(RHSA-2017:0535) Important: policycoreutils security update

ID RHSA-2017:0535
Type redhat
Reporter RedHat
Modified 2017-08-28T06:44:18


The policycoreutils packages contain the core policy utilities required to manage a SELinux environment.

Security Fix(es):

  • It was found that the sandbox tool provided in policycoreutils was vulnerable to a TIOCSTI ioctl attack. A specially crafted program executed via the sandbox command could use this flaw to execute arbitrary commands in the context of the parent shell, escaping the sandbox. (CVE-2016-7545)