search

fedora-selinux / selinux-policy

selinux-policy for Fedora is a large patch off the mainline
GNU General Public License v2.0
156 stars 157 forks source link

Label /usr/bin/ntfsck with fsadm_exec_t #2168

Closed zpytela closed 2 weeks ago

zpytela commented 2 weeks ago

Can be executed e.g. by systemd-fstab-generator: type=AVC msg=audit(1716626415.385:479): avc: denied { execute } for pid=11286 comm="systemd-fstab-g" name="ntfsck" dev="nvme0n1p5" ino=1106075 scontext=system_u:system_r:systemd_fstab_generator_t:s0 tcontext=system_u:object_r:bin_t:s0 tclass=file permissive=0

Resolves: rhbz#2283187