Sorry, but another bugfix patch for NetLabel which I think should be included 2.6.19.
The problem is that the SELinux reference policy is a bit more free in allowing applications to call setsockopt() than I had originally thought, which means that normal applications could add or tamper with the NetLabel/CIPSO options on a socket causing all sorts of nastiness. This patch should solve these problems. -- paul moore linux security @ hp - To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to [EMAIL PROTECTED] More majordomo info at http://vger.kernel.org/majordomo-info.html
