- Issued:
- 2018-09-20
- Updated:
- 2018-09-20
RHBA-2018:2734 - Bug Fix Advisory
Synopsis
openvswitch-selinux-extra-policy bug fix update
Type/Severity
Bug Fix Advisory
Red Hat Lightspeed patch analysis
Identify and remediate systems affected by this advisory.
Topic
An updated openvswitch-selinux-extra-policy package that fixes one bug is now available in the Fast Datapath channel of Red Hat Enterprise Linux 7.
Description
The Open vSwitch suite provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic. The openvswitch-selinux-extra-policy package adds an SELinux policy that enables the Open vSwitch suite of utilities to function with SELinux in enforcing mode.
This update fixes the following bug:
- Previously, attempting to ping a guest virtual machine in some cases failed if the host was using SELinux in enforcing mode. This update enables openvswitch_t to map the svirt_image_t label, which prevents the problem from occurring. (BZ#1620257)
Users of openvswitch-selinux-extra-policy are advised to upgrade to this updated package, which fixes this bug.
Solution
Before applying this update, make sure all previously released errata
relevant to your system have been applied.
For details on how to apply this update, refer to:
Affected Products
- Red Hat Virtualization Manager 4.2 x86_64
- Red Hat Virtualization 4 for RHEL 7 x86_64
- Red Hat Virtualization for IBM Power LE 4 for RHEL 7 ppc64le
- Red Hat Enterprise Linux Fast Datapath 7 x86_64
- Red Hat Enterprise Linux Fast Datapath (for RHEL Server for IBM Power LE) 7 ppc64le
Fixes
- BZ - 1620257 - Ping failed between guests over OVS-dpdk tunnel when Selinux=Enforcing
CVEs
(none)
References
(none)
Red Hat Virtualization Manager 4.2
| SRPM | |
|---|---|
| openvswitch-selinux-extra-policy-1.0-7.el7fdp.src.rpm | SHA-256: 5fde5b19e7dd61203e811942e074b555a279939106fca53f8c5792e4140d285a |
| x86_64 | |
| openvswitch-selinux-extra-policy-1.0-7.el7fdp.noarch.rpm | SHA-256: 35d5d130795aa9bfd6e73eaa563b0c6ca92832da987813cdd8d9d427a5481450 |
Red Hat Virtualization 4 for RHEL 7
| SRPM | |
|---|---|
| openvswitch-selinux-extra-policy-1.0-7.el7fdp.src.rpm | SHA-256: 5fde5b19e7dd61203e811942e074b555a279939106fca53f8c5792e4140d285a |
| x86_64 | |
| openvswitch-selinux-extra-policy-1.0-7.el7fdp.noarch.rpm | SHA-256: 35d5d130795aa9bfd6e73eaa563b0c6ca92832da987813cdd8d9d427a5481450 |
Red Hat Virtualization for IBM Power LE 4 for RHEL 7
| SRPM | |
|---|---|
| openvswitch-selinux-extra-policy-1.0-7.el7fdp.src.rpm | SHA-256: 5fde5b19e7dd61203e811942e074b555a279939106fca53f8c5792e4140d285a |
| ppc64le | |
| openvswitch-selinux-extra-policy-1.0-7.el7fdp.noarch.rpm | SHA-256: 35d5d130795aa9bfd6e73eaa563b0c6ca92832da987813cdd8d9d427a5481450 |
| openvswitch-selinux-extra-policy-1.0-7.el7fdp.noarch.rpm | SHA-256: 35d5d130795aa9bfd6e73eaa563b0c6ca92832da987813cdd8d9d427a5481450 |
Red Hat Enterprise Linux Fast Datapath 7
| SRPM | |
|---|---|
| openvswitch-selinux-extra-policy-1.0-7.el7fdp.src.rpm | SHA-256: 5fde5b19e7dd61203e811942e074b555a279939106fca53f8c5792e4140d285a |
| x86_64 | |
| openvswitch-selinux-extra-policy-1.0-7.el7fdp.noarch.rpm | SHA-256: 35d5d130795aa9bfd6e73eaa563b0c6ca92832da987813cdd8d9d427a5481450 |
Red Hat Enterprise Linux Fast Datapath (for RHEL Server for IBM Power LE) 7
| SRPM | |
|---|---|
| openvswitch-selinux-extra-policy-1.0-7.el7fdp.src.rpm | SHA-256: 5fde5b19e7dd61203e811942e074b555a279939106fca53f8c5792e4140d285a |
| ppc64le | |
| openvswitch-selinux-extra-policy-1.0-7.el7fdp.noarch.rpm | SHA-256: 35d5d130795aa9bfd6e73eaa563b0c6ca92832da987813cdd8d9d427a5481450 |
| openvswitch-selinux-extra-policy-1.0-7.el7fdp.noarch.rpm | SHA-256: 35d5d130795aa9bfd6e73eaa563b0c6ca92832da987813cdd8d9d427a5481450 |
The Red Hat security contact is secalert@redhat.com. More contact details at https://access.redhat.com/security/team/contact/.
