View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0018358 | CentOS-7 | selinux-policy | public | 2021-11-23 08:58 | 2021-11-23 15:49 |
| Reporter | haoyahao3 | Assigned To | |||
| Priority | normal | Severity | minor | Reproducibility | have not tried |
| Status | new | Resolution | open | ||
| OS Version | 7 | ||||
| Summary | 0018358: SELinux is preventing /usr/bin/bash from 'execute_no_trans' accesses on the file /usr/bin/rpm. | ||||
| Description | Description of problem: SELinux is preventing /usr/bin/bash from 'execute_no_trans' accesses on the file /usr/bin/rpm. ***** Plugin catchall (100. confidence) suggests ************************** If you believe that bash should be allowed execute_no_trans access on the rpm file by default. Then you should report this as a bug. You can generate a local policy module to allow this access. Do allow this access for now by executing: # ausearch -c 'sh' --raw | audit2allow -M my-sh # semodule -i my-sh.pp Additional Information: Source Context system_u:system_r:zabbix_agent_t:s0 Target Context system_u:object_r:rpm_exec_t:s0 Target Objects /usr/bin/rpm [ file ] Source sh Source Path /usr/bin/bash Port <Unknown> Host (removed) Source RPM Packages Target RPM Packages rpm-4.11.3-46.el7_9.x86_64 Policy RPM selinux-policy-3.13.1-268.el7_9.2.noarch Selinux Enabled True Policy Type targeted Enforcing Mode Enforcing Host Name (removed) Platform Linux (removed) 5.15.0-1.el7.elrepo.x86_64 #1 SMP Sun Oct 31 17:19:16 EDT 2021 x86_64 x86_64 Alert Count 352 First Seen 2021-11-06 10:15:01 CST Last Seen 2021-11-23 16:15:01 CST Local ID c454fedf-1218-43e0-948f-d2934260f99c Raw Audit Messages type=AVC msg=audit(1637655301.146:1665): avc: denied { execute_no_trans } for pid=113099 comm="sh" path="/usr/bin/rpm" dev="dm-0" ino=1883645895 scontext=system_u:system_r:zabbix_agent_t:s0 tcontext=system_u:object_r:rpm_exec_t:s0 tclass=file permissive=0 Hash: sh,zabbix_agent_t,rpm_exec_t,file,execute_no_trans Version-Release number of selected component: selinux-policy-3.13.1-268.el7_9.2.noarch | ||||
| Additional Information | reporter: libreport-2.1.11.1 hashmarkername: setroubleshoot kernel: 5.15.0-1.el7.elrepo.x86_64 reproducible: Not sure how to reproduce the problem type: libreport | ||||
| Tags | No tags attached. | ||||
| abrt_hash | e6451ce99f5f66432c0260ef24362da17a84925ac4898575a2c04c607e7d752f | ||||
| URL | |||||
 |
Please relabel your system, I am pretty sure that both this error and the other one that you have reported are caused by a mislabel |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2021-11-23 08:58 | haoyahao3 | New Issue | |
| 2021-11-23 15:49 | ManuelWolfshant | Note Added: 0038747 |
