Bugs item #2940646, was opened at 2010-01-26 17:34
Message generated for change (Tracker Item Submitted) made by jivers
You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=100976&aid=2940646&group_id=976

Please note that this message will contain a full copy of the comment thread,
including the initial issue submission, for this request,
not just the latest update.
Category: http
Group: portability problem
Status: Open
Resolution: None
Priority: 5
Private: No
Submitted By: j i (jivers)
Assigned to: Daniel Stenberg (bagder)
Summary: text relocation breaks SElinux security for http on redhat

Initial Comment:
SE Linux error on Centos 5 (open redhat enterprise clone)

Info on how to fix
http://people.redhat.com/drepper/selinux-mem.html documents this security hole

The httpd application attempted to load /usr/local/lib/libcurl.so.4.1.1 which requires text relocation. This is a potential security problem. Most libraries do not need this permission. Libraries are sometimes coded incorrectly and request this permission. The SELinux Memory Protection Tests web page explains how to remove this requirement. You can configure SELinux temporarily to allow /usr/local/lib/libcurl.so.4.1.1 to use relocation as a workaround, until the library is fixed. Please file a bug report against this package.

----------------------------------------------------------------------

You can respond by visiting:
https://sourceforge.net/tracker/?func=detail&atid=100976&aid=2940646&group_id=976
Received on 2010-01-27