http://bugzilla.opensuse.org/show_bug.cgi?id=1210088 Bug ID: 1210088 Summary: [SELinux] geoclue denied watch for /etc Classification: openSUSE Product: openSUSE Tumbleweed Version: Current Hardware: Other OS: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security Assignee: security-team@suse.de Reporter: filippo.bonazzi@suse.com QA Contact: security-team@suse.de Found By: --- Blocker: --- Operating System: MicroOS Desktop SELinux status, mode and policy name: enforcing, targeted SELinux policy version and repository: Repository : openSUSE-Tumbleweed-Oss Name : selinux-policy-targeted Version : 20230321-1.1 Arch : noarch Vendor : openSUSE Installed Size : 24.0 MiB Installed : Yes (automatically) Status : up-to-date The software (incl. version) that is affected by the SELinux issue and the error message: geoclue 2.7.0, doesn't seem broken but still the below AVCs pop up SELinux Audit log: ``` type=AVC msg=audit(1680601975.345:68): avc: denied { watch } for pid=1056 comm="geoclue" path="/etc" dev="overlay" ino=46973 scontext=system_u:system_r:geoclue_t:s0 tcontext=system_u:object_r:etc_t:s0 tclass=dir permissive=0 type=AVC msg=audit(1680601979.151:71): avc: denied { watch } for pid=1056 comm="gmain" path="/etc" dev="overlay" ino=46973 scontext=system_u:system_r:geoclue_t:s0 tcontext=system_u:object_r:etc_t:s0 tclass=dir permissive=0 ``` The second AVC is repeated multiple times, not sure if periodic or if it depends on e.g. user action -- You are receiving this mail because: You are on the CC list for the bug.