Fri Jan 24 2014 Daniel Mach <dmach@redhat.com> - 2.1.9-3
```
- Mass rebuild 2014-01-24
```
Fri Dec 27 2013 Daniel Mach <dmach@redhat.com> - 2.1.9-2
```
- Mass rebuild 2013-12-27
```