1.156.2. RHBA-2011:0481: selinux-policy bug fix update

Updated selinux-policy packages that fix one bug are now available for Red Hat Enterprise Linux 5.

The selinux-policy packages contain the rules that govern how confined processes run on the system.

This update fixes the following bug:

* The sshd service, ssh clients, and other SSH-aware utilities require access to the /dev/random and /dev/urandom random number generators. Prior to this update, SELinux incorrectly prevented the ssh-keygen utility from accessing the /dev/random device. This update adapts SELinux policies to allow this access, and ssh-keygen is now able to read data from /dev/random as expected. (BZ#694048)

All users are advised to upgrade to these updated packages, which fix this bug.