Bug#989434: marked as done (libsepol 3.2: cherry-pick fix for role attributes)

[Debian Bug Tracking System]

Your message dated Sun, 07 Nov 2021 22:04:31 +0000
with message-id <e1mjqh9-0009ff...@fasolo.debian.org>
and subject line Bug#989434: fixed in libsepol 3.3-1
has caused the Debian Bug report #989434,
regarding libsepol 3.2: cherry-pick fix for role attributes
to be marked as done.

This means that you claim that the problem has been dealt with.
If this is not the case it is now your responsibility to reopen the
Bug report if necessary, and/or fix the problem forthwith.

(NB: If you are a system administrator and have no idea what this
message is talking about, this may indicate a serious mail system
misconfiguration somewhere. Please contact ow...@bugs.debian.org
immediately.)


-- 
989434: https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=989434
Debian Bug Tracking System
Contact ow...@bugs.debian.org with problems

--- Begin Message ---

Source: libsepol
Version: 3.2-1
Severity: serious

Please cherry-pick commit f7431d0e0ed9 ("libsepol: Expand role
attributes in constraint expressions") [1], as it fixes a regression
using role attributes in constraints reported at [2].
Otherwise role attributes in constraints are not validated, introduced with [3].


[1]: 
https://github.com/SELinuxProject/selinux/commit/f7431d0e0ed9f695a6a8af74c3f239f80649a167
[2]: 
https://lore.kernel.org/selinux/CAJ2a_Dd_tccbWwA_S8nnRvpAVJW8EcrU3t3R7e=mcthsx0l...@mail.gmail.com/t/#u
[3]: 
https://github.com/SELinuxProject/selinux/commit/0861c659b59cb106bad1b1d0c9f511a7140a1023

--- End Message ---

--- Begin Message ---

Source: libsepol
Source-Version: 3.3-1
Done: Laurent Bigonville <bi...@debian.org>

We believe that the bug you reported is fixed in the latest version of
libsepol, which is due to be installed in the Debian FTP archive.

A summary of the changes between this version and the previous one is
attached.

Thank you for reporting the bug, which will now be closed.  If you
have further comments please address them to 989...@bugs.debian.org,
and the maintainer will reopen the bug report if appropriate.

Debian distribution maintenance software
pp.
Laurent Bigonville <bi...@debian.org> (supplier of updated libsepol package)

(This message was generated automatically at their request; if you
believe that there is a problem with it please contact the archive
administrators by mailing ftpmas...@ftp-master.debian.org)


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Format: 1.8
Date: Sun, 07 Nov 2021 22:40:09 +0100
Source: libsepol
Architecture: source
Version: 3.3-1
Distribution: unstable
Urgency: medium
Maintainer: Debian SELinux maintainers <selinux-de...@lists.alioth.debian.org>
Changed-By: Laurent Bigonville <bi...@debian.org>
Closes: 989434 990526
Changes:
 libsepol (3.3-1) unstable; urgency=medium
 .
   * debian/libsepol2.symbols: Fix the name of the -dev package, ouupsie
   * New upstream version 3.3 (Closes: #989434, #990526, CVE-2021-36084,
     CVE-2021-36085, CVE-2021-36086, CVE-2021-36087)
   * debian/libsepol2.symbols: Add newly exported symbols
Checksums-Sha1:
 22b60efe26fb9019fe2ec1eae7da90973882f7ff 1764 libsepol_3.3-1.dsc
 a9e20d2a381e241689301f491049c961bb494f41 482546 libsepol_3.3.orig.tar.gz
 09c790577b83b2e44421498010c171d6709da307 14956 libsepol_3.3-1.debian.tar.xz
 2c6c3342376e3c85bf688bc031c1a542aed91137 5143 libsepol_3.3-1_source.buildinfo
Checksums-Sha256:
 38e1ced77afe590efc6037b38f07828389ba5c3ec137f990b00e6961939b7c53 1764 
libsepol_3.3-1.dsc
 2d97df3eb8466169b389c3660acbb90c54200ac96e452eca9f41a9639f4f238b 482546 
libsepol_3.3.orig.tar.gz
 693e8394f88cc1430a16eb94f20c09f748ef73d73292956a8e7a0f8bd71f39e2 14956 
libsepol_3.3-1.debian.tar.xz
 a429b3059fb07aff5c50c19e02f5cd2ca0b837825b6a3f830bd523cd10391679 5143 
libsepol_3.3-1_source.buildinfo
Files:
 91e2f4df1a26f37a432427da9179a2cc 1764 libs optional libsepol_3.3-1.dsc
 615c926743d2577e2cdbc5c44286d988 482546 libs optional libsepol_3.3.orig.tar.gz
 a7afe684aa1fb961687cf83932ed08ef 14956 libs optional 
libsepol_3.3-1.debian.tar.xz
 74c95b374b15ddcb9d8531b8c70ec7ac 5143 libs optional 
libsepol_3.3-1_source.buildinfo

-----BEGIN PGP SIGNATURE-----

iQFFBAEBCAAvFiEEmRrdqQAhuF2x31DwH8WJHrqwQ9UFAmGISUwRHGJpZ29uQGRl
Ymlhbi5vcmcACgkQH8WJHrqwQ9UPQAgApLJAHi8aAgDMNIJDudtlx8YTzBhQNgCG
Ek+Y0/YKc6U/qhgat0AFsR9s66j2wDUrDmhoVk8AgkxiMAs4Nt2/ixzz3qjCW/5Y
0hZ0L2T51vjgffbwY6JUpBC/acztJjn5G1qB758qaHhAsi0jsTFcl0xAbGCdO5Eo
mGcyWUEDGapsh7OUTi9NjUkMZyaMUaqZwQZ27Pvv8YK/ey+F2k1RG8VlBFw49AAI
ynwcoe8iQX49x7Ylgj/GQE7AWnHNt6FOBxWTmdFLzjiTO8Gy+8zyiJHiD1FRpfU9
YZ3obwL/5LO5IksHubgyClVlB1KfAr3K2l1H7OAj6qpcCeCSz3NQGw==
=7RaP
-----END PGP SIGNATURE-----

--- End Message ---