[ALSA-2022:1898] Moderate: fapolicyd security, bug fix, and enhancement update
Type:
security
Severity:
moderate
Release date:
2022-08-05
Description:
Fapolicyd (File Access Policy Daemon) implements application whitelisting to decide file access rights. Applications that are known via a reputation source are allowed access while unknown applications are not. The daemon makes use of the kernel's fanotify interface to determine file access rights. The following packages have been upgraded to a later upstream version: fapolicyd (1.1). (BZ#1939379) Security Fix(es): * fapolicyd: fapolicyd wrongly prepares ld.so path (CVE-2022-1117) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section. Additional Changes: For detailed information on changes in this release, see the AlmaLinux Release Notes linked from the References section.
Updated packages listed below:
Architecture Package Checksum
aarch64 fapolicyd-1.1-6.el8.aarch64.rpm 1a2fc9c8dac2e37d0a7a2351ff76b98341e8e3b5ee789a980017010fda3935c9
noarch fapolicyd-selinux-1.1-6.el8.noarch.rpm 49c8366225d21745abfec8d8db62ccdff8d45672d0d440ffc94f578a56aa9267
ppc64le fapolicyd-1.1-6.el8.ppc64le.rpm acf53e5a51880bc2c551ebcdd14e5a1755437275e7d5441250ce0f9a1171f7de
x86_64 fapolicyd-1.1-6.el8.x86_64.rpm 13edfcaab8802d53f8ce03b2ca32b397c23834c44ca70f56f4996c9a49ce21d4
Notes:
This page is generated automatically from Red Hat security data and has not been checked for errors. For clarification or corrections please contact the AlmaLinux Packaging Team.