
https://bugzilla.suse.com/show_bug.cgi?id=1219363 Bug ID: 1219363 Summary: [SELinux] AVC denial execmem ModemManager Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: mcepl@suse.com QA Contact: qa-bugs@suse.de Target Milestone: --- Found By: --- Blocker: --- Just what I found in ausearch -m AVC output: mitmanek:~ # ausearch -m AVC -ts boot |grep ModemManager type=AVC msg=audit(1706651142.962:84): avc: denied { execmem } for pid=1618 comm="ModemManager" scontext=system_u:system_r:modemmanager_t:s0 tcontext=system_u:system_r:modemmanager_t:s0 tclass=process permissive=1 type=AVC msg=audit(1706651143.909:85): avc: denied { execmem } for pid=1618 comm="ModemManager" scontext=system_u:system_r:modemmanager_t:s0 tcontext=system_u:system_r:modemmanager_t:s0 tclass=process permissive=1 I don’t use ModemManager for anything, so I cannot test whether anything actually changed with functionality. openSUSE/Tumbleweed and mitmanek:~ # sestatus SELinux status: enabled SELinuxfs mount: /sys/fs/selinux SELinux root directory: /etc/selinux Loaded policy name: targeted Current mode: permissive Mode from config file: enforcing Policy MLS status: enabled Policy deny_unknown status: allowed Memory protection checking: actual (secure) Max kernel policy version: 33 mitmanek:~ # -- You are receiving this mail because: You are on the CC list for the bug.